Privacy Policy

Last updated on Dec 15, 2024

1. Introduction

This Privacy Policy explains how Sling Data Labs LLC (“we,” “us,” “our,” or “the Company”) collects, uses, and protects your personal information when you use Sling Data Platform (our web-based service) and Sling CLI (our command-line tool), collectively referred to as “our Services.” By using our Services, you agree to the collection and use of information in accordance with this policy and our Terms of Service.

Sling Data Platform is our comprehensive web-based data integration solution that helps businesses manage and transform their data across multiple platforms. Sling CLI is our free command-line tool that provides core data integration functionality for developers and technical users.

This policy applies to both our paid and free services, though the type and amount of data collected may differ between them. We are committed to protecting your privacy and handling your data in an open and transparent manner, while maintaining appropriate legal protections for our business operations.

IMPORTANT: This Privacy Policy is governed by and should be read in conjunction with our Terms of Service. By using our Services, you acknowledge that you have read, understood, and agree to be bound by both documents.

2. Information We Collect

2.1 Sling Data Platform (Web Version)

When you use Sling Data Platform, we collect:

• Account Information: Your name, email address, and company details provided during registration
• Authentication Data: Encrypted passwords and security credentials
• Payment Information: Payment card details (processed securely through our payment processor)
• Usage Data: Information about how you interact with our platform, including features used, time spent, and actions taken
• Integration Data: Configuration settings, metadata, and connection details for your data integrations
• Technical Information: IP addresses, browser type, device information, and access timestamps
• Communication Data: Records of your interactions with our support team and any feedback provided

2.2 Sling CLI (Command Line Version)

For Sling CLI users, we collect:

• Usage Analytics: Basic usage statistics to improve the tool (opt-out available)
• Error Reports: Stack traces and error messages when issues occur (opt-out available)
• Local Configuration: Configuration files stored locally on your machine (opt-out available)
• Version Information: Details about the CLI version and operating system (opt-out available)

3. How We Use Your Information

We use the collected information for the following purposes:

• To provide, maintain, and improve our Services
• To process your payments and manage your subscription
• To send you important updates about our Services
• To provide technical support and respond to your inquiries
• To analyze usage patterns and optimize our Services
• To detect and prevent fraud or abuse
• To comply with legal obligations

We process your information based on: contract performance, legal obligations, legitimate interests, and, where applicable, your consent.

4. Data Storage and Security

We implement industry-standard security measures to protect your information:

• All data is encrypted in transit and at rest using strong encryption protocols
• We maintain secure data centers with restricted physical and digital access
• Regular security audits and penetration testing are conducted
• Employee access to user data is strictly limited and monitored
• Automated backup systems ensure data resilience
• We retain your data only as long as necessary for service provision or legal requirements

Data retention periods vary by data type:

• Account information: Duration of account activity plus 30 days after deletion
• Payment information: As required by financial regulations
• Usage logs: 90 days
• Integration configurations: Duration of active subscription

5. Data Sharing and Third Parties

We share your information with third parties only in the following circumstances:

• Service Providers: We work with trusted third-party providers for hosting, payment processing, and analytics. These providers are bound by strict confidentiality agreements.
• Integration Partners: When you use specific integrations, necessary data may be shared with the respective platform providers to enable the service.
• Legal Requirements: We may disclose information if required by law, regulation, or legal process.
• Business Transfers: In the event of a merger, acquisition, or asset sale, user information may be transferred as part of the transaction.

We do not sell your personal information to third parties. When we share data with service providers, we ensure they maintain appropriate security measures and use the data only for specified purposes.

6. Your Rights and Choices

As a user of our Services, you have several rights regarding your personal information:

• Right to Access: You can request a copy of your personal data that we hold. This includes the right to know what information we collect, how we use it, and who we share it with.
• Right to Correction: You can request corrections to any inaccurate or incomplete personal information we maintain about you.
• Right to Deletion: You can request deletion of your personal data, subject to certain exceptions such as legal obligations or legitimate business purposes.
• Right to Data Portability: You can request your data in a structured, commonly used format and have it transmitted to another service provider where technically feasible.
• Marketing Preferences: You can opt-out of marketing communications at any time by clicking the “unsubscribe” link in our emails or contacting us directly.

For Sling CLI users, you can opt-out of usage analytics collection by modifying your local configuration file or using the appropriate CLI command.

To exercise any of these rights, please contact us using the information provided in the Contact Information section.

7. International Data Transfers

Sling Data Platform and Sling CLI operate globally, which means your information may be transferred to and processed in countries other than your own. These countries may have different data protection laws than your country of residence.

We ensure appropriate safeguards are in place for international data transfers through:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data Processing Agreements with our service providers
• Privacy Shield certification (where applicable)
• Additional technical and organizational security measures

When we transfer data internationally, we take steps to ensure that your information receives an adequate level of protection in the jurisdictions where we process it.

8. Children’s Privacy

Our Services are not directed to individuals under the age of 16 (“Children”). We do not knowingly collect personal information from Children. If you become aware that a Child has provided us with personal information, please contact us. If we become aware that we have collected personal information from Children without verification of parental consent, we take steps to remove that information from our servers.

For users in the European Economic Area, specific age thresholds for consent may vary by country, and we comply with all applicable local laws regarding the protection of Children’s data.

9. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will:

• Post the updated policy on our website
• Update the “Last Updated” date at the top of this policy
• Notify you via email for significant changes (if you have an account)
• Display a prominent notice in our web application
• Announce changes in our CLI release notes

Your continued use of our Services after any modifications to this Privacy Policy constitutes your acceptance of such changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

10. Contact Information

If you have questions, concerns, or requests related to this Privacy Policy or our privacy practices, please contact us:

Email: [[email protected]]

Response Time: We strive to respond to privacy-related inquiries within 30 days. For urgent matters or data breach notifications, we will respond as quickly as possible, in accordance with our incident response procedures and applicable laws.

11. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Contractual Necessity: Processing necessary to provide our Services and fulfill our contractual obligations to you, including account management, processing payments, and providing technical support.
• Legitimate Interests: Processing that serves our legitimate business interests, such as improving our Services, preventing fraud, and ensuring network security. We balance these interests against your fundamental rights and freedoms.
• Legal Obligations: Processing required to comply with applicable laws, regulations, or legal proceedings.
• Consent: Where required by law, we obtain your explicit consent for specific processing activities. You have the right to withdraw this consent at any time.

We maintain records of our processing activities and regularly assess the appropriate legal basis for each processing operation.

12. Region-Specific Provisions

12.1 European Union (GDPR)

For users in the European Economic Area (EEA), we comply with the GDPR and provide additional rights:

• Right to object to processing based on legitimate interests
• Right to restrict processing
• Right to file a complaint with your local data protection authority
• Right to withdraw consent at any time

We ensure adequate safeguards for data transfers outside the EEA through Standard Contractual Clauses and other appropriate measures.

12.2 California (CCPA)

California residents have specific rights under the California Consumer Privacy Act (CCPA), including:

• Right to know what personal information we collect and how we use it
• Right to delete personal information
• Right to opt-out of the sale of personal information (note: we do not sell personal information)
• Right to non-discrimination for exercising these rights

To exercise your CCPA rights, please contact us using the information provided in Section 10.

12.3 Other Jurisdictions

We comply with local data protection laws in all jurisdictions where we operate. Specific provisions may apply based on your location, and we will honor additional rights or requirements as mandated by applicable local laws.

13. Cookie Policy

We use cookies and similar tracking technologies to enhance your experience with our Services:

Essential Cookies:

• Authentication and security
• Basic functionality and preferences
• Session management

Analytics Cookies:

• Usage patterns and trends
• Performance monitoring
• Feature optimization

Third-Party Cookies:

• Payment processing
• Marketing analytics (with consent)
• Integration partners

You can manage cookie preferences through your browser settings. Note that blocking certain cookies may impact the functionality of our Services.

14. Technical Details

We maintain detailed technical measures to ensure the security and reliability of our Services:

Log Retention:

• Application logs: 90 days
• Security logs: 1 year
• Access logs: 180 days
• Error logs: 30 days

API Usage Tracking:

• Rate limiting and quota monitoring
• Authentication attempts
• Endpoint usage statistics
• Performance metrics

Security Monitoring:

• 24/7 infrastructure monitoring
• Automated threat detection
• Regular vulnerability scanning
• Security incident response procedures
• Access control auditing

We implement industry-standard security protocols and regularly update our security measures to protect against emerging threats. Our technical infrastructure is designed to maintain high availability while ensuring data protection and privacy.

For Sling CLI users, we maintain separate logging and monitoring systems that respect local privacy settings and provide transparency about data collection through CLI documentation and configuration options.

15. Limitation of Liability and Disclaimers

Service Provision

Our Services are provided “as is” and “as available” without warranties of any kind. While we implement reasonable security measures to protect your data, we cannot guarantee absolute security or uninterrupted service availability.

Liability Limitations

To the maximum extent permitted by applicable law, Sling Data Labs LLC shall not be liable for:

• Any direct, indirect, incidental, special, consequential, or punitive damages
• Loss of profits, revenue, data, or business opportunities
• Service interruptions or data breaches beyond our reasonable control
• Third-party actions or integrations
• Any damages exceeding the amount paid by you for our Services in the twelve (12) months preceding the claim

Data Security Disclaimer

While we employ industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information and you acknowledge that you provide information at your own risk.

16. User Indemnification

By using our Services, you agree to indemnify, defend, and hold harmless Sling Data Labs LLC, its officers, directors, employees, agents, and affiliates from and against any and all claims, damages, obligations, losses, liabilities, costs, and expenses (including reasonable attorney’s fees) arising from:

• Your use or misuse of our Services
• Your violation of this Privacy Policy or our Terms of Service
• Your violation of any third-party rights, including intellectual property rights
• Any data you provide or process through our Services
• Any breach of your representations and warranties
• Your negligent or wrongful conduct

This indemnification obligation survives termination of your use of our Services.

17. Force Majeure

Sling Data Labs LLC shall not be liable for any failure or delay in performance of our Services due to circumstances beyond our reasonable control, including but not limited to:

• Natural disasters, pandemics, or acts of God
• War, terrorism, or civil unrest
• Government actions or regulatory changes
• Internet service provider failures or cyber attacks
• Power outages or infrastructure failures

18. Governing Law and Dispute Resolution

This Privacy Policy and any disputes arising from it shall be governed by the laws of the State of Florida, United States, without regard to conflict of law principles. Any legal action or proceeding arising under this Privacy Policy shall be brought exclusively in the federal or state courts located in Florida, and you hereby consent to personal jurisdiction and venue therein.

Dispute Resolution Process

Before initiating any legal proceedings, you agree to:

1. Notify us in writing of the specific dispute
2. Attempt to resolve the matter through good-faith negotiations for at least 30 days
3. Consider mediation through a mutually agreed-upon mediator

Class Action Waiver

You agree that any dispute resolution proceedings will be conducted only on an individual basis and not in a class, consolidated, or representative action.