Privacy Policy
Last updated: July 2026
This Privacy Policy explains how we collect, use, and protect your personal information when you visit our site or contact us. We are the data controller under GDPR and the "business" under CCPA/CPRA.
1. Information we collect
- Information you provide: contact form submissions include name, email, practice type, and message.
- Technical data: our host logs limited info (IP, browser, pages, timestamps) to deliver and secure the site.
We do not use tracking cookies. See our Cookie Policy.
2. How we use your information
- To respond to your enquiry and provide requested services.
- To operate, secure, and maintain the website.
- To comply with legal obligations.
3. Legal bases (GDPR)
- Consent and/or pre-contract steps when you contact us.
- Legitimate interests: site operation, security, and responding to enquiries.
- Legal obligation: retaining or disclosing data as required.
4. Who we share data with
We use trusted processors acting on our instructions:
- Cloudflare — hosting, CDN, and security.
- Resend — delivery of contact-form emails.
- Google — web font delivery.
- Cal.com — appointment scheduling.
We do not sell or share data for cross-context behavioral advertising.
5. International transfers
We operate from the EU and serve US clients; data may be processed in the EU/US with safeguards like SCCs.
6. Data retention
Contact-form data is kept only as long as needed, then deleted or anonymized.
7. Your rights (GDPR)
EU/EEA/UK residents: access, rectify, erase, restrict, object, or port your data. Lodge complaints locally.
8. Your rights (California — CCPA/CPRA)
California residents: know, delete, correct data, or opt out of "sale"/"sharing." We do not sell or share data. No discrimination for exercising rights.
9. How to exercise your rights
Email info@medikaweb.com; we reply within legal timeframes.
10. Changes to this policy
We may update this policy. The "last updated" date shows the latest version.
11. Contact
Smart Digital Asset S.r.l. — info@medikaweb.com