Privacy Policy

Last updated: January 2025

TL;DR

We don't collect your data. Our software runs entirely in your infrastructure. We can't see your traffic, your users, or your configurations. You're in complete control.

Overview

3PL Digital LLC ("3PL Digital", "we", "our", or "us") is a South Carolina limited liability company committed to protecting your privacy. This Privacy Policy explains how we handle information in connection with our products and services.

Our Products

Our software appliances run entirely within your own cloud infrastructure (AWS, Azure, or Google Cloud). This means:

  • We do not collect any data from your running instances
  • We do not have access to your configurations or settings
  • We do not store any customer data on our systems
  • We do not transmit any data from your infrastructure to us
  • We cannot see who connects to your VPN or what data passes through

All data remains within your cloud account under your complete control.

What Your Appliance Collects (Locally)

Our software appliances collect and store the following data locally within your infrastructure for operational and compliance purposes:

  • VPN connection logs: Timestamps, client identifiers, connection duration
  • Admin panel access logs: Login attempts, administrative actions, IP addresses
  • System logs: Security events, service status, error logs
  • Audit logs: Configuration changes, user management activities

This data never leaves your infrastructure and is under your control. You are responsible for managing retention, access controls, and any legal obligations related to these logs.

Website and Communications

When you visit our website or contact us, we may collect:

  • Contact information: Email address, name (when you contact us or sign up for updates)
  • Support inquiries: Information you provide when requesting help
  • Website analytics: Page views, referrer, general location (country-level), device type

We use privacy-respecting analytics and do not sell, rent, or share this information with third parties for marketing purposes.

Cloud Marketplace Data

When you subscribe to our products through AWS Marketplace, Azure Marketplace, or Google Cloud Marketplace, the cloud provider shares with us:

  • Subscription status and plan details
  • Cloud Account ID
  • Usage data for billing purposes
  • Company name (if provided)

This information is used solely for fulfilling our subscription obligations and providing support. Payment processing is handled entirely by your cloud provider. See their respective privacy policies for more information.

HIPAA and Healthcare Data

Our software is designed for use in healthcare and other regulated environments. Important clarifications:

  • We are not a Business Associate under HIPAA because we do not access your data
  • We do not create, receive, maintain, or transmit Protected Health Information (PHI)
  • All PHI remains within your infrastructure under your exclusive control
  • You are solely responsible for your organization's HIPAA compliance obligations
  • Our products provide technical controls to support your compliance efforts, but compliance is your responsibility

Data Retention

For data we collect (website contacts, support inquiries):

  • Support communications: Retained for 3 years for service continuity
  • Marketing contacts: Until you unsubscribe
  • Website analytics: Aggregated data retained indefinitely; individual data for 26 months

Data Security

For data we do collect, we implement appropriate security measures including encryption in transit (TLS), encryption at rest, access controls, and regular security reviews. We use reputable service providers who maintain their own security certifications.

Your Rights

Depending on your location (including California, EU/EEA, and UK residents), you may have rights regarding your personal information:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data
  • Portability: Request your data in a portable format
  • Opt-out: Opt out of marketing communications at any time

To exercise these rights, contact us at privacy@3pl.digital. We will respond within 30 days.

International Transfers

3PL Digital is based in South Carolina, United States. If you access our website or services from outside the US, your information may be transferred to and processed in the US. We ensure appropriate safeguards are in place for any international transfers.

Children's Privacy

Our products and services are intended for business use and are not directed at children under 16. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date and, for significant changes, by posting a notice on our website or sending you an email.

Governing Law

This Privacy Policy shall be governed by and construed in accordance with the laws of the State of South Carolina, United States, without regard to its conflict of law provisions.

Contact Us

For questions about this Privacy Policy or our data practices:

Email: privacy@3pl.digital

Company: 3PL Digital LLC

Location: South Carolina, USA