Privacy Policy
Last updated: July 2026
This Privacy Policy explains how we collect, use, and protect your personal information when you visit our site or contact us. We are the data controller under GDPR and the "business" under CCPA/CPRA.
1. Information we collect
- Information you provide: via contact form, we collect name, email, practice type, and message.
- Technical data: our host logs limited info (IP, browser, pages, timestamps) to deliver and secure the site.
We don’t use ad or analytics cookies. See our Cookie Policy.
2. How we use your information
- To respond to your enquiry and provide requested services.
- To operate, secure, and maintain the website.
- To comply with legal obligations.
3. Legal bases (GDPR)
- Consent and/or pre-contract steps when you contact us.
- Legitimate interests: to run our site, secure it, and reply to enquiries.
- Legal obligation: where required by law.
4. Who we share data with
We use trusted processors who act on our instructions:
- Cloudflare — hosting, CDN, and security.
- Resend — delivers contact-form emails to us.
- Google LLC — web font delivery.
- Cal.com — scheduling (only when booking).
We don’t sell or share data for behavioral advertising.
5. International transfers
We’re EU-based but serve US clients; data may be processed in the EU/US with safeguards like SCCs.
6. Data retention
Contact-form data is kept only as long as needed, then deleted or anonymized.
7. Your rights (GDPR)
If in the EU/EEA/UK, you may access, correct, erase, restrict, or object to processing, and lodge complaints.
8. Your rights (California — CCPA/CPRA)
California residents: you can request data details, deletion, corrections, and opt out of "sale" or "sharing." We don’t sell/share data and won’t discriminate for exercising rights.
9. How to exercise your rights
Email info@medikaweb.com; we’ll respond within legal timeframes.
10. Changes to this policy
We may update this policy. The date above shows the latest version.
11. Contact
Smart Digital Asset S.r.l. — info@medikaweb.com