Privacy Notice
Effective Date: December 4, 2023
Information We Collect
Stackless distinguishes between three data types:
- Customer Data & Partner Data: Information customers provide for processing
- Service Data: Personal information collected during platform provision, excluding customer/partner data
Service Data includes:
- Platform payments and transactions
- Platform settings and configurations
- Technical usage details and operational metrics
- Direct communications with support teams
Why We Process Data
Processing purposes include:
- Delivering requested Platform Services
- Optimizing service use through recommendations
- Maintaining and improving Platform Services
- Providing technical support and professional services
- Detecting and preventing fraud, abuse, and security risks
- Meeting legal obligations
- Other purposes with explicit consent
We may use Service Data together with information we collect from other Stackless products and services.
Data Storage & Security
Service Data may be processed across multiple international data centers. Stackless employs:
- Encryption at rest and in transit
- Regular security audits
- Restricted employee access with confidentiality obligations
- Physical security measures
Data Sharing
Stackless shares Service Data only when:
- Users provide explicit consent
- Administrators or authorized resellers require access
- Third-party processors handle data per instructions
- Legal obligations necessitate disclosure
- Business reorganization occurs
Retention & Deletion
Service Data is deleted or anonymized once it is no longer needed. Retention periods vary by data type and business purpose, with extended retention for tax, fraud prevention, and legal compliance needs.
User Rights
EU/UK/Swiss users have rights to access, correct, delete, export, and restrict processing of their information under GDPR.
California residents have CCPA rights including data access, deletion requests, and non-discrimination protections.