Privacy Policy

SoClose Pte. Ltd. (“we”, “us”, or “our”) operates ScrapMe.io (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use our website and services, in compliance with the General Data Protection Regulation (GDPR — EU Regulation 2016/679) and applicable data protection laws.

1. Data Controller

The data controller responsible for your personal data is:

• SoClose Pte. Ltd.
• Email: privacy@scrapme.io

2. Personal Data We Collect

We collect the following categories of personal data:

2.1 Data You Provide Directly

• Account data: name, email address, and password when you register
• Billing data: payment method details processed by our payment provider (Stripe). We do not store full card numbers.
• Support communications: any information you include in emails or support requests

2.2 Data Collected Automatically

• Usage data: pages visited, features used, scraping job history, credit consumption
• Technical data: IP address, browser type and version, operating system, device type, referrer URL
• Cookies: session identifiers and preference cookies (see our Cookie Policy)

3. Legal Bases for Processing (Art. 6 GDPR)

We process your personal data on the following legal bases:

• Performance of a contract (Art. 6(1)(b)): to create and manage your account, provide the Service, and process payments
• Legitimate interests (Art. 6(1)(f)): to improve and secure the Service, prevent fraud, and analyze usage patterns
• Consent (Art. 6(1)(a)): for analytics cookies and marketing communications (where applicable). You may withdraw consent at any time.
• Legal obligation (Art. 6(1)(c)): to comply with applicable laws, regulations, and lawful requests

4. How We Use Your Data

• Provide, operate, and maintain the Service
• Authenticate users and manage sessions
• Process payments and manage subscriptions
• Track credit usage and enforce plan limits
• Send transactional emails (account verification, password resets, billing receipts)
• Monitor and improve Service performance and security
• Respond to support requests
• Comply with legal obligations and enforce our Terms of Service

5. Data Sharing and Third Parties

We do not sell your personal data. We share data only with:

• Payment processors: Stripe, Inc. processes payment information on our behalf
• Hosting providers: our infrastructure providers that host the Service
• Analytics providers: only if you consent to analytics cookies
• Legal authorities: when required by law or to protect our rights

All third-party processors are bound by Data Processing Agreements (DPAs) that ensure GDPR-compliant data handling.

6. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, or reliance on the recipient's adequacy decision.

7. Data Retention

We retain your personal data as follows:

• Account data: for as long as your account is active, plus 30 days after deletion request
• Scraping job data: results are retained for 90 days and then automatically purged
• Billing records: retained for the duration required by applicable tax and accounting laws (typically 7 years)
• Server logs: retained for 30 days for security and debugging purposes

8. Your Rights (GDPR Art. 15–22)

Under the GDPR, you have the following rights regarding your personal data:

• Right of access — obtain a copy of the personal data we hold about you
• Right to rectification — correct inaccurate or incomplete data
• Right to erasure (“right to be forgotten”) — request deletion of your personal data
• Right to restriction of processing — limit how we use your data
• Right to data portability — receive your data in a structured, machine-readable format
• Right to object — object to processing based on legitimate interests
• Right to withdraw consent — withdraw consent at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at privacy@scrapme.io. We will respond within 30 days.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

• Encryption in transit (TLS 1.2+) and at rest
• Secure password hashing (bcrypt)
• Role-based access controls
• Regular security audits and monitoring
• Automated data purging for expired scraping results

10. Children's Privacy

ScrapMe.io is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children. If we learn that we have collected data from a child under 16, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the revised policy.

12. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement.

13. Contact

For any questions about this Privacy Policy or your personal data, contact us at:

• Email: privacy@scrapme.io
• General inquiries: hello@scrapme.io