Privacy policy

Last updated: April 4, 2024

This page describes the privacy policy for:

• The Slinky website (https://slinky.gg).
• The Slinky API (https://api.slinky.gg).
• The Slinky client (the program that you download and run on your computer).

What data is collected?

We may collect the following data:

• The email address entered during checkout.
• Your “Device ID”, which is a cryptographic hash generated from your computer’s hardware information, such as the processor model (only when running the Slinky client, not if you only visit the website).

We do not store cookies ourselves, but the third parties listed below might.

Cloudflare

The Slinky website and Slinky API both serve all traffic through Cloudflare’s network. Cloudflare may collect data or store cookies.

For more information, visit their Privacy Policy.

Stripe

Slinky uses Stripe to handle payments. Stripe will collect your payment and billing information. We only share information with Stripe when you actually choose it as payment provider during checkout.

For more information, visit their Privacy Policy.

BTCPayServer

Slinky uses a self-hosted BTCPayServer instance for handling cryptocurrency payments. No information is shared with third parties if you choose it as payment provider on checkout.

Postmark

The Slinky API uses Postmark to deliver the email containing your license key and download link after you have paid, meaning that we have to share your email address with Postmark.

For more information, visit their Privacy Policy.

What is the collected data used for?

• Your email address is collected to deliver the product after payment. When paying via BTCPayServer, it is also used as a way to associate users with their payments (otherwise, customer support would be very difficult).
• Your Device ID is needed to prevent sharing the product between multiple devices.

How long will the collected data be stored?

• For payments through Stripe: We do not store your email address, it is accessed to deliver the product and then immediately discarded.
• For payments through BTCPayServer: Your email address is stored for 30 days.
• Your Device ID is stored for up to 30 days after your license expires.

The third-party providers that we use may retain data for a longer time.

How is the data secured?

• We do not store sensitive billing information (such as credit card numbers) ourselves, meaning it can’t be stolen if our server(s) are breached.
• Email addresses used in BTCPayServer payments are stored on a separate server that is used exclusively for payment processing.
• Your Device ID is a cryptographic hash, it is practically impossible to obtain your hardware information from just the Device ID. The hashing operation is performed on your device, so no plaintext hardware information will be sent to our servers.

Please keep in mind that this only applies to the data that we store ourselves, not the data collected by third parties.

Contact

Please visit your contact page if you have any questions regarding the data collected by us, such as requesting to view or delete it.