Last updated: 2025-12-25
This Privacy Policy explains how Midnightsun Partners LLC ("we", "us", or "our") collects, uses, and protects information in connection with any software, integrations, scripts, tools, or services we provide (collectively, the "Services").
This Policy applies to all of our integrations and services, including but not limited to any tools that connect to Airtable, QuickBooks Online, or other third-party platforms on your behalf.
By using the Services, you agree to the collection and use of information in accordance with this Privacy Policy.
We aim to collect and log only the minimum information necessary to operate and troubleshoot the Services. The types of information we may process include:
Information necessary to connect to third-party platforms (e.g., Airtable, QuickBooks Online), such as:
OAuth tokens and related metadata
Integration configuration settings (e.g., which tables, fields, or entities to sync)
Limited account identifiers from third-party services (e.g., account IDs, tenant IDs) required to perform the sync.
In order to operate, secure, and debug the Services, we may collect and log:
Timestamps and event types (e.g., "sync started", "sync finished", "error occurred")
Request or payload IDs
Payload sizes or lengths
Payload content or partial content
HTTP status codes and request/response headers
Error codes and error messages (e.g., "out of scope", "unauthorized", "rate limited")
While we try to avoid storing full payloads, some customer data may occasionally appear in logs when necessary for troubleshooting (for example, parts of a request causing an error).
The Services operate by reading and writing data between systems you authorize (for example, Airtable and QuickBooks Online). Depending on your configuration, this may include:
Accounting or financial records
Customer, vendor, and contact information
Transaction or invoice details
Custom fields or other data stored in Airtable or other platforms
We do not collect this information for our own use; we process it strictly to perform the sync or automation you requested.
We access third-party accounts and data only to the extent necessary to perform the actions you configure or authorize within the Services.
If you contact us for support or onboarding, we may collect:
Name
Email address
Organization or company name
Any information you include in your message
We use the information we collect for the following purposes:
Connecting to and syncing data between platforms you authorize
Executing scheduled syncs or one-off sync operations
Handling errors, retries, and integration edge cases
Monitoring for errors and performance issues
Investigating and resolving incidents
Protecting the Services against abuse, misuse, or unauthorized access
Responding to your inquiries or support requests
Sending operational or integration-related notices (e.g., changes, errors, disruptions)
Improving reliability, performance, and user experience
Aggregating or anonymizing data for internal analysis or benchmarking purposes
We do not sell or rent your data, and we do not use your customers' data for advertising purposes.
Where applicable (for example, if you are in the EEA or UK), we rely on the following legal bases to process information:
Performance of a Contract - To provide the Services you have requested or configured.
Legitimate Interests - To maintain, secure, and improve the Services, including logging, monitoring, and debugging.
Consent - Where required by law for specific activities. You may withdraw consent at any time where we rely on it.
Compliance with Legal Obligations - Where processing is necessary to comply with applicable legal requirements.
We may share information in the following limited circumstances:
We may use third-party hosting, logging, or infrastructure providers (for example, cloud hosting platforms) to operate the Services. These providers process data on our behalf and are bound by contractual obligations to protect it.
By using the Services, you direct us to send data to and from the platforms you connect (e.g., Airtable, QuickBooks Online). These platforms handle your data under their own terms and privacy policies.
We may disclose information if we believe in good faith that such disclosure is reasonably necessary to:
Comply with applicable laws, regulations, legal processes, or governmental requests
Enforce our agreements or protect our rights
Protect the safety, property, or rights of us, our customers, or others
We do not otherwise share customer data with third parties for their own marketing or independent purposes.
In some cases, we process data strictly on behalf of our customers as a processor. In those cases, customers control the data and are responsible for their own compliance obligations.
We retain data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including:
To provide and maintain the Services
To comply with legal, tax, or accounting obligations
To resolve disputes and enforce our agreements
Operational logs (such as payload IDs, timestamps, and error messages) may be retained for a limited period to assist with debugging and security, after which they may be aggregated, anonymized, or deleted.
Backups, security logs, and incident investigation records may persist for a limited time after deletion to ensure system integrity and compliance.
You may request deletion of certain data (subject to our legal obligations and technical limitations) by contacting us at blake@midnightsun.ai.
We use reasonable technical and organizational measures designed to protect information against accidental or unlawful destruction, loss, alteration, or unauthorized disclosure or access.
No method of transmission over the Internet or method of electronic storage is 100% secure. While we work to protect your data, we cannot guarantee absolute security.
You are responsible for:
Securing access to your Airtable, QuickBooks Online, and/or other third-party accounts
Managing user permissions and roles within those platforms
Keeping API keys, tokens, and credentials under your control confidential
We are not responsible for unauthorized access caused by your failure to secure your credentials, accounts, or configurations.
Depending on your location and our infrastructure, data may be processed in countries outside your own. Where required, we take steps to ensure an adequate level of protection for data transferred internationally, consistent with applicable data-protection laws.
Where applicable, we rely on lawful transfer mechanisms such as standard contractual clauses or other legally recognized safeguards.
Depending on your jurisdiction, you may have certain rights with respect to your personal data, such as:
Access to your personal data
Correction or deletion
Restriction or objection to processing
Data portability
Requests can be submitted by contacting blake@midnightsun.ai. We may require verification of your identity before fulfilling certain requests and may be unable to act on requests where we process data strictly as a processor on behalf of a customer (in which case you may need to contact that customer or organization directly).
We will respond to requests within a reasonable time and in accordance with applicable law. Certain requests may be denied or limited where permitted by law or where fulfilling them would impact the rights of others.
The Services are not directed to children under the age of 16, and we do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us at blake@midnightsun.ai so we can take appropriate action.
We may revise this Privacy Policy periodically. Material changes will be communicated by posting the updated Policy or through other appropriate notice.
The "Last updated" date will reflect the effective date of the revision.
Your continued use of the Services after any update signifies your acceptance of the revised Policy.
For questions about this Privacy Policy or our data practices, contact:
Midnightsun Partners LLC
2212 Sawmill Creek Road, Sitka, AK 99835 USA