Privacy Policy
Last updated: July 2026
This Privacy Policy explains how we collect, use, and protect personal information when you visit our site or contact us. We are the data controller under GDPR and the "business" under CCPA/CPRA.
1. Information we collect
- When you submit the contact form, we collect your name, email, practice type, and message.
- Our host logs limited technical data (IP, browser, pages, timestamps) to deliver and secure the site.
We do not use tracking cookies. See our Cookie Policy.
2. How we use your information
- To respond to your enquiry and provide requested services.
- To operate, secure, and maintain the website.
- To comply with legal obligations.
3. Legal bases (GDPR)
- Consent and/or pre-contract steps when you contact us.
- Legitimate interests to operate, secure the site, and respond to enquiries.
- Legal obligation where required by law.
4. Who we share data with
We use trusted processors who act on our instructions:
- Cloudflare — hosting, CDN, and security.
- Resend — delivers contact-form emails to us.
- Google LLC — web font delivery.
- Cal.com — appointment scheduling.
We do not sell or share your data for behavioral advertising.
5. International transfers
We operate from the EU and serve US clients; data may be processed in the EU/US with safeguards like SCCs.
6. Data retention
Contact-form submissions are kept only as long as needed, then deleted or anonymized.
7. Your rights (GDPR)
If in the EU/EEA/UK, you may access, rectify, erase, restrict, or object to processing, and lodge complaints.
8. Your rights (California — CCPA/CPRA)
California residents may request deletion, correction, or opt out of "sale" or "sharing." We do not sell or share data and will not discriminate.
9. How to exercise your rights
Email info@medikaweb.com; we’ll respond within legal timeframes.
10. Changes to this policy
We may update this policy. The "last updated" date shows the latest version.
11. Contact
Smart Digital Asset S.r.l. — info@medikaweb.com