Privacy Policy


Last updated: June 26, 2026


Sunbase Data ("Sunbase," "we," "us," or "our") operates the website www.sunbasedata.com and the related SunbaseData CRM software and services (collectively, the "Service").


This Privacy Policy explains what information we collect, how we use and share it, and the choices and rights you have. By accessing or using the Service, you agree to the practices described in this Policy. Capitalized terms not defined here have the meaning given in our Terms of Service.


1. Information We Collect


We collect information to provide, maintain, and improve the Service. The types of information we collect fall into the categories below.


Personal Information You Provide


When you contact us, request a demo, create an account, or otherwise use the Service, we may collect personal information that identifies you, including:


  • First and last name
  • Email address
  • Phone number
  • Company name and role (where you provide it)
  • Any other information you choose to share with us


Usage Data


We automatically collect information about how the Service is accessed and used. This may include your Internet Protocol (IP) address, browser type and version, the pages you visit, the date and time of your visit, time spent on pages, unique device identifiers, and other diagnostic data.


Cookies and Tracking Data


We use cookies and similar technologies (such as beacons, tags, and scripts) to operate the Service, remember your preferences, maintain security, and analyze usage. See Section 4 for details.


2. How We Use Your Information


Sunbase uses the information we collect to:


  • Provide, operate, and maintain the Service
  • Respond to inquiries and provide customer care and support
  • Notify you about changes, updates, or features of the Service
  • Enable you to participate in interactive features when you choose to
  • Analyze usage so we can monitor and improve the Service
  • Detect, prevent, and address technical issues, fraud, or abuse
  • Comply with our legal obligations and enforce our agreements


3. How We Share Your Information


We do not sell or rent your personal information, and we do not share it with third parties for their own marketing or promotional purposes. We share information only in the limited circumstances below.


Service Providers


We may engage third-party companies and individuals ("Service Providers") to help us deliver, maintain, and analyze the Service. These parties may access your personal information only to perform tasks on our behalf and are contractually obligated not to disclose or use it for any other purpose.


Analytics


Google Analytics. We use Google Analytics, a web analytics service provided by Google, to track and report on Service usage. Google may use this data within its own services. You can opt out by installing the Google Analytics opt-out browser add-on. For more information, see Google's Privacy & Terms.


Facebook Lead Capture


Where you run lead-generation ads on Facebook, we use Facebook integration solely to capture contact information that an end user submits through a Facebook ad and pass it into the CRM. We do not use this integration for any other purpose. You can request deletion of this data by contacting us.


Legal and Safety Disclosures


We may disclose your personal information in good faith where we believe it is necessary to:


  • Comply with a legal obligation or valid legal process
  • Protect and defend the rights or property of Sunbase
  • Prevent or investigate possible wrongdoing in connection with the Service
  • Protect the personal safety of users or the public
  • Protect against legal liability


Business Transfers


If Sunbase is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction. We will take steps to ensure it remains subject to protections consistent with this Policy.


4. Cookies and Tracking Technologies


Cookies are small data files stored on your device that may include an anonymous unique identifier. We use them to operate and secure the Service and to remember your settings.


Examples of cookies we use:


  • Session cookies — to operate the Service.
  • Preference cookies — to remember your preferences and settings.
  • Security cookies — for security purposes.


You can instruct your browser to refuse cookies or to alert you when cookies are being sent. If you disable cookies, some portions of the Service may not function properly.


We have not enabled Google AdSense on our site, though we may do so in the future and will update this Policy accordingly.


5. Google User Data


The SunbaseData system can connect with your Google Calendar and Google (Gmail) account. Our use of Google user data complies with the Google API Services User Data Policy, including its Limited Use requirements.


Google Calendar. We use this connection to write a scheduled appointment to your calendar and, where an appointment is cancelled, to delete that entry. If a user has permission, they can check the Google Calendar, which pulls availability data from Google to show whether someone is busy at a given time. We do not store your Google Calendar appointments in the SunbaseData system.


Gmail — Sending. The send-email capability links the CRM to Google as an outgoing email provider for automated contact workflows with customers. These workflows are controlled by your company, not by Sunbase. We do not store any emails in our system unless they are forwarded to our CC account.


Gmail — Reading. We use the read permission to power our basic web email client and to let you send emails to customers from within the system without signing into a separate tool. We never use this access for any other purpose, and we do not store the emails.


Additional Limits on Google User Data. Notwithstanding anything else in this Policy, our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. If you grant the app access to Google Drive (including attachments), we will use that access only to provide web access to your Google Drive files and to link Drive data to app records. We do not maintain or retain this data, and we will not allow humans to read it unless: (a) we have your affirmative agreement for specific files; (b) it is necessary for security purposes, such as investigating abuse; (c) it is required to comply with applicable law; or (d) it is for the app's internal operations and only in aggregated, anonymized form.


We do not share any of this data, any customer data, or any mobile information with any third party, particularly for marketing or promotional purposes.


6. International Data Transfers


Sunbase is based in the United States. Your information, including personal information, may be transferred to — and processed and stored on — servers located in the United States, where data protection laws may differ from those in your jurisdiction.


If you are located outside the United States, by using the Service and providing information to us, you understand that your information will be transferred to and processed in the United States. Where required by law, we rely on appropriate safeguards (such as Standard Contractual Clauses) for such transfers, and we take reasonable steps to ensure your information is treated securely and in accordance with this Policy.


7. Data Retention


We retain personal information only for as long as necessary to fulfill the purposes described in this Policy, including to provide the Service, comply with our legal obligations, resolve disputes, and enforce our agreements. When information is no longer needed, we take reasonable steps to delete or anonymize it.


8. Data Security


The security of your data is important to us. We use commercially reasonable administrative, technical, and physical safeguards to protect your personal information. However, no method of transmission over the Internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.


9. Your Privacy Rights


For California Residents (CCPA / CPRA)


If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act, gives you the following rights:


  • Right to know what personal information we collect, use, disclose, and the sources and purposes for it.
  • Right to access a copy of the personal information we hold about you.
  • Right to delete personal information we have collected, subject to legal exceptions.
  • Right to correct inaccurate personal information.
  • Right to opt out of the sale or sharing of personal information.
  • Right to limit the use of sensitive personal information.
  • Right to non-discrimination for exercising any of these rights.


We do not sell or share your personal information as those terms are defined under California law, and we do not use sensitive personal information for purposes that would require a "Limit the Use of My Sensitive Personal Information" mechanism. Because we do not sell or share personal information, we do not offer a "Do Not Sell or Share My Personal Information" link.


The categories of personal information we collect are described in Section 1 (identifiers such as name, email, and phone number; commercial and usage information; and internet or network activity). To exercise any of these rights, see How to Exercise Your Rights below. You may use an authorized agent to submit a request on your behalf, subject to verification.


For Users in the EEA, United Kingdom, and Switzerland (GDPR)


If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have the following rights regarding your personal data:


  • Access — to obtain confirmation of whether we process your data and a copy of it.
  • Rectification — to correct inaccurate or incomplete data.
  • Erasure — to request deletion of your data ("right to be forgotten").
  • Restriction — to request that we limit how we process your data.
  • Portability — to receive your data in a structured, commonly used format.
  • Objection — to object to processing based on our legitimate interests, and to object to direct marketing at any time.
  • Withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting prior processing.
  • Lodge a complaint — with your local data protection authority.


Legal bases for processing. Where GDPR applies, we process personal data on one or more of the following bases: your consent; the performance of a contract with you; compliance with a legal obligation; or our legitimate interests (such as operating, securing, and improving the Service), provided those interests are not overridden by your rights.


How to Exercise Your Rights


To exercise any of the rights above, contact us at [email protected] with the details of your request. We will respond within the timeframes required by applicable law. To protect your privacy, we may need to verify your identity before fulfilling a request.


10. Children's Privacy


The Service is not directed to anyone under the age of 18 ("Children"), and we do not knowingly collect personal information from Children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us. If we learn that we have collected personal information from a child without verified parental consent, we will take steps to delete that information.


11. Links to Other Sites


The Service may contain links to sites not operated by us. If you click a third-party link, you will be directed to that third party's site. We have no control over, and assume no responsibility for, the content or privacy practices of any third-party sites. We encourage you to review the privacy policy of every site you visit.


12. Changes to This Privacy Policy


We may update this Privacy Policy from time to time. We will post the updated Policy on this page and revise the "Last updated" date above. Where required, we will provide notice by email and/or a prominent notice on the Service before the change takes effect. Changes become effective when posted. We encourage you to review this Policy periodically.


13. Contact Us


If you have any questions about this Privacy Policy or wish to exercise your privacy rights, contact us:


Email: [email protected]

Phone: 1-888-678-6227

Contact Us Anytime

Click the button below to schedule an appointment or contact us via one of the methods below.

Schedule an Appointment
Phone:       
1-888-678-6227