Privacy Policy for Skedia
Last Updated: April 27, 2025
1. Introduction
Skedia (we, us, our) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (https://skedia.io), use our SaaS product(s), or engage with our consulting services.
This policy is drafted in accordance with the General Data Protection Regulation (GDPR) and relevant Belgian data protection laws. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site or use our services.
2. Data Controller
Skedia is the data controller for the personal data processed through its website and for its direct business operations (like consulting client management).
- Company Name: Skedia CommV
- Contact Email for Privacy: privacy@skedia.io
For data processed within our SaaS product on behalf of our clients, Skedia typically acts as a Data Processor, and our client acts as the Data Controller. Our obligations as a Data Processor are defined in the Data Processing Agreement (DPA) with our clients.
3. Information We Collect
We may collect personal information in various ways:
- Information You Provide Directly:
- Contact Forms/Emails: Name, email address, phone number, company name, message content when you contact us.
- Consulting Clients: Contact details, project requirements, business information necessary for providing consulting services, communication records, billing information.
- SaaS Users: Account registration details (name, email, password [hashed]), company information, user preferences, payment information (often processed by a third-party payment processor like Stripe).
- Data within SaaS: Data you or your users upload or generate while using the SaaS product. The nature of this data depends on the specific SaaS functionality and is governed by the agreement between Skedia and the client (Controller).
- Information Collected Automatically:
- Website & SaaS Usage: IP address, browser type, operating system, access times, pages viewed, referring website addresses, device information, usage patterns, error logs.
- Cookies and Similar Technologies: We use cookies and similar tracking technologies to collect information about your browsing activities. Please see our Cookie Policy for more details.
4. How We Use Your Information
We use the information we collect for purposes including:
- Providing Services:
- Operating and maintaining our website.
- Delivering consulting services and managing client projects.
- Providing, operating, maintaining, and improving our SaaS product(s).
- Creating and managing user accounts for the SaaS.
- Processing payments (usually via third parties).
- Communication:
- Responding to your inquiries, comments, and questions.
- Sending service-related information, including confirmations, invoices, technical notices, updates, security alerts, and support messages.
- Sending marketing communications (only with your consent where required).
- Improvement & Security:
- Understanding how users interact with our website and services for analytics and improvement.
- Monitoring and analyzing trends, usage, and activities.
- Protecting against fraud, security threats, and illegal activities.
- Legal Compliance:
- Complying with legal obligations (e.g., accounting, tax).
- Enforcing our terms and conditions.
5. Legal Basis for Processing (GDPR)
We process your personal data based on the following legal grounds:
- Consent: Where you have given explicit consent (e.g., for marketing emails, non-essential cookies). You can withdraw consent at any time.
- Contract: When processing is necessary for the performance of a contract with you (e.g., providing consulting services, SaaS subscription) or to take steps before entering a contract.
- Legal Obligation: When processing is necessary to comply with the law (e.g., retaining financial records).
- Legitimate Interests: When we have a legitimate interest (e.g., website security logging, service improvement analytics, responding to inquiries), provided these interests are not overridden by your data protection rights.
6. Data Sharing and Disclosure
We do not sell your personal data. We may share your information with third parties only in the following situations:
- Service Providers: With third-party vendors, consultants, and other service providers who need access to such information to carry out work on our behalf (e.g., hosting providers, payment processors, analytics providers, cloud infrastructure providers, email service providers). These providers are contractually obligated to protect your data.
- Legal Requirements: If required by law, regulation, legal process, or governmental request.
- Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
- With Your Consent: We may disclose your personal information for any other purpose with your consent.
7. International Data Transfers
Your information may be transferred to — and maintained on — computers located outside of Belgium or the European Economic Area (EEA) where data protection laws may differ. We ensure that any such transfers are compliant with GDPR, typically through:
- Transfers to countries deemed adequate by the European Commission.
- Use of Standard Contractual Clauses (SCCs) approved by the European Commission.
- Other valid transfer mechanisms under GDPR.
8. Data Security
We implement appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure.
9. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Criteria used to determine retention periods include the duration of our relationship with you, the nature of the data, and applicable legal obligations.
10. Your Data Protection Rights (GDPR)
You have the following rights regarding your personal data:
- Right of Access: Request access to the personal data we hold about you.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure (‘Right to be Forgotten’): Request deletion of your personal data under certain conditions.
- Right to Restriction of Processing: Request restriction of processing under certain conditions.
- Right to Data Portability: Request transfer of your data to another organization, or directly to you, under certain conditions.
- Right to Object: Object to processing based on legitimate interests or for direct marketing.
- Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent.
To exercise these rights, please contact us at privacy@skedia.io. We will respond to your request in accordance with applicable data protection laws.
11. Cookies and Tracking Technologies
We use cookies and similar technologies. For detailed information, please refer to our Cookie Policy.
12. Children’s Privacy
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be indicated by an updated Last Updated date. We encourage you to review this Privacy Policy periodically. For significant changes, we may notify you through our website or via email (if we have your address).
14. Contact Us
If you have questions or comments about this Privacy Policy or our data practices, please contact us at: Skedia Email: privacy@skedia.io
15. Supervisory Authority
You have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit / Autorité de protection des données) if you believe our processing of your personal data infringes GDPR.