
Primary keys & indexes
See every PK and index without digging through DDL
Security
NexoxaBridge is a locally installed developer tool. This page explains how credentials are protected, how AI Copilot works with external APIs, and what information is never transmitted to our servers or to AI providers.
Last updated June 20, 2026

NexoxaBridge Database & Server Studio is desktop developer software for managing databases, SSH servers, S3-compatible storage, file transfer (SFTP/FTP), and SMTP mail testing from one workbench.
It is not a hosted data-processing or database-hosting service. We do not take custody of your production databases, customer records, or connection secrets on NexoxaBridge servers during normal local use.
Business category
When you save a connection, the desktop app encrypts the connection string and stores it in your operating system's secure credential vault:
| Encryption | AES-256-GCM |
|---|---|
| Windows | Windows Credential Manager |
| macOS | Keychain Access |
| Linux | Secret Service (e.g. GNOME Keyring) |
| NexoxaBridge servers | Do not receive or store your postgres://, ssh://, s3://, or smtp:// credentials |
Uninstalling the app removes NexoxaBridge-managed vault entries from your device. We cannot retrieve your secrets remotely because we never had them.
By design, the following are never included in AI prompts or uploaded to NexoxaBridge servers:
You stay in control
AI Copilot uses external AI APIs (for example OpenRouter, or a provider you configure with your own API key). Only data needed to answer your request may be sent:
| Typical context | Schema metadata (table/column names), SQL or query text you include, error messages, and knowledge-graph summaries you trigger |
|---|---|
| Free tier (BYOK) | Your API key is stored locally in the encrypted vault. Requests go from your machine directly to the provider you choose |
| Pro / Enterprise | Requests may route through the NexoxaBridge platform to configured AI subprocessors under TLS — see Privacy Policy |
| Consent | You initiate each Copilot interaction. Disable cloud Copilot or use a local-only API key to minimize external transmission |
If you paste sensitive data into a Copilot prompt, that content may be sent to the AI provider for that request. Do not paste secrets, PII, or production row dumps unless your policies allow it.
Your NexoxaBridge account (name, email, subscription tier, session tokens) is stored on our platform to authenticate you and process payments. Payment card details are handled by our payment processor — we do not store full card numbers. See the Privacy Policy for the full list.
Security questions or vulnerability reports: [email protected]
Product

See every PK and index without digging through DDL

VPS health score in one ssh:// connect

Dual-pane SFTP beside your SQL tabs

AUTH + TLS check before you send