Privacy Policy
Last updated: July 2026
This Privacy Policy explains how we collect, use, and protect your personal information when you visit our site or contact us. We are the data controller under GDPR and the "business" under CCPA/CPRA.
1. Information we collect
- Information you provide: contact form submissions include name, email, practice type, and message.
- Technical data: our host logs limited info (IP, browser, pages, timestamps) to deliver and secure the site.
We do not use tracking cookies. See our Cookie Policy.
2. How we use your information
- To respond to your enquiry and provide requested services.
- To operate, secure, and maintain the website.
- To comply with legal obligations.
3. Legal bases (GDPR)
- Consent and/or steps prior to entering a contract.
- Legitimate interests — to operate, secure, and respond to enquiries.
- Legal obligation — where required by law.
4. Who we share data with
We use trusted providers who act on our instructions:
- Cloudflare — hosting, CDN, and security.
- Resend — delivery of contact-form emails.
- Google LLC — web font delivery.
- Cal.com — appointment scheduling.
We do not sell or share your data for cross-context behavioral advertising.
5. International transfers
We operate from the EU and serve US clients. Transfers rely on safeguards like EU Standard Contractual Clauses.
6. Data retention
Contact-form submissions are kept only as long as needed, then deleted or anonymized.
7. Your rights (GDPR)
EU/EEA/UK residents: access, rectify, erase, restrict, object, or port data. Lodge complaints with your supervisory authority.
8. Your rights (California — CCPA/CPRA)
California residents: know, delete, or correct personal info. We do not sell or share it and will not discriminate for exercising rights.
9. How to exercise your rights
Email info@medikaweb.com; we respond within legal timeframes.
10. Changes to this policy
We may update this policy. The "last updated" date shows the latest version.
11. Contact
Smart Digital Asset S.r.l. — info@medikaweb.com