Privacy Policy

1. Introduction

SIXTA ("we," "our," or "us") operates the website sixta.ai and provides an autonomous database reliability engineering platform. This Privacy Policy explains how we collect, use, and protect your information when you visit our website, use our services, or express interest in our products.

This policy covers two categories of data: (a) personal data we collect directly from you through our website and communications, and (b) data processed by the SIXTA platform on behalf of our customers. For category (b), SIXTA acts as a data processor and our customers act as data controllers; processing is governed by our Data Processing Addendum.

2. Information We Collect

Information You Provide

When you contact us, request a demo, or engage with our services, we collect:

• Your name and email address
• Company name and job title
• Information about your current monitoring and database infrastructure
• Any other information you choose to provide in correspondence

Automatically Collected Information

We do not use cookies, tracking pixels, or any form of persistent browser storage on our website. We use PostHog, configured in cookieless mode with memory-only persistence, to collect anonymous, aggregate usage data such as page views and button clicks. No personal data is collected, no persistent identifiers are stored in your browser, and we cannot identify returning visitors. For full details, see our Cookie Policy.

Data Processed by the SIXTA Platform

When deployed for our customers, the SIXTA platform processes infrastructure telemetry including database metrics, query performance patterns, system logs, and observability data. This data is processed within the customer's own infrastructure (VPC) and does not typically contain personal data. SIXTA does not access, read, or process the contents of customer databases. Where telemetry may incidentally contain personal data, processing is governed by our Data Processing Addendum.

3. How We Use Your Information

We use the information we collect to:

• Respond to your partnership inquiries
• Evaluate potential partnership opportunities
• Send you information about SIXTA products and services (if you've opted in)
• Improve our website and services
• Comply with legal obligations

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your personal data based on:

• Consent: When you submit our partnership form and check the consent boxes
• Legitimate Interests: To respond to your inquiries and improve our services
• Contract: When necessary to provide services you've requested

5. Data Sharing and Sub-processors

We do not sell, trade, or rent your personal information. We may share your information only:

• With service providers who help us operate our business (e.g., Formspree for form handling)
• When required by law or to protect our rights
• In connection with a business transfer or acquisition

When operating the SIXTA platform on behalf of customers, certain data may be transmitted to our sub-processors as necessary to deliver the service. Our current sub-processors are listed in our Data Processing Addendum.

6. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes outlined in this policy, typically:

• Partnership inquiries: 2 years from last communication
• Marketing communications: Until you unsubscribe
• Legal requirements: As required by applicable law

7. Your Rights

You have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data
• Portability: Receive your data in a portable format
• Object: Object to certain processing activities
• Withdraw Consent: Withdraw previously given consent at any time

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

9. International Transfers

SIXTA is based in the United States. Where we process personal data of individuals in the European Economic Area or the United Kingdom, we ensure appropriate safeguards are in place in accordance with GDPR requirements. These safeguards include Standard Contractual Clauses (SCCs) approved by the European Commission and, where applicable, supplementary measures. Details of international transfer mechanisms for platform data are set out in our Data Processing Addendum.

10. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children.

11. Updates to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Effective Date."

12. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information (which we do not do).

Contact Us

If you have questions about this Privacy Policy or your personal data, please contact us:

Email: privacy@sixta.ai
Website: sixta.ai
Privacy inquiries: privacy@sixta.ai

For EEA and UK residents: You have the right to lodge a complaint with your local supervisory authority if you believe we have not handled your personal data properly.