Privacy Policy

SToFU Systems S.L.
Contact Email: midgard@stofu.io

1. Overview

SToFU Systems S.L. is committed to GDPR compliance and responsible handling of personal data. We process personal information in accordance with international privacy standards, including those from the EU/EEA, UK, California (CCPA/CPRA), and other jurisdictions.

2. What Data We Process

• Identifiers (name, email, IP address, phone)
• Professional data (employer, job title, business contact info)
• Technical and behavioral data (browser, OS, usage patterns)
• Marketing and communication preferences

3. Legal Basis

We process data based on contract necessity, legitimate interest, consent, and legal obligations.

4. Cookies

We use cookies for site functionality, analytics, and marketing. You may manage your cookie preferences via your browser or a consent tool. For details, read our Cookie Policy.

5. Data Sharing

We share personal data with:

• Service providers under binding agreements
• Advertising and analytics partners
• Regulators and legal authorities where required

6. International Transfers

Data may be transferred outside the EEA, protected by Standard Contractual Clauses (SCCs) and supplementary measures.

7. Security

We implement technical and organizational measures including access controls, encryption, secure networks, and regular audits to protect your data.

8. Data Retention

We retain data only as long as necessary for the purpose collected or legal compliance. Upon expiry, data is deleted or anonymized.

9. Your Rights

You may request access, correction, deletion, restriction, objection, or portability of your personal data. You may also withdraw consent at any time.

10. Contact

Questions or privacy-related requests can be sent to midgard@stofu.io

11. Policy Updates

We review this policy regularly. Last updated: 7 June 2025.