Skip to content

Privacy Policy

Last Updated: December 9, 2025

This Privacy Statement explains how Stability Solutions, Inc. (“Stability”, “we”, “our”, “us”)  collects, uses, discloses, and protects your personal data when you use our websites, products, and services that link to this Privacy Statement (together, the “Services”).

Some Stability products or features may have their own product-specific privacy notices. Those notices work together with this Privacy Statement. If there is a conflict, the product-specific notice will prevail for that product.

1. Scope of this Privacy Statement

This Privacy Statement applies when:

  • you visit our websites;
  • you sign up for or log into a Stability account;
  • you use our dashboards, web apps, APIs, or developer tools;
  • you contact us (for example, by email, forms, or support channels); or
  • you otherwise interact with our Services.

2. Information we collect

We collect information in three main ways:

Information you provide to us, including:

  • Account information such as email address or login credentials
  • Profile information such as name, organisation name, role or job title
  • Preference information, such as communication preferences or other settings
  • Support and communication information such as your support requests, general queries, feedback, and any files or content you submit;
  • Business and billing information (if applicable), although payment processors handle credit card details directly and Stability never sees your credit card details
  • Data you submit into our Services when using particular Stability products.

Information we may collect automatically when you use our Services:

  • Usage and log data, including IP address, browser type and settings, device type and identifiers, operating system, referring URLs, pages viewed, links clicked, session identifiers, and the date and time of your visits.
  • Service interaction data
  • Features you use, API calls, response codes, error logs, and performance data.
  • Cookie and similar technology data, and any associated identifiers, used for things like session management, security, and basic analytics.

Information that we may receive from third parties:

  • Service providers and partners such as analytics providers, security vendors, hosting providers, or identity verification services.
  • Enterprise customers - e.g. if you use our Services through your employer or another organisation, they may provide your name, work email, or role to set up and manage your access.
  • Public sources such as websites, registries, or social media, where permitted by law.
3. How we use information

We use the information we collect for the following purposes:

To provide and operate the Services:

  • Creating and managing accounts and authentication
  • Delivering features and functions of the Service, including processing inputs and returning outputs, providing dashboards, logs, and usage information, etc.

To secure and protect the Services:

  • Detecting, preventing, and investigating fraud, abuse, anomalies or security incidents
  • Managing access controls, rate limiting, and otherwise protecting the integrity and availability of our infrastructure

To communicate with you:

  • Responding to your requests, questions, and support tickets
  • Sending important service-related notices, such as changes to terms, security updates, or incident notifications
  • Where permitted by law and subject to your notification settings, sending information about new features, products, or events.

To improve and develop the Services:

  • Troubleshooting issues and analysing performance
  • Understanding feature usage to improve the Services
  • Generating aggregated or de-identified statistics about use of the Services.

To comply with law and enforce our rights

  • Complying with legal obligations, regulatory requirements, and lawful requests
  • Enforcing agreements, including our Terms of Use
  • Protecting Stability, our users, and the public from harm

Where required by law, we rely on legal bases such as contract performance, legitimate interests, consent, and compliance with legal obligations.

4. Cookies and similar technologies

We and our service providers may use cookies and similar technologies to:

  • keep you signed in and remember your preferences;
  • help secure your account; and
  • understand how our sites and Services are used to improve our Services.

You can typically control cookies through your browser settings. If you disable certain cookies, parts of the Services may not function properly. Where required by law, we will ask for your consent to use non-essential cookies.

5. How we share information

We do not sell your personal information. We may share information in the following limited circumstances:

Service providers: We use third-party companies to help us operate and improve the Services, for example:

  • analytics;
  • email and communications tools;
  • billing and payment processing.

These providers may process information only to perform services for us, under appropriate confidentiality and security obligations.

Enterprise customers and administrators: If you use the Services under an organisation’s account - e.g. your employer:

  • authorised administrators may have access to information associated with your use of the Services (such as your name, work email, and usage data); and
  • that organisation’s own policies may apply to your use of our Services.

Legal and safety reasons: We may disclose information where we reasonably believe it is necessary to:

  • comply with applicable laws, regulations, legal processes, or enforceable governmental requests;
  • enforce our agreements or policies;
  • protect the rights, property, or safety of Stability, our users, or others;
  • investigate and defend against legal claims.

Business transfers: If we are involved in a merger, acquisition, restructuring, financing, or sale of all or part of our business, information may be transferred as part of that transaction, subject to this Privacy Statement.

At your direction or with your consent: We may share information with third parties when you ask us to, or otherwise give us consent to do so.

6. How we work with other organisations (roles)

Stability provides infrastructure and Services that may be used directly by individuals or integrated into systems operated by organisations.

Depending on the context and applicable law:

  • In some cases, we determine what information to collect and how it is used, in which case we act in a role similar to a controller - e.g. in relation to user access credentials or when we engage a third-party service provider.
  • In other cases, we merely provide infrastructure to an organisation that directs how personal data is processed, and act in a role similar to a processor or service provider acting on their behalf.

Please refer to Service-specific terms, data protection addenda, or product-specific privacy notices for more information in the context of those particular Services.

7. International data transfers

Stability is based in the United States, and may process information in the United States or other countries where we or our service providers operate.

These countries may have data protection laws that differ from those in your country. When we transfer personal data internationally, we take steps designed to ensure that appropriate safeguards are in place, which may include:

  • using standard contractual clauses or similar contractual protections;
  • relying on adequacy decisions where available; and
  • applying technical and organisational measures to protect the data.

By using the Services, you understand that your information may be transferred to countries outside your residence.

8. Data retention

We keep personal data only for as long as it is reasonably necessary for the purposes described in this Privacy Statement. Retention periods may vary depending on the type of data and the context in which it was collected. Where we no longer need personal data, we delete it or take steps to de-identify it.

9. Security

We use reasonable technical and organisational measures designed to protect information from unauthorised access, use, alteration, and destruction. You are responsible for keeping your passwords, API keys, and other credentials confidential.

No method of transmission or storage is perfectly secure. If you believe your account or interaction with us is no longer secure, please contact us immediately.

10. Your rights and choices

Depending on your location and applicable law, you may have some or all of the following rights in relation to your personal data:

  • Access: The right to ask whether we process personal data about you and obtain a copy.

  • Correction: The right to request that we correct inaccurate or incomplete personal data. Generally, you will have the ability to update your own personal data through your user account, and should keep your personal data accurate and up-to-date.

  • Deletion: The right in certain jurisdictions to request or require that we delete certain personal data, subject to legal or contractual limitations.

  • Restriction or Withdrawal of Consent: The right to request that we restrict certain processing of your personal data or withdraw your consent for our use of your personal data, although this may interfere with your ability to use, or our ability to provide, the Services.

  • Objection: The right in certain jurisdictions to object to processing based on our legitimate interests.

  • Portability: The right in certain jurisdictions to request a copy of personal data in a structured, commonly used, machine-readable format.

You can also opt out of marketing emails at any time by using the unsubscribe link in the email, and adjust cookie settings where we provide tools to do so, or via your browser.

To exercise your rights, please contact us at dpo@stabilityprotocol.com. We may need to verify your identity before responding. Some rights may be subject to limitations or exceptions under applicable law.

If you are located in the EEA, UK, or another jurisdiction with a dedicated data protection authority, you may also have the right to lodge a complaint with that authority.

11. Children’s privacy

Our Services are not intended for children under the age of 18 (or any higher age required by applicable law in your jurisdiction), and we do not knowingly collect personal data from children below that age.

If you believe a child has provided personal data to us, please contact us so we can take steps consistent with applicable law.

12. Changes to this Privacy Statement

We may update this Privacy Statement from time to time. If we make material changes, we will provide notice by posting the updated statement on our website, and/or sending you a notification through the Services or by email (where appropriate). Your continued use of the Services after the effective date of an updated Privacy Statement shall mean that you acknowledge and agree to the changes.

13. Contact us

If you have questions, concerns, or requests relating to personal data, you can contact us at:

Email: dpo@stabilityprotocol.com 

Attention: Data Protection Officer