Skale Privacy Policy

Last updated: 8/17/2025

This Privacy Policy explains how Skale collects, uses, discloses, and safeguards personal data when you use our Services. We adhere to the principles of lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity and confidentiality, and accountability.

Data We Process

• Account data: username, email (to create and secure your account)
• Authentication tokens (JWT) for session security
• Cloud integration metadata (provider, region, non-secret identifiers)
• Operational logs and metrics (for reliability and security)

What We Do Not Store

• We do not store cloud provider secrets in plain text
• We avoid collecting unnecessary personal data

Legal Basis (GDPR)

• Contract: to provide the Skale service you signed up for
• Legitimate interests: product security, fraud prevention, troubleshooting
• Consent: analytics/marketing cookies (if you opt in)

International Transfers

We may process data outside your jurisdiction. Where required, transfers are based on Standard Contractual Clauses (SCCs) or equivalent safeguards. Contact us for the current subprocessor list and transfer impact assessments.

Data Retention

We retain personal data only as long as necessary to provide the Services and comply with legal obligations. Typical retention: authentication logs 30–90 days; metrics 30 days; backups per operational policy.

Your Rights

• Access, Rectification, Erasure, Restriction, Portability, Objection
• Contact: privacy@skaleofficial.com to exercise rights

Complaints

You have the right to lodge a complaint with an EU supervisory authority or the ICO (UK), as applicable.

Contact

privacy@skaleofficial.com