1. Introduction
SparkleText LLC ("SparkleText," "we," "us," "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and protect information when you use our SMS keyword auto-reply platform ("Service"). This policy applies to both Hosts (businesses using our platform) and Subscribers (individuals who text keywords).
2. Information We Collect
From Hosts (Account Holders):
- Name, email address, and phone number (provided during registration via Clerk authentication)
- Payment information (processed and stored by Stripe; we do not store card numbers)
- Phone numbers provisioned through Twilio
- Keywords, auto-reply messages, and links you configure
- Usage data including subscriber counts, message logs, and keyword activity
From Subscribers (End Users):
- Phone number (received when you text a keyword to a SparkleText-provisioned number)
- The keyword(s) you texted and the timestamp of your message
- Opt-in and opt-out status
Automatically Collected:
- IP address, browser type, device information, and pages visited (for website visitors)
- Cookies used for authentication and session management
3. How We Use Your Information
- To provide, operate, and maintain the Service
- To process payments and manage subscriptions
- To provision and manage phone numbers
- To deliver keyword auto-replies to Subscribers on behalf of Hosts
- To enforce plan limits and usage policies
- To send transactional emails (account confirmation, billing receipts, plan limit warnings)
- To comply with legal obligations including TCPA compliance
- To detect and prevent fraud or abuse
4. How We Share Your Information
We do not sell your personal information. We share data only as follows:
- Twilio: Phone numbers and SMS message content are processed through Twilio to deliver text messages. Twilio acts as a sub-processor.
- Stripe: Payment and billing information is processed by Stripe. We do not store credit card numbers.
- Clerk: Authentication is managed by Clerk. Email and profile data are stored by Clerk.
- Neon (Database): Account and subscriber data is stored in our Neon PostgreSQL database hosted in the United States.
- Legal Requirements: We may disclose information if required by law, subpoena, or government request.
5. Subscriber Data and Host Responsibility
- Hosts are the data controllers for their Subscriber data. SparkleText acts as a data processor on behalf of Hosts.
- Hosts must not sell, share, or misuse Subscriber phone numbers or data in violation of applicable laws.
- Subscribers can opt out at any time by replying STOP. SparkleText automatically processes opt-out requests.
- Hosts can export their subscriber data at any time via CSV export in the dashboard.
6. SMS Text Messaging Privacy
When you text a keyword to a SparkleText-powered phone number, we collect and process the following data:
- Your mobile phone number
- The keyword(s) you texted and message timestamps
- Your opt-in and opt-out status
This data is used solely to deliver the SMS auto-reply service and maintain compliance records. We do not sell, rent, or share your phone number with third parties for marketing or promotional purposes. Your phone number is shared only with Twilio (our SMS delivery provider) as necessary to deliver messages. You may opt out at any time by replying STOP, and your opt-out preference will be honored immediately. For questions about your SMS data, contact us at privacy@sparkletext.com.
7. Data Retention
- Active accounts: Data is retained for as long as your account is active and you have an active subscription.
- Canceled accounts: Data is retained for 30 days after account cancellation, then permanently deleted.
- Message logs: Retained for 90 days for compliance and troubleshooting, then automatically purged.
- Opted-out subscribers: Opt-out records are retained to ensure we do not re-subscribe individuals who have opted out.
8. Data Security
We use industry-standard security measures to protect your data including encryption in transit (TLS/SSL), encrypted database connections, secure authentication via Clerk, and PCI-compliant payment processing via Stripe. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
9. Your Rights
You have the right to:
- Access your personal data (available in your dashboard and via CSV export)
- Correct inaccurate data (update your profile in the dashboard)
- Delete your account and associated data (contact support)
- Export your data in a portable format (CSV export)
- Opt out of marketing communications (we do not send marketing emails)
California residents have additional rights under the CCPA. To exercise any privacy rights, contact us at privacy@sparkletext.com.
10. Children's Privacy
SparkleText is not intended for use by anyone under 18 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 18, we will delete it promptly.
11. Third-Party Links
Auto-reply messages configured by Hosts may contain links to third-party websites. SparkleText is not responsible for the privacy practices of those websites. We encourage Subscribers to review the privacy policies of any linked sites.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notice at least 14 days before taking effect. The "Last updated" date at the top reflects the most recent revision.
13. Contact Us
For privacy questions or data requests, contact us at: