Privacy Policy

Effective Date: [Insert Date]

ScrapeCompass values your trust and is committed to protecting your privacy. This Privacy Policy details how we collect, use, and safeguard your personal data, ensuring compliance with applicable data protection regulations.

1. Information We Collect

We collect information to provide, maintain, and improve our services. The data we collect includes:

• Personal Data: Information you provide directly, such as your name, email address, phone number, payment details, and account credentials during registration or usage.
• Automatic Data: Data collected through cookies, tracking technologies, and analytics tools, including IP addresses, browser type, device information, geographic location, and usage patterns.
• Interaction History: Records of your communications with us, including customer support inquiries, feature preferences, and communication preferences.
• Roaming Data: When using our services across multiple geographic regions, we may collect data about your roaming activity, including access points, connection times, and network details.
• Proxy Data: If you use our proxy services, we may collect logs of connection requests, including source and destination IP addresses, timestamps, and usage metrics.

2. How We Use Your Information

We use your information to:

• Provide, maintain, and enhance our services, ensuring a tailored and efficient user experience.
• Process payments, manage subscriptions, and deliver purchased services or products.
• Communicate with you, including sending updates, newsletters, and promotional content (with your consent).
• Monitor service performance, improve features, and conduct research and analytics.
• Analyze roaming activity to optimize service delivery in different regions.
• Utilize proxy usage data to enhance security and improve network routing.
• Comply with legal obligations, respond to legal processes, and safeguard against misuse or fraud.

3. Sharing Your Information

We only share your personal data as necessary:

• Service Providers: Trusted partners assisting with operations, including payment processing, hosting, analytics, and proxy services.
• Legal Requirements: When required to comply with legal obligations or enforce our terms of use.
• Business Transactions: In the event of a merger, acquisition, or sale of assets, where your data may be transferred to the new entity.
• Third-Party Proxy Networks: For proxy services, limited data may be shared with partner networks to establish and manage proxy connections.
• With Consent: Sharing based on your explicit consent for specific purposes.

4. Data Security

At ScrapeCompass, we maintain a comprehensive security infrastructure designed to protect your data at every level. Our security framework is built on multiple layers of protection, regular audits, and continuous monitoring to ensure the highest standards of data protection.

Core Security Infrastructure

• Military-grade encryption (AES-256) for all stored data, with TLS 1.3 encryption for data in transit
• Multi-layered firewall architecture with real-time threat detection and automated response systems
• Continuous network monitoring with advanced intrusion detection and prevention systems (IDS/IPS)
• Regular penetration testing conducted by certified third-party security firms

Access Control and Authentication

• Strict role-based access control (RBAC) with principle of least privilege enforcement
• Mandatory multi-factor authentication for all system access
• Biometric verification requirements for physical access to data centers
• Comprehensive access logging and regular access pattern analysis

Security Operations

• 24/7 Security Operations Center (SOC) with trained security professionals
• Automated vulnerability scanning and immediate patching protocols
• Regular security awareness training for all employees
• Incident response team available 24/7 with documented response procedures

5. Your Rights

As a user, you have the following rights regarding your data:

• Access and obtain a copy of your personal data.
• Request corrections to inaccurate or incomplete information.
• Request deletion of your data where it is no longer necessary for processing.
• Withdraw consent for data processing or marketing communications.
• Request data portability in a structured, commonly used format.
• Object to processing based on legitimate interests or for direct marketing purposes.
• Manage cookie preferences and tracking technologies through your browser settings.
• Opt out of certain data collection, such as roaming or proxy activity tracking, through your account settings.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance user experience and analyze usage. These may include:

• Essential Cookies: Required for the core functionality of our services.
• Performance Cookies: Collect anonymized usage data for performance optimization.
• Targeting Cookies: Track your preferences to deliver relevant advertisements or content.
• Proxy-Related Tracking: Monitor proxy usage metrics to improve service quality.

You can manage your cookie preferences through browser settings. For detailed information, refer to our Cookie Policy.

7. International Data Transfers

Our global operations require careful handling of international data transfers. We implement comprehensive measures to ensure your data remains protected regardless of its geographic location while complying with international data protection regulations.

Cross-Border Data Protection Measures

• Implementation of Standard Contractual Clauses (SCCs) for all international data transfers
• Regular data protection impact assessments for high-risk transfers
• Encryption of all data during international transit
• Geographic data routing optimization to minimize unnecessary cross-border transfers

Regional Compliance Framework

• Compliance with GDPR, CCPA, PIPEDA, and other major privacy regulations
• Local data protection officers appointed in key jurisdictions
• Regular audits of international data processing activities
• Transparent documentation of all international data flows

International Data Centers

• Strategically located data centers in multiple jurisdictions to ensure data sovereignty
• Regular compliance audits of all international facilities
• Redundant infrastructure across geographic regions
• 24/7 monitoring of international data transfers

7. International Data Transfers

Our global operations require careful handling of international data transfers. We implement comprehensive measures to ensure your data remains protected regardless of its geographic location while complying with international data protection regulations.

Cross-Border Data Protection Measures

• Implementation of Standard Contractual Clauses (SCCs) for all international data transfers
• Regular data protection impact assessments for high-risk transfers
• Encryption of all data during international transit
• Geographic data routing optimization to minimize unnecessary cross-border transfers

Regional Compliance Framework

• Compliance with GDPR, CCPA, PIPEDA, and other major privacy regulations
• Local data protection officers appointed in key jurisdictions
• Regular audits of international data processing activities
• Transparent documentation of all international data flows

International Data Centers

• Strategically located data centers in multiple jurisdictions to ensure data sovereignty
• Regular compliance audits of all international facilities
• Redundant infrastructure across geographic regions
• 24/7 monitoring of international data transfers

8. Data Retention

Our data retention policies are designed to balance business needs, legal requirements, and user privacy. We maintain strict controls over how long we keep different types of data and ensure secure deletion when retention periods expire.

Retention Periods by Data Type

• Account Information: Retained while account is active plus 24 months after closure
• Transaction Records: Minimum 7 years for financial compliance
• Usage Logs: 90 days for security and performance analysis
• Communication Records: 3 years from last interaction

Data Lifecycle Management

• Automated data classification system to ensure appropriate retention periods
• Regular data audits to identify and remove expired information
• Secure deletion protocols using DOD-standard wiping techniques
• Backup retention aligned with primary data lifecycle policies

Special Retention Circumstances

• Legal Hold Protocol: Extended retention for data subject to legal proceedings
• Regulatory Compliance: Adjusted retention periods based on specific industry requirements
• User Requests: Expedited deletion process for valid user deletion requests
• Historical Data: Anonymized aggregation for long-term analytical purposes

9. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect or store data from children. If we become aware of such data collection, we take steps to delete it promptly.

10. Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices or applicable regulations. We will notify users of significant changes through our website or direct communication.

11. Third-Party Links

Our services may include links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage users to review their privacy policies.

12. Contact Us

We are committed to transparency and open communication with our users. Our dedicated support team is available through multiple channels to address your questions, concerns, or requests regarding this Privacy Policy or our data practices.

Primary Contact Methods

• Email: [email protected] (24/7 response within 1 business day)
• Phone: (855) 440-2242 (Monday-Friday, 9:00 AM - 6:00 PM EST)
• Mail: ScrapeCompass 99 Wall Street Suite 5660 New York, NY 10005

Additional Support Channels

• Data Protection Officer: [email protected]
• Technical Support: [email protected]
• Enterprise Inquiries: [email protected]
• Press Relations: [email protected]

Response Times

• General Inquiries: Within 1 business day
• Privacy-Related Requests: Within 48 hours
• Data Access Requests: Within 30 days
• Technical Support: Within 4 hours during business hours

13. Governing Law

This Privacy Policy and all matters relating to your privacy and data protection are governed by and construed in accordance with the laws of the State of New York, United States, without giving effect to any principles of conflicts of law.

Jurisdiction and Venue

• Primary Jurisdiction: State and Federal Courts of New York, New York County
• Exclusive Venue: United States District Court for the Southern District of New York, located at 500 Pearl Street, New York, NY
• Alternative Venue: New York State Supreme Court, New York County
• You consent to the personal jurisdiction of these courts for any privacy-related disputes

Dispute Resolution

• Initial Resolution: Informal negotiation for 60 days from written notice
• Mediation: Optional mediation through JAMS in New York City
• Arbitration: Binding arbitration through AAA in New York City if required
• Class Action Waiver: All disputes must be resolved on an individual basis

Legal Compliance

• State Law: Compliance with New York State data protection regulations
• Federal Law: Adherence to all applicable U.S. federal privacy laws
• International Law: Respect for international data protection regulations where applicable
• Industry Standards: Compliance with relevant industry-specific privacy requirements