🛡️ Privacy Policy
Your privacy matters. We're committed to protecting your personal information.
📋 Table of Contents
- Introduction
- 1. Information We Collect
- 2. How We Use Your Information
- 3. Data Retention
- 4. How We Share Your Information
- 5. International Data Transfers
- 6. Your Privacy Rights
- 7. Children's Privacy
- 8. Cookies and Tracking
- 9. Data Security
- 10. Email Communications
- 11. Third-Party Links
- 12. Business Transfers
- 13. Do Not Sell (CCPA)
- 14. Policy Updates
- 15. Contact Us
- 16. EU Representative
- 17. Supervisory Authority
- 18. Legitimate Interest
- 19. Data Processing Addendum
- 20. Specific Use Cases
- 21. Accessibility
- 22. Automated Decision-Making
- 23. Privacy by Design
- 24. Compliance Certifications
- 25. Additional Resources
Introduction
Welcome to ContentScale ("we," "our," or "us"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your personal information.
This Privacy Policy explains:
- What information we collect
- How we use it
- Your rights and choices
- How we protect your data
- How to contact us
1. Information We Collect
1.1 Information You Provide Directly
We collect information when you:
- Register for an account: Name, email address, company name, phone number (optional)
- Use our SEO scanner: Website URLs you submit for analysis
- Contact us: Name, email, message content
- Apply as a freelancer: Name, email, phone, professional bio, portfolio links
- Subscribe to our newsletter: Email address
1.2 Information Collected Automatically
When you visit our website, we automatically collect:
- Technical information: IP address, browser type, operating system, device information
- Usage data: Pages visited, time spent, links clicked, referral sources
- Cookies: Essential cookies for website functionality
1.3 Information from Third-Party Sources
We may collect publicly available business information from:
- Google Maps: Business names, addresses, phone numbers, websites (publicly listed data only)
- Publicly accessible websites: Business contact information displayed on company websites
2. How We Use Your Information
2.1 Service Delivery
- Provide SEO content quality analysis
- Generate personalized recommendations
- Display leaderboard rankings (for scores 85+)
- Facilitate connections with SEO freelancers
Legal Basis (GDPR): Performance of contract, legitimate interest in providing services
2.2 Communication
- Send scan results and recommendations via email
- Respond to your inquiries
- Send service updates (if you opted in)
- Newsletter delivery (with your consent)
Legal Basis (GDPR): Consent, performance of contract
2.3 Analytics & Improvement
- Analyze usage patterns to improve our services
- Monitor website performance
- Identify and fix technical issues
Legal Basis (GDPR): Legitimate interest in improving our services
- Sell your personal information to third parties
- Share your data for third-party advertising
- Use your data for purposes not disclosed in this policy
3. Data Retention
We retain your personal information only as long as necessary:
| Data Type | Retention Period | Reason |
|---|---|---|
| Account information | Until account deletion | Service provision |
| Scan results | 90 days | Allow result access |
| Email communications | 2 years | Legal compliance |
| Analytics data | 12 months (anonymized) | Service improvement |
| Leaderboard entries | Until removal request | Public display |
| Freelancer profiles | Until profile deletion | Service provision |
After these periods, data is permanently deleted from our systems. You can request earlier deletion by contacting us.
5. International Data Transfers
Our services are operated globally. Your data may be transferred to and stored in:
- European Union: Primary data storage
- United States: Backup and service providers
- Philippines: Business operations
Safeguards We Use:
- EU-US Data Privacy Framework (for US transfers)
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Adequate safeguards as required by GDPR Article 46
6. Your Privacy Rights
6.1 Rights Under GDPR (EU/EEA/UK Users)
If you are located in the European Union, European Economic Area, or United Kingdom, you have the following rights:
- ✅ Right to Access: Request a copy of your personal data
- 🗑️ Right to Deletion: Request deletion of your data ("right to be forgotten")
- ✏️ Right to Rectification: Correct inaccurate data
- 🔒 Right to Restriction: Limit how we process your data
- 📤 Right to Data Portability: Receive your data in a portable format
- 🚫 Right to Object: Object to processing based on legitimate interests
- 📧 Right to Withdraw Consent: Withdraw consent at any time
- ⚖️ Right to Lodge a Complaint: File a complaint with your data protection authority
6.2 California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have the following rights:
- 📋 Right to Know: What personal information we collect, use, disclose, and sell
- 🗑️ Right to Delete: Request deletion of your personal information
- 🚫 Right to Opt-Out: Opt-out of the "sale" or "sharing" of personal information
- ✏️ Right to Correct: Correct inaccurate personal information
- ⚖️ Right to Non-Discrimination: Not be discriminated against for exercising your rights
6.3 Other US State Privacy Rights
Residents of Virginia, Colorado, Connecticut, and Utah have similar rights to access, delete, and correct their personal information, and to opt-out of targeted advertising.
6.4 How to Exercise Your Rights
Step-by-Step Process:
- Send a Request - Email: privacy@contentscale.site
- Identity Verification - We may ask for additional information to verify your identity
- Response Time - GDPR: 30 days | CCPA: 45 days
- No Fees - Exercising your rights is free
7. Children's Privacy
- EU/EEA: We do not knowingly collect information from individuals under 16 years old
- United States: We do not knowingly collect information from children under 13 years old (COPPA compliance)
If you believe a child has provided us with personal information:
- Contact us immediately at: privacy@contentscale.site
- We will delete the information within 72 hours
- No parental consent will be requested; we'll simply delete
9. Data Security
9.1 Technical Safeguards
- Encryption: Data encrypted in transit (TLS/SSL) and at rest
- Access Controls: Limited access to personal data (need-to-know basis)
- Authentication: Secure authentication for admin access
- Monitoring: Continuous security monitoring and logging
9.2 Data Breach Response
In the event of a personal data breach:
- We will investigate immediately
- Affected individuals notified within 72 hours (GDPR requirement)
- Relevant authorities notified as required by law
- Steps taken to mitigate harm
- Transparent communication about what happened
10. Email Communications & Marketing
10.1 Transactional Emails
We send essential service emails:
- Scan results and recommendations
- Account notifications
- Service updates
These cannot be opted out of as they're required for service delivery.
10.2 Marketing Emails
If you subscribe to our newsletter:
- Frequency: Maximum 2 emails per week
- Content: SEO tips, product updates, industry news
- Opt-Out: Every email includes an unsubscribe link
10.3 Compliance
- Clear identification of sender
- Accurate subject lines
- Physical address included
- One-click unsubscribe
- Opt-outs processed within 10 business days
11. Third-Party Links
Our website may contain links to third-party websites:
- We do not control these sites: Their privacy practices are their own
- No endorsement: Links do not imply endorsement
- Your responsibility: Review their privacy policies before providing data
12. Business Transfers
In the event of a merger, acquisition, or sale of assets:
- Your data may be transferred to the new owner
- We will notify you via email before transfer
- The new owner must honor this Privacy Policy
- You'll have the option to delete your data before transfer
13. Your California "Do Not Sell or Share" Rights
We do NOT sell or share your personal information.
However, to comply with CCPA, we provide this mechanism:
To submit a "Do Not Sell" request:
- 📧 Email us: privacy@contentscale.site
- Subject: "Do Not Sell My Personal Information"
- Include: Your name and email
We will confirm within 15 days that:
- We have never sold your information
- We will not sell your information in the future
14. Updates to This Privacy Policy
We may update this policy to reflect:
- Changes in our practices
- New legal requirements
- Service enhancements
How We Notify You:
- Major changes: Email notification 30 days in advance
- Minor changes: Updated "Last Updated" date at top
- Version history: Available upon request
Continued use of our services after changes constitutes acceptance.
15. Contact Us
For privacy-related inquiries:
📧 Email: privacy@contentscale.site
📧 General Contact: info@contentscale.site
🌐 Website: https://www.contentscale.site
📍 Address:
Ottmar Francisca
Poruk Riverside Sudlon, Lot 11, Block 2
Mati City, Davao Oriental
Philippines
📞 Phone: +63 945 188 6246 (WhatsApp available)
Response Time:
- Privacy rights requests: 30-45 days
- General inquiries: 5 business days
- Security concerns: 24 hours
16. EU Representative (GDPR Article 27)
We do not currently have an EU establishment. For GDPR inquiries, contact us directly at privacy@contentscale.site. We process all EU data protection requests in accordance with GDPR.
17. Supervisory Authority
If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with a supervisory authority:
- EU/EEA: Find your local data protection authority at: EDPB Members
- UK: Information Commissioner's Office (ICO) - ico.org.uk
- California: California Privacy Protection Agency - cppa.ca.gov
- Other US States: Your state Attorney General's office
18. Legitimate Interest Assessment
For users interested in our legal basis under GDPR:
We rely on "Legitimate Interest" for:
- SEO content analysis (necessary for service delivery)
- Website analytics (improves user experience)
- Fraud prevention (protects users and our platform)
Our Legitimate Interest Assessment (LIA) considers:
- Purpose: Clear business need
- Necessity: No less intrusive alternative
- Balancing test: Our interests do not override your rights
- Safeguards: Data minimization, encryption, retention limits
You can request a copy of our LIA: privacy@contentscale.site
19. Data Processing Addendum (for Business Clients)
If you are a business using ContentScale to scan websites with user data:
You are the Data Controller, we are the Data Processor.
We provide a Data Processing Addendum (DPA) that includes:
- Processing instructions
- Security measures
- Sub-processor list
- Data breach notification procedures
- EU Standard Contractual Clauses (SCCs)
To request a DPA: Contact us at legal@contentscale.site with subject "DPA Request"
20. Specific Use Cases
20.1 SEO Scanner Service
- What we collect: Website URLs you submit for analysis
- How we use it: Generate SEO quality scores and recommendations
- Legal basis: Performance of contract, legitimate interest
- Retention: 90 days, then deleted
20.2 Leaderboard Display
- What we collect: Company name, website URL, score (only 85+ scores)
- How we use it: Public display on leaderboard
- Legal basis: Consent (implied by high score submission)
- Retention: Until removal request
- Opt-out: Email privacy@contentscale.site to request removal
20.3 Freelancer Directory
- What we collect: Name, email, phone, bio, portfolio links, location
- How we use it: Display in freelancer directory for client connections
- Legal basis: Consent (explicit opt-in during registration)
- Retention: Until profile deletion
20.4 Bulk Scanner with Email Outreach
- What we collect: Website URLs, business contact emails (from public sources)
- How we use it: Send one-time SEO analysis reports to business owners
- Legal basis: Legitimate interest in business communication
- Compliance: CAN-SPAM, GDPR ePrivacy Directive
- Opt-out: Every email includes unsubscribe link
21. Accessibility
We are committed to making our privacy policy accessible to everyone:
- Plain language: We avoid legal jargon where possible
- Clear structure: Sections and headings for easy navigation
- Alternative formats: Request PDF, large print, or audio versions at: accessibility@contentscale.site
- Translation: Available in English. Machine translations can be provided upon request.
22. Automated Decision-Making
Our SEO scores are generated by algorithms, but:
- No legal consequences result from scores
- Scores are advisory, not binding
- Human review available upon request
- You can challenge or request explanation of any score
23. Privacy by Design
We build privacy into our services from the ground up:
- Data minimization: Collect only what's necessary
- Purpose limitation: Use data only for stated purposes
- Storage limitation: Delete data per retention schedule
- Transparency: Clear communication about data practices
- User control: Easy tools to access, delete, and manage data
24. Compliance Certifications
Current Certifications: None currently. We undergo regular internal compliance audits.
Regular Assessments:
- Annual GDPR compliance audit
- Quarterly security assessments
- Ongoing monitoring of new privacy regulations
25. Additional Resources
Learn More About Privacy:
- GDPR: gdpr.eu
- CCPA: oag.ca.gov/privacy/ccpa
Our Other Policies:
- Terms of Service: contentscale.site/terms
- Cookie Policy: contentscale.site/cookies
- Do Not Sell: contentscale.site/do-not-sell
Version History
| Version | Date | Changes |
|---|---|---|
| 3.0 | February 17, 2026 | Comprehensive worldwide compliance update |
Acknowledgment
By using ContentScale, you acknowledge that:
- You have read this Privacy Policy
- You understand how we collect, use, and share your information
- You consent to our data practices as described
- You understand your privacy rights and how to exercise them
Last Updated: February 17, 2026 | Effective Date: February 17, 2026 | Version: 3.0
© 2026 ContentScale. All rights reserved.