
Gizlilik Politikası
Effective date: February 6th, 2024
Privacy Policy
ELOQUENTPROPHECY, LDA ("we", "us", "our") operates the ScoutDecision platform and is committed to protecting your privacy and personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679.
We may revise this Privacy Policy from time to time and will post the most current version on our website. If a revision reduces your rights, we will notify you.
Contents
- Data Controller & Contact Information
- Personal Data We Collect
- Purpose & Legal Basis for Processing
- Data Sharing & Third-Party Processors
- Data Transfers Outside the EU
- Data Retention Period
- Your GDPR Rights
- Data Security Measures
- Automated Decision-Making & Profiling
1. Data Controller & Contact Information
The data controller responsible for your personal data is:
- ELOQUENTPROPHECY, LDA
- LOTEAMENTO DE PARANHOS, LOTE 10, 3630-293 PENELA DA BEIRA, PORTUGAL
- Email: isaac.felizardo@scoutdecision.com
2. Personal Data We Collect
We collect and process personal data necessary to provide our services: a) Data You Provide Voluntarily Account Data: First name, last name, email, organization, role, phone number. Contact Forms & Support Requests: Information submitted via messages. Payment Data: Billing details for service purchases (processed by third-party payment providers). b) Data Collected Automatically Browsing Data: IP addresses, device type, OS, login times, and activity logs. Cookies & Tracking Technologies: We use cookies for service improvement (see our Cookies Policy for details).
3. Purpose & Legal Basis for Processing
We process personal data under the following legal bases:
Purpose | Legal Basis |
---|---|
Account registration & authentication | Contractual necessity |
Customer support & inquiries | Legitimate interest |
Payment processing | Contractual necessity |
Service improvement & analytics | Legitimate interest (opt-out available) |
Marketing & promotional emails | Consent (opt-in required) |
Compliance with legal obligations | Legal requirement |
4. Data Sharing & Third-Party Processors
We do not sell personal data. However, we may share data with trusted third-party providers, such as:
- Hosting & Cloud Services (e.g., Azure, Heroku)
- Payment Processors (e.g., Revolut, Stripe)
- Analytics Providers (e.g., Google Analytics)
5. Data Transfers Outside the EU
If personal data is transferred outside the EU/EEA (e.g., to US-based service providers), we ensure compliance through:
- EU Standard Contractual Clauses (SCCs)
- Adequacy decisions by the European Commission
6. Data Retention Period
We retain personal data only as long as necessary for:
- Service provision (account-related data is kept until account deletion)
- Legal compliance (e.g., financial records kept for 10 years)
- Security & fraud prevention (activity logs retained for 12 months)
7. Your GDPR Rights
Under GDPR, you have the right to:
- Access your personal data.
- Rectify inaccurate data.
- Erase your data ("right to be forgotten").
- Restrict processing in certain cases.
- Object to data processing (including marketing).
- Data portability (receive your data in a structured format).
- To exercise any rights, please email us.
8. Data Security Measures
We use industry-standard encryption, hashing, and access controls to protect personal data. In case of a data breach, we will notify affected users and relevant authorities within 72 hours, as required by GDPR.
We advise, however, all our users and staff to activate 2FA (two-factor authentication) as well as holding the highest standard of cybersecurity when using our Services.
9. Automated Decision-Making & Profiling
We do not use automated decision-making or profiling that significantly affects users.