Privacy Policy

This Privacy Policy explains how ScalePlant (“we”, “us”) processes personal data when you visit our websites, use our platform or dashboards, communicate with us, or otherwise interact with our Services.

We are committed to protecting your privacy and processing personal data lawfully, fairly, and transparently.

We may collect: (a) identity and contact data, such as your name, email address, and company name; (b) account and technical data, including login identifiers, IP address, device and browser type, and approximate location derived from IP; (c) usage data, such as pages viewed, features used, and timestamps; (d) communications you send us, including support messages and form submissions; and (e) billing data where you purchase paid services (processed by our payment providers).

We may receive limited data from analytics or advertising partners where you have consented to such technologies in line with our Cookie Policy.

When you book a call or meeting through our embedded Calendly scheduling widget, Calendly collects information you provide (such as your name, email address, and availability) and technical data associated with the booking flow. Calendly acts as a separate service provider; its processing is described in Calendly’s privacy policy. We receive the details we need to hold the meeting and to communicate with you about it.

We use personal data to: provide, operate, and improve the Services; authenticate users and secure accounts; communicate with you about the Services, updates, and support; analyse usage to understand performance and product development; comply with legal obligations; and enforce our terms and protect rights, safety, and security.

Where we rely on legitimate interests, we balance those interests against your rights. Where consent is required (for example for certain cookies or marketing), we will obtain it separately.

We use booking and calendar information from Calendly to schedule meetings, send reminders where applicable, and follow up in line with your request. We do not use Calendly data for unrelated marketing unless we have a separate lawful basis or your consent.

Depending on the processing activity, we rely on one or more of: performance of a contract; legitimate interests; consent; compliance with a legal obligation; or, in limited cases, protection of vital interests.

We share personal data with service providers who assist us (for example hosting, email delivery, analytics, and payment processing) under written agreements that require appropriate safeguards.

We use Calendly LLC (“Calendly”) to provide online scheduling on our website. When you book through Calendly, Calendly processes personal data to operate its scheduling service and may process data in the United States or other locations in line with its privacy policy and applicable transfer mechanisms. Calendly may act as a processor in respect of certain booking data and also process data for its own purposes as described in its documentation.

We may disclose information if required by law, to enforce our terms, or to protect users and the public. If we are involved in a merger or acquisition, personal data may be transferred as part of that transaction subject to appropriate protections.

Where personal data is transferred outside the United Kingdom or the European Economic Area, we implement appropriate safeguards such as the UK International Data Transfer Agreement, EU Standard Contractual Clauses, or other mechanisms recognised under applicable law.

We retain personal data only for as long as necessary for the purposes described in this policy, including to satisfy legal, accounting, or reporting requirements. Retention periods vary by data category and context.

We implement technical and organisational measures designed to protect personal data against unauthorised access, loss, or alteration. No method of transmission over the internet is completely secure; we encourage strong passwords and safe account practices.

Depending on your location, you may have rights to access, rectify, erase, restrict, or object to certain processing, and to data portability. You may also withdraw consent where processing is consent-based, and lodge a complaint with a supervisory authority.

To exercise your rights, contact us using the details on our website. We will respond within the timeframe required by applicable law.

Our Services are not directed at children under 16, and we do not knowingly collect personal data from children. If you believe we have collected such data, please contact us so we can delete it.

We may update this Privacy Policy from time to time. We will post the revised policy on our website and adjust the “Last updated” date. Material changes may require additional notice where required by law.

For privacy-related requests or questions, please contact us through the channels provided on our website.