Privacy Policy

Last updated: January 30, 2026

1. Introduction

Welcome to Scoutify ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our lead generation platform.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, and password when you create an account
  • Profile Information: Business details, contact information, and preferences
  • Payment Information: Billing details processed securely through Stripe (we do not store credit card numbers)
  • Lead Data: Information about businesses you discover, notes, and outreach communications
  • Communications: Messages you send to us or through our platform

2.2 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent, and interaction patterns
  • Device Information: IP address, browser type, operating system, and device identifiers
  • Location Data: General location based on IP address (not precise geolocation)
  • Cookies and Similar Technologies: See our Cookie Policy for details

2.3 Third-Party Data

  • Google Places API: Business information from Google's public database
  • Authentication Providers: If you sign in with third-party services

3. How We Use Your Information

We use your information to:

  • Provide, operate, and maintain our services
  • Process your transactions and manage subscriptions
  • Generate lead scores and AI-powered outreach content
  • Send you service updates, security alerts, and administrative messages
  • Respond to your comments, questions, and customer service requests
  • Analyze usage patterns to improve our platform
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations and enforce our terms
  • Send marketing communications (with your consent, where required)

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your data based on:

  • Contract Performance: Processing necessary to provide our services
  • Legitimate Interests: Improving our services, security, and fraud prevention
  • Consent: Marketing communications and optional features
  • Legal Obligations: Compliance with applicable laws

5. How We Share Your Information

We may share your information with:

5.1 Service Providers

  • Supabase: Database and authentication services
  • Stripe: Payment processing
  • OpenAI: AI-powered content generation
  • Google: Maps and Places API for business data
  • Hosting Providers: Infrastructure and content delivery

5.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. After account deletion, we may retain certain information for legitimate business purposes or legal compliance, typically for 90 days to 7 years depending on the data type and legal requirements.

7. Your Privacy Rights

7.1 All Users

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and data
  • Opt-Out: Unsubscribe from marketing emails
  • Data Portability: Receive your data in a structured format

7.2 EEA Residents (GDPR)

Additional rights include:

  • Restriction: Request limited processing of your data
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time
  • Lodge a Complaint: File a complaint with your data protection authority

7.3 California Residents (CCPA)

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information (we do not sell data)
  • Right to deletion
  • Right to non-discrimination for exercising your rights

To exercise these rights, contact us at privacy@scoutify.com

8. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption in transit (TLS/SSL) and at rest
  • Regular security assessments and updates
  • Access controls and authentication requirements
  • Secure payment processing through PCI-compliant providers
  • Employee training on data protection

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses for EEA data transfers.

10. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Third-Party Links

Our platform may contain links to third-party websites. We are not responsible for their privacy practices. We encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a prominent notice on our platform. Your continued use after changes constitutes acceptance.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at:

Email: privacy@scoutify.com
Data Protection Officer: dpo@scoutify.com
Address: [Your Business Address]