Last updated: February 2026
SatGate is designed with privacy as a core principle. We collect minimal data and are transparent about what we do and don't collect across our open-source software and cloud service.
When you sign up for SatGate Cloud, we collect:
We do not inspect or store the contents of API requests proxied through SatGate. The gateway processes request metadata (headers, path, method) for routing and policy enforcement only.
When you self-host SatGate or deploy the gateway in hybrid mode (gateway in your VPC, dashboard in our cloud), all proxied traffic stays in your infrastructure. We have no access to your server logs, API traffic, or Lightning node data. In hybrid mode, the cloud dashboard receives only aggregated telemetry (request counts, budget status) — never request contents.
The satgate.io website may use privacy-respecting analytics (e.g., Vercel Analytics) to understand aggregate traffic patterns. This data is anonymized and does not track individual users.
SatGate Cloud uses HttpOnly session cookies for authentication. We do not use tracking cookies or third-party advertising cookies.
SatGate Cloud uses Resend for transactional email delivery and WorkOS for enterprise SSO. If you authenticate via Google or GitHub OAuth, their respective privacy policies apply. For Lightning (L402) features, your Lightning node provider's privacy policy applies.
Usage telemetry and audit logs are retained for the duration of your account. You may request deletion of your account and associated data by contacting us.
For privacy questions, contact us at contact@satgate.io.