Privacy Policy

Last updated May 27, 2026

PADI MCP (“the Service”) is an independent connector between your PADI dive logbook and an MCP client such as Claude, ChatGPT, or Cursor. This policy explains what we store and your rights over it. The Service is not affiliated with or operated by PADI.

What we store

• Your identity — the user id and email from your sign-in provider (WorkOS AuthKit), used to key your data to you.
• PADI connection metadata — your PADI affiliate id, username, and connection status/timestamps.
• An encrypted PADI refresh token — envelope-encrypted (AES-256-GCM) at rest. We never store your PADI password; it is exchanged for the token on connect and discarded.
• An audit log — a record of connect/disconnect events and write actions (create/update/delete dives) for security and support.

We do not store the contents of your dives; those live in your PADI logbook. We read them on demand to answer your requests.

How we use it

Your data is used solely to operate the Service: to authenticate you, mint short-lived access tokens, and perform the PADI actions you request. We do not sell your data or use it for advertising.

Who it is shared with

To run the Service your data is processed by PADI (to operate your logbook on your request) and our infrastructure providers — sign-in (WorkOS), hosting (Vercel), database (Neon), and optionally rate-limit storage (Upstash). We share only what is necessary to provide the Service.

Security

The refresh token is encrypted at rest with envelope encryption; data in transit is protected with TLS. Access is keyed to your authenticated identity and never to values you pass as tool arguments.

Your rights

You can exercise these at any time from your MCP client:

• Export everything we store — padi_export_my_data (the encrypted token and key material are never disclosed).
• Disconnect — padi_disconnect deletes the stored token so the Service can no longer access your logbook.
• Delete all your stored data — padi_delete_my_data erases your connection, audit log, and account record.

Retention

We keep your data until you disconnect or delete it. Deleting is immediate and leaves no tombstone record.

Contact

Privacy questions or data-rights requests: nicolas.tobis@me.com.

Independent connector · not affiliated with or endorsed by PADI.