Privacy Policy

Effective Date: August 20, 2025

Your Privacy Matters

At Scalista, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, share, and protect your information in compliance with GDPR, CCPA, and other privacy regulations.

1. Information We Collect

1.1 Information You Provide

We collect information you voluntarily provide when you:

  • Contact us: Name, email, phone number, company, message content
  • Subscribe to newsletters: Email address, name, preferences
  • Create an account: Username, password, profile information
  • Request services: Business information, marketing goals, budget
  • Participate in surveys: Feedback, opinions, demographic information

1.2 Information Automatically Collected

When you visit our website, we automatically collect:

  • Device Information: IP address, browser type, operating system, device ID
  • Usage Data: Pages visited, time spent, clicks, scroll depth
  • Location Data: Country, region, city (based on IP address)
  • Referral Data: How you arrived at our website
  • Performance Data: Page load times, errors, interaction metrics

1.3 Information from Third Parties

We may receive information about you from:

  • Social media platforms (when you interact with our content)
  • Analytics providers (Google Analytics, etc.)
  • Marketing partners and lead generation services
  • Publicly available sources

2. How We Use Your Information

2.1 Providing Services

  • Deliver requested services and support
  • Process transactions and send related information
  • Respond to inquiries and requests
  • Manage your account and preferences

2.2 Communication

  • Send service-related announcements
  • Provide marketing communications (with consent)
  • Send newsletters and updates
  • Request feedback and conduct surveys

2.3 Improvement and Analytics

  • Analyze website usage and improve user experience
  • Develop new features and services
  • Conduct research and analysis
  • Monitor and prevent fraud and security issues

2.4 Legal Compliance

  • Comply with legal obligations
  • Respond to legal requests and prevent harm
  • Enforce our terms and policies
  • Protect rights, privacy, safety, or property

3. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on:

Consent

For marketing communications and non-essential cookies

Contract Performance

To provide services you've requested or purchased

Legitimate Interests

For business operations, security, and service improvement

Legal Obligations

To comply with applicable laws and regulations

4. How We Share Your Information

We do not sell your personal information. We may share your information with:

4.1 Service Providers

  • Cloud hosting providers (AWS, Google Cloud)
  • Analytics services (Google Analytics)
  • Email service providers
  • Payment processors
  • Customer support tools

4.2 Business Transfers

In case of merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

4.3 Legal Requirements

We may disclose information when required by law, court order, or government request.

4.4 With Your Consent

We may share your information for other purposes with your explicit consent.

5. Your Privacy Rights

You have rights regarding your personal data:

5.1 Rights Under GDPR (European Users)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Limit processing of your data
  • Portability: Receive your data in a portable format
  • Objection: Object to certain processing activities
  • Automated Decision-Making: Not be subject to solely automated decisions

5.2 Rights Under CCPA (California Residents)

  • Know: Right to know what personal information we collect, use, and share
  • Delete: Right to request deletion of your personal information
  • Opt-Out: Right to opt-out of the sale of personal information (we don't sell data)
  • Non-Discrimination: Right not to be discriminated against for exercising rights

5.3 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: dpo@scalista.com

Phone: 1-800-XXX-XXXX

Mail: Spallartgasse 23/99 1140 Vienna, Austria

We will respond to your request within 30 days (or as required by applicable law).

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication
  • Employee training on data protection
  • Incident response procedures
  • Regular backups and disaster recovery plans

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

Retention Periods:

  • Account Information: Duration of account plus 3 years
  • Marketing Data: Until consent withdrawn or 3 years of inactivity
  • Transaction Records: 7 years for tax and accounting purposes
  • Website Analytics: 26 months
  • Support Tickets: 2 years after resolution

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions where applicable
  • Your explicit consent where required

9. Children's Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

11. Marketing Communications

You can opt-out of marketing communications at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Updating your preferences in your account settings
  • Contacting us directly at privacy@scalista.com

Note: You cannot opt-out of service-related communications (e.g., account verification, service updates, security alerts).

12. Do Not Track Signals

Some browsers have a "Do Not Track" feature that lets you tell websites you do not want your online activities tracked. Currently, our website does not respond to browser Do Not Track signals, but you can manage your cookie preferences through our consent manager.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Effective Date" at the top
  • Sending an email notification (for material changes)

We encourage you to review this Privacy Policy periodically for any changes.

14. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Data Protection Officer

Email: dpo@scalista.com

Phone: 1-800-XXX-XXXX

General Inquiries

Email: privacy@scalista.com

Address: Spallartgasse 23/99 1140 Vienna, Austria

EU Representative

[EU Representative Name and Address]

15. Supervisory Authority

If you are in the European Economic Area and believe we have not handled your personal data properly, you have the right to lodge a complaint with your local supervisory authority.