Privacy Policy

Last updated: April 5, 2026

1. Overview

Scaileo (“we,” “us”) respects your privacy. This Privacy Policy explains what personal data we collect, why we use it, how we share it, and the choices you have. It applies to visitors of https://scaileo.com (the “Site”), prospective and current clients, and others who interact with us online or offline in connection with our software agency services, including AI, product development, and consulting.

If you are in the European Economic Area (EEA), Switzerland, or the UK, please also read our GDPR & EEA/UK page for legal bases, rights, and supervisory authority information.

2. Data we collect

We may process:

• Contact and account data: name, work email, phone, company, role, and messages you send via forms, email, or chat.
• Client and project data: information you or your organization provide to scope, deliver, or support services (including technical specs, test data, access credentials where agreed, and communications).
• Marketing and events: preferences, webinar or event sign-ups, and newsletter interactions.
• Recruitment: CV, cover letter, portfolio links, and interview notes if you apply for a role.
• Technical and usage data: IP address, device/browser type, approximate location derived from IP, pages viewed, referring URLs, and timestamps, collected through cookies and similar technologies where used.

We aim to minimize data collection to what is relevant and proportionate for the purposes below.

3. How we use data

We use personal data to:

• Respond to inquiries and operate the Site.
• Propose, contract for, and deliver services (including AI and software delivery, support, and security).
• Invoice, administer accounts, and meet legal and professional obligations.
• Send service-related notices and, where permitted, marketing communications you can opt out of.
• Improve our Site and offerings, including analytics and quality assurance, consistent with this Policy and applicable law.
• Evaluate job applications and manage hiring.

For EEA/UK processing, we rely on legal bases described on our GDPR & EEA/UK page (such as contract, legitimate interests, consent, or legal obligation as applicable).

4. Cookies

Where we use cookies or similar technologies, we do so to enable essential Site functions, remember preferences, or understand aggregate usage. You can control cookies through your browser settings; disabling some cookies may affect Site functionality. If we use non-essential cookies that require consent in your region, we will obtain consent in line with local requirements.

5. Sharing

We may share personal data with service providers who process it on our instructions (for example hosting, email delivery, CRM, analytics, or collaboration tools), professional advisers, or authorities when required by law. We do not sell your personal data. If we use subprocessors for client engagements involving personal data, details are typically addressed in a data processing agreement or order form.

6. International transfers

We may process data in countries other than where you live. Where GDPR applies, we use appropriate safeguards such as Standard Contractual Clauses or other mechanisms recognized by regulators, plus supplementary measures where required.

7. Retention

We retain personal data only as long as needed for the purposes collected, to manage client relationships, to meet legal, tax, and accounting requirements, and to resolve disputes. Retention periods vary by context; contact us for more detail about a specific processing activity.

8. Security

We implement technical and organizational measures appropriate to the risk, including access controls and secure development practices. No method of transmission or storage is completely secure; we encourage strong credentials and safe sharing of access tokens.

9. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, or to data portability. EEA/UK residents should see our GDPR & EEA/UK page. To exercise rights, contact us via scaileo.com/contact. We may need to verify your request.

10. Children

Our Site and services are directed to businesses and adults. We do not knowingly collect personal data from children under 16. If you believe we have, please contact us and we will take appropriate steps.

11. Third-party links

The Site may link to third-party websites or services. Their privacy practices are governed by their own policies, not this one.

12. Changes

We may update this Policy from time to time. The “Last updated” date reflects the latest version. Material changes may be communicated as required by law.

13. Contact

For privacy questions or requests, contact us through scaileo.com/contact.