English

privacy-policy

September 2024

We (i.e., the company providing this Privacy Policy or named as the site operator in the legal notice) take the protection of your personal data seriously. This Privacy Policy explains how we collect, record, use, disclose, transfer, and store (“process”) your personal data. The personal data we collect depends on the context of your interactions with us, the products, services, and features you use, your location, and applicable law.

1. Processing Personal Data Through Use of Our Websites, Apps, and Online Services

Categories of data processed & purpose of processing

When you use our external or internal websites, apps, or online services (each an "Online Service"), we collect:

  • Contact details (first and last name, business address, phone numbers, email address)

  • Organizational details (position, company name)

  • Any additional personal data you provide in contact or other forms

  • Content you submit in support requests, surveys, comments, or forum posts

  • Automatically collected technical data (device identifiers, OS info, pages visited, timestamps)

We process this data to:

  • Enable you to use our Online Services (account setup, administration, updates, security, bug fixes)

  • Provide customer support and enhance/improve our Online Services

  • Bill for usage, verify identity, and authenticate users

  • Respond to your requests or instructions

  • Process your orders and deliver related communications

  • Contact you with information and offers about our products and services, including marketing or satisfaction surveys

  • Enforce our terms, assert or defend legal claims, and prevent fraud or IT attacks

Corporate-provided Online Services
If your employer provides you with an Online Service, processing of data you provide is done on behalf of your employer under a Data Processing Agreement. In that case, your employer is the data controller—please contact them for questions.

2. Processing Personal Data on Our Marketplaces

When using our marketplaces, we collect:

  • Contact and organizational data as above

  • Payment data (e.g., credit card info)

  • Any form data you provide

  • Content in support, surveys, comments, forums

  • Compliance/export-control data (date of birth, nationality, ID number, legal disputes)

  • Automatic technical data (device info, OS, pages visited, timestamps)

Processed for:

  • Communicating about services/products, including technical info

  • Managing contractual relationships (order processing, payment, accounting, logistics)

  • Marketing and customer satisfaction efforts

  • IT and transactional security

  • Complying with legal obligations (tax, anti-money laundering)

  • Dispute resolution, contract enforcement, and defense of legal rights

3. Processing Personal Data of Business Partners

In dealings with business partners—customers, prospects, suppliers, etc.—we process:

  • Contact and organizational info

  • Payment data

  • Project-related information

  • Publicly available personal information (e.g., from LinkedIn or public registries)

  • Compliance/export-control data (DOB, nationality, etc.)

Processed for:

  • Communication about products, services, and projects

  • Managing contractual relationships (orders, payments, deliveries)

  • Creating customer profiles to improve communication and offers

  • Conducting market research, contests, events

  • Marketing and satisfaction surveys

  • Security and legal compliance

  • Dispute resolution and contract enforcement

4. Marketing & Customer Surveys

We may use your contact data for direct marketing (e.g., event invitations, newsletters) and surveys via email. You can object at any time by emailing contact@scaile.tech or using the unsubscribe option in communications.

5. Processing Data Related to Job Applications

If you apply for a job, we will process your personal data according to the Scaile recruiting portal’s privacy terms or the application platform’s policy.

6. Data Transfers & Disclosures

We share personal data:

  • With subsidiaries and sales partners necessary to manage our relationship

  • On our marketplaces with other sellers or affiliates

  • With service providers (e.g., IT providers, payment processors) restricted to their service purposes

  • With third parties to meet legal duties or defend rights (courts, authorities, lawyers)

  • Sometimes internationally—with adequate safeguards (Binding Corporate Rules or EU Standard Contractual Clauses)

7. Data Retention

If no specific retention period was provided upon collection, we delete data when it's no longer needed, except where legal obligations require longer storage (e.g., for tax or commercial records).

8. Your Rights

Under applicable data protection law, you may have the right to:

  • Confirm whether we process your data and access it

  • Correct incorrect data

  • Request deletion

  • Restrict processing

  • Receive data you provided

  • Object to processing for specific reasons

  • Withdraw consent

9. Data Security

We implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

10. Contact for Data Protection Concerns

For questions or complaints, our data protection team can be reached at datenschutz@scaile.tech. You may also contact the relevant data protection authority.

11. Processing Under the GDPR

If your data is processed by a Scaile entity in the EEA:

  • The relevant company named in the legal notice is the data controller

  • For marketplace data, the operator of that marketplace is the data controller

  • If data is shared between affiliated companies, they act as joint controllers (Art. 26 GDPR), and you can assert your rights centrally via datenschutz@scaile.tech

Legal bases for processing (unless otherwise specified):

  • Contract performance (Art. 6(1)(b))

  • Legal obligations (Art. 6(1)(c))

  • Legitimate interest (Art. 6(1)(f))

  • Consent (Art. 6(1)(a)) when required

12. Additional Jurisdictional Standards

Switzerland: You have rights and recourse under Swiss data protection law, including contacting the Swiss Federal Data Protection and Information Commissioner.

USA (‘Do Not Track’): Our services do not respond to browser Do Not Track signals. Please refer to your browser settings for more info.

Children: Our services are not directed at children under 13. We do not knowingly collect data from them without parental consent.

California and other US states: Residents of certain U.S. states may have additional personal data rights; please refer to applicable privacy notices.