Legal Policy

Privacy Policy

Last updated: April 2026
5000fish, Inc.

Overview

5000fish, Inc. ("we", "us", "our") publishes Yurbi, a self-hosted embedded analytics platform for ISVs and software companies. This Privacy Policy explains what personal data we collect from people who download, evaluate, purchase, or seek support for Yurbi — and what rights you have over that data.

This policy applies to the Yurbi marketing website (yurbi.com), the trial download process, the license purchase and activation process, and support interactions related to Yurbi licenses.

This policy should be read alongside our Terms of Service and the Yurbi Software License Agreement.

What this covers

This policy covers personal data collected from:

  • People who download or register for a Yurbi trial
  • Customers who purchase a Yurbi license
  • Individuals who contact us for sales, support, or licensing inquiries
  • Registered license holders and their designated support contacts
  • Visitors to the yurbi.com marketing website

What we do not collect

We have no access to your business data. Because Yurbi runs entirely on your own infrastructure, 5000fish never sees, touches, or processes your Customer Data — the databases you connect, the reports you build, or the information your users access within the Software. Your business data stays on your servers.

Specifically, we do not collect:

  • Any data from databases or data sources you connect to Yurbi
  • Report content, dashboard data, or query results
  • The identities, names, or email addresses of your internal users or end users
  • Any personally identifiable information from within your Yurbi installation

The license synchronization process (described below) transmits only license parameters and anonymous aggregate statistics — never Customer Data of any kind.

What we collect

Trial registration

When you download a Yurbi trial, we collect:

  • Full name and work email address
  • Company name (optional)
  • Operating system selection
  • Submission timestamp and referring page URL

This information is used to deliver your download link and to follow up during your evaluation.

Purchase and license registration

When you purchase a Yurbi license, we collect:

  • Full name and email address (primary account identifier)
  • Company name and billing address
  • Transaction records (amount, currency, date, license tier, payment status) — retained for 7 years for tax and accounting purposes

We never store full payment card numbers. Card data is tokenized and managed by our PCI-compliant payment processors. We hold only a payment token reference.

License synchronization telemetry

When the Software operates in online mode, it periodically connects to our license management service. This connection transmits:

  • Your License Code and associated license parameters (tier, expiry, feature entitlements)
  • Anonymous aggregate statistics (e.g., general usage indicators — no user identities, no report content, no Customer Data)

In offline/air-gap mode, this synchronization does not occur. No data is transmitted from offline deployments.

Support interactions

When you contact our support team, we collect:

  • Name and email address of the support contact
  • Details of the issue, including any diagnostic information you provide
  • Correspondence and ticket history

Website analytics

We use analytics tools on yurbi.com to understand how visitors use the site — page views, navigation paths, and general traffic patterns. Analytics data is aggregated and anonymized. We do not use cross-site tracking or advertising cookies.

How we use your data

  • To deliver the Software — issuing License Codes, processing downloads, activating licenses
  • To process billing — invoicing, payment processing, and financial record-keeping
  • To provide support — responding to technical inquiries and managing support tickets
  • To manage your license — license synchronization, renewal notifications, and compliance
  • To communicate about your account — renewal reminders, product updates, and important notices
  • To improve the Software — using anonymous telemetry to understand how the Software is used in aggregate
  • To improve the website — using anonymized analytics to understand visitor behavior
  • To comply with legal obligations — retaining financial records as required by law

We do not sell personal data. We do not use personal data for advertising or cross-site tracking.

If you are located in the EEA, UK, or Switzerland, we process your personal data on the following legal bases:

  • Contract performance — processing necessary to deliver the Software, issue licenses, process billing, and provide support
  • Legitimate interests — license compliance monitoring, fraud prevention, security, and product improvement through anonymous telemetry
  • Legal obligation — retaining billing and transaction records as required by applicable tax and accounting laws
  • Consent — where required, such as for non-essential website analytics cookies

Data sharing

We share personal data only with the following categories of third parties:

  • Payment processors — Stripe, Authorize.net, and Chargebee process payment card data for billing transactions
  • Email delivery — third-party email services used to deliver license codes, transactional notifications, and support responses
  • CRM and workflow tools — trial registration and contact data processed through our internal CRM for follow-up and account management
  • Analytics — anonymized website usage data processed by our analytics provider; no personal data shared in identifiable form
  • Legal and compliance — we may disclose personal data where required by law, court order, or to protect the rights and safety of 5000fish or others

All third-party processors we use are bound by data processing agreements and are required to process personal data only on our instructions and in accordance with applicable law.

Retention

  • Trial registration data — until you request deletion, or 3 years from last contact if no purchase is made
  • License and account data — for the life of the license, plus 3 years after last activity
  • Billing and transaction records — 7 years from transaction date (tax and legal requirement)
  • Support communications — 3 years from ticket closure
  • Marketing consent records — until opt-out, plus 1 year for compliance records

When a retention period expires, we delete or anonymize the relevant data. Records retained for legal compliance are held in restricted systems and not used for any other purpose.

Your rights

Rights under GDPR (EU, UK, Switzerland)

If you are located in the EEA, UK, or Switzerland, you have the following rights:

  • Access — request a copy of the personal data we hold about you
  • Rectification — request correction of inaccurate or incomplete data
  • Erasure — request deletion of your data, subject to legal retention requirements
  • Restriction — request that we limit processing of your data in certain circumstances
  • Portability — receive your data in a machine-readable format where technically feasible
  • Objection — object to processing based on legitimate interests, including direct marketing
  • Withdraw consent — where processing is based on consent, withdraw it at any time

To exercise any of these rights, contact us at support@yurbi.com. We will respond within 30 days. We may ask you to verify your identity before fulfilling a request.

You also have the right to lodge a complaint with your national data protection supervisory authority. For EU residents, find your local authority at edpb.europa.eu. For UK residents, contact the Information Commissioner's Office (ICO). For Swiss residents, contact the Federal Data Protection and Information Commissioner (FDPIC).

Rights under US state privacy laws (CCPA/CPRA and similar)

If you are a California resident or a resident of another US state with applicable privacy legislation, you have the following rights:

  • Know — request disclosure of what personal information we collect, use, and disclose
  • Delete — request deletion of personal information we hold, subject to legal retention requirements
  • Correct — request correction of inaccurate personal information
  • Opt out of sale or sharing — we do not sell or share personal information for cross-context behavioral advertising. This right does not apply to us, but we state it for transparency.
  • Non-discrimination — we will not discriminate against you for exercising any of these rights

To submit a request, email support@yurbi.com. We will respond within 45 days, with a possible 45-day extension for complex requests.

International data transfers

5000fish is based in the United States. Personal data collected from you may be processed in the United States and in other countries where our service providers operate.

For personal data transferred from the EEA, UK, or Switzerland to the United States or other countries without an adequacy decision, we rely on Standard Contractual Clauses (SCCs) or other appropriate transfer mechanisms as required by applicable law. Our payment processors (Stripe, Authorize.net, Chargebee) operate under their own transfer mechanisms and privacy programs. Details are available on request.

Security

We implement reasonable technical and organizational measures to protect the personal data we hold, including access controls, encryption of data in transit, and restrictions on who within 5000fish can access account and billing data.

Because Yurbi is self-hosted, the security of your Customer Data — the data within your Yurbi installation — is entirely your responsibility. 5000fish has no access to it and cannot assist with its recovery or protection.

If you discover a potential security vulnerability in our website or systems, please report it at support@yurbi.com.

Children

Yurbi is a business software product intended for use by individuals aged 18 or older acting in a professional capacity. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has registered, contact us at support@yurbi.com and we will delete the data promptly.

Changes to this policy

We may update this policy from time to time. For material changes — changes that affect how we use your data or reduce your rights — we will notify registered license holders by email at least 30 days before the changes take effect. Minor clarifications may be made without advance notice.

The "Last updated" date at the top of this page reflects the most recent revision. Your continued use of the Software or our website after changes take effect constitutes acceptance of the updated policy.

Contact

5000fish, Inc. is the data controller for personal data processed under this policy. Privacy inquiries, data subject requests, and GDPR-related correspondence should be directed to:

  • Email: support@yurbi.com
  • Company: 5000fish, Inc.
  • Mail: 5000fish, Inc., 2201 Cooperative Way Drive, STE 600, Herndon, VA 20171, United States

We aim to respond to all privacy inquiries within 5 business days, and to formal data subject requests within the statutory timeframes described above.

Privacy questions, data subject requests, or GDPR inquiries:

support@yurbi.com
5000fish, Inc.  ·  2201 Cooperative Way Drive, STE 600, Herndon, VA 20171, United States