Privacy Policy
This Privacy Policy explains how SLK ("SLK", "we", "us") collects, uses, and protects personal data when you use the SLK Engineering Suite (the "Service"). We act as the data controller for account and usage data described below.
1. Data we collect
| Category | Examples | Why |
|---|---|---|
| Account data | Name, email address, organisation name, role, hashed password | To create and secure your account |
| Engineering content | Well, tool-string, fluid, and job inputs; calculation results you save | To provide the Service to you |
| Usage & security logs | Calculation events, audit events, timestamps, IP address, browser type | Security, abuse prevention, and support |
| Billing data | Subscription status, plan, customer reference | To manage your subscription |
2. Payment data
3. How we use your data
- To provide, maintain, and improve the Service;
- To authenticate you and secure your account and organisation;
- To process subscriptions and send service-related communications (e.g. email verification, password reset, billing notices);
- To detect, prevent, and investigate fraud, abuse, and security incidents;
- To comply with legal obligations.
We do not sell your personal data, and we do not use your engineering content to train models or for advertising.
4. Legal bases
Where GDPR or similar law applies, we process data on the bases of contract performance (providing the Service), legitimate interests (security, service improvement), consent (where requested), and legal obligation.
5. Sharing & sub-processors
We share data only with service providers who help us operate, under appropriate safeguards:
- Paddle — payments and subscription management (Merchant of Record);
- Google Cloud — application hosting and database (data hosted in the EU region);
- Resend — transactional email delivery (verification, password reset).
We may also disclose data if required by law or to protect our rights and the safety of users.
6. Security
We apply industry-standard safeguards, including encryption in transit (HTTPS), encryption of sensitive data at rest, hashed passwords, role-based access control, brute-force protection, and audit logging. No system is perfectly secure, but we work to protect your data.
7. Data retention
We retain account and content data for as long as your account is active. After account closure we delete or anonymise personal data within a reasonable period, except where retention is required for legal, accounting, or security purposes.
8. Your rights
Subject to applicable law, you may request access to, correction of, or deletion of your personal data, object to or restrict processing, and request data portability. To exercise these rights, contact us at support@slk-llc.com. You may also have the right to lodge a complaint with your local data-protection authority.
9. Cookies
We use a small number of strictly necessary cookies to keep you signed in (a secure, HTTP-only session cookie) and to remember preferences such as language and units. We do not use third-party advertising or tracking cookies.
10. International transfers
Your data may be processed in countries other than your own by our sub-processors. Where required, transfers are protected by appropriate legal safeguards.
11. Changes
We may update this Policy; the "Last updated" date reflects the latest revision. Material changes will be communicated where appropriate.
12. Contact
Privacy questions: support@slk-llc.com.
SLK · Kazakhstan.