Privacy Policy

Last updated on Nov 22, 2024

1. Introduction

This Privacy Policy explains how we collect, use, and protect your personal information when you use Sling Data Platform (our web-based service) and Sling CLI (our command-line tool), collectively referred to as “our Services.” By using our Services, you agree to the collection and use of information in accordance with this policy.

Sling Data Platform is our comprehensive web-based data integration solution that helps businesses manage and transform their data across multiple platforms. Sling CLI is our free command-line tool that provides core data integration functionality for developers and technical users.

This policy applies to both our paid and free services, though the type and amount of data collected may differ between them. We are committed to protecting your privacy and handling your data in an open and transparent manner.

2. Information We Collect

2.1 Sling Data Platform (Web Version)

When you use Sling Data Platform, we collect:

• Account Information: Your name, email address, and company details provided during registration
• Authentication Data: Encrypted passwords and security credentials
• Payment Information: Payment card details (processed securely through our payment processor)
• Usage Data: Information about how you interact with our platform, including features used, time spent, and actions taken
• Integration Data: Configuration settings, metadata, and connection details for your data integrations
• Technical Information: IP addresses, browser type, device information, and access timestamps
• Communication Data: Records of your interactions with our support team and any feedback provided

2.2 Sling CLI (Command Line Version)

For Sling CLI users, we collect:

• Usage Analytics: Basic usage statistics to improve the tool (opt-out available)
• Error Reports: Stack traces and error messages when issues occur (opt-out available)
• Local Configuration: Configuration files stored locally on your machine (opt-out available)
• Version Information: Details about the CLI version and operating system (opt-out available)

3. How We Use Your Information

We use the collected information for the following purposes:

• To provide, maintain, and improve our Services
• To process your payments and manage your subscription
• To send you important updates about our Services
• To provide technical support and respond to your inquiries
• To analyze usage patterns and optimize our Services
• To detect and prevent fraud or abuse
• To comply with legal obligations

We process your information based on: contract performance, legal obligations, legitimate interests, and, where applicable, your consent.

4. Data Storage and Security

We implement industry-standard security measures to protect your information:

• All data is encrypted in transit and at rest using strong encryption protocols
• We maintain secure data centers with restricted physical and digital access
• Regular security audits and penetration testing are conducted
• Employee access to user data is strictly limited and monitored
• Automated backup systems ensure data resilience
• We retain your data only as long as necessary for service provision or legal requirements

Data retention periods vary by data type:

• Account information: Duration of account activity plus 30 days after deletion
• Payment information: As required by financial regulations
• Usage logs: 90 days
• Integration configurations: Duration of active subscription

5. Data Sharing and Third Parties

We share your information with third parties only in the following circumstances:

• Service Providers: We work with trusted third-party providers for hosting, payment processing, and analytics. These providers are bound by strict confidentiality agreements.
• Integration Partners: When you use specific integrations, necessary data may be shared with the respective platform providers to enable the service.
• Legal Requirements: We may disclose information if required by law, regulation, or legal process.
• Business Transfers: In the event of a merger, acquisition, or asset sale, user information may be transferred as part of the transaction.

We do not sell your personal information to third parties. When we share data with service providers, we ensure they maintain appropriate security measures and use the data only for specified purposes.

6. Your Rights and Choices

As a user of our Services, you have several rights regarding your personal information:

• Right to Access: You can request a copy of your personal data that we hold. This includes the right to know what information we collect, how we use it, and who we share it with.
• Right to Correction: You can request corrections to any inaccurate or incomplete personal information we maintain about you.
• Right to Deletion: You can request deletion of your personal data, subject to certain exceptions such as legal obligations or legitimate business purposes.
• Right to Data Portability: You can request your data in a structured, commonly used format and have it transmitted to another service provider where technically feasible.
• Marketing Preferences: You can opt-out of marketing communications at any time by clicking the “unsubscribe” link in our emails or contacting us directly.

For Sling CLI users, you can opt-out of usage analytics collection by modifying your local configuration file or using the appropriate CLI command.

To exercise any of these rights, please contact us using the information provided in the Contact Information section.

7. International Data Transfers

Sling Data Platform and Sling CLI operate globally, which means your information may be transferred to and processed in countries other than your own. These countries may have different data protection laws than your country of residence.

We ensure appropriate safeguards are in place for international data transfers through:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data Processing Agreements with our service providers
• Privacy Shield certification (where applicable)
• Additional technical and organizational security measures

When we transfer data internationally, we take steps to ensure that your information receives an adequate level of protection in the jurisdictions where we process it.

8. Children’s Privacy

Our Services are not directed to individuals under the age of 16 (“Children”). We do not knowingly collect personal information from Children. If you become aware that a Child has provided us with personal information, please contact us. If we become aware that we have collected personal information from Children without verification of parental consent, we take steps to remove that information from our servers.

For users in the European Economic Area, specific age thresholds for consent may vary by country, and we comply with all applicable local laws regarding the protection of Children’s data.

9. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will:

• Post the updated policy on our website
• Update the “Last Updated” date at the top of this policy
• Notify you via email for significant changes (if you have an account)
• Display a prominent notice in our web application
• Announce changes in our CLI release notes

Your continued use of our Services after any modifications to this Privacy Policy constitutes your acceptance of such changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

10. Contact Information

If you have questions, concerns, or requests related to this Privacy Policy or our privacy practices, please contact us:

Email: [[email protected]]

Response Time: We strive to respond to privacy-related inquiries within 30 days. For urgent matters or data breach notifications, we will respond as quickly as possible, in accordance with our incident response procedures and applicable laws.

11. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Contractual Necessity: Processing necessary to provide our Services and fulfill our contractual obligations to you, including account management, processing payments, and providing technical support.
• Legitimate Interests: Processing that serves our legitimate business interests, such as improving our Services, preventing fraud, and ensuring network security. We balance these interests against your fundamental rights and freedoms.
• Legal Obligations: Processing required to comply with applicable laws, regulations, or legal proceedings.
• Consent: Where required by law, we obtain your explicit consent for specific processing activities. You have the right to withdraw this consent at any time.

We maintain records of our processing activities and regularly assess the appropriate legal basis for each processing operation.

12. Region-Specific Provisions

12.1 European Union (GDPR)

For users in the European Economic Area (EEA), we comply with the GDPR and provide additional rights:

• Right to object to processing based on legitimate interests
• Right to restrict processing
• Right to file a complaint with your local data protection authority
• Right to withdraw consent at any time

We ensure adequate safeguards for data transfers outside the EEA through Standard Contractual Clauses and other appropriate measures.

12.2 California (CCPA)

California residents have specific rights under the California Consumer Privacy Act (CCPA), including:

• Right to know what personal information we collect and how we use it
• Right to delete personal information
• Right to opt-out of the sale of personal information (note: we do not sell personal information)
• Right to non-discrimination for exercising these rights

To exercise your CCPA rights, please contact us using the information provided in Section 10.

12.3 Other Jurisdictions

We comply with local data protection laws in all jurisdictions where we operate. Specific provisions may apply based on your location, and we will honor additional rights or requirements as mandated by applicable local laws.

13. Cookie Policy

We use cookies and similar tracking technologies to enhance your experience with our Services:

Essential Cookies:

• Authentication and security
• Basic functionality and preferences
• Session management

Analytics Cookies:

• Usage patterns and trends
• Performance monitoring
• Feature optimization

Third-Party Cookies:

• Payment processing
• Marketing analytics (with consent)
• Integration partners

You can manage cookie preferences through your browser settings. Note that blocking certain cookies may impact the functionality of our Services.

14. Technical Details

We maintain detailed technical measures to ensure the security and reliability of our Services:

Log Retention:

• Application logs: 90 days
• Security logs: 1 year
• Access logs: 180 days
• Error logs: 30 days

API Usage Tracking:

• Rate limiting and quota monitoring
• Authentication attempts
• Endpoint usage statistics
• Performance metrics

Security Monitoring:

• 24/7 infrastructure monitoring
• Automated threat detection
• Regular vulnerability scanning
• Security incident response procedures
• Access control auditing

We implement industry-standard security protocols and regularly update our security measures to protect against emerging threats. Our technical infrastructure is designed to maintain high availability while ensuring data protection and privacy.

For Sling CLI users, we maintain separate logging and monitoring systems that respect local privacy settings and provide transparency about data collection through CLI documentation and configuration options.