Privacy Policy
Last updated: July 2026
This Privacy Policy explains how we collect, use, and protect your personal information when you visit our site or contact us. We are the data controller under GDPR and the "business" under CCPA/CPRA.
1. Information we collect
- Information you give us: contact form submissions include your name, email, practice type, and message.
- Technical data: our host logs limited info (IP, browser, pages, timestamps) to deliver and secure the site.
We do not use tracking cookies. See our Cookie Policy.
2. How we use your information
- To respond to your enquiry and provide requested services.
- To operate, secure, and maintain the site.
- To comply with legal obligations.
3. Legal bases (GDPR)
- Consent and/or pre-contract steps when you contact us.
- Legitimate interests: site operation, security, and responding to enquiries.
- Legal obligation: required data retention or disclosure.
4. Who we share data with
We use trusted providers who process data on our instructions:
- Cloudflare — hosting, CDN, and security.
- Resend — delivery of contact-form emails.
- Google — web font delivery.
- Cal.com — appointment scheduling.
We do not sell or share your data for behavioral advertising.
5. International transfers
We operate from the EU and serve US clients; data may be processed in the EU/US with appropriate safeguards.
6. Data retention
Contact-form submissions are kept only as long as needed, then deleted or anonymized.
7. Your rights (GDPR)
If in the EU/EEA/UK, you may access, rectify, erase, restrict, or object to processing, and lodge complaints.
8. Your rights (California — CCPA/CPRA)
California residents: you may request deletion, correction, or opt out of "sale" or "sharing". We do not sell/share data and will not discriminate.
9. How to exercise your rights
Email info@medikaweb.com; we respond within legal timeframes.
10. Changes to this policy
We may update this policy. The "last updated" date shows the latest version.
11. Contact
Smart Digital Asset S.r.l. — info@medikaweb.com