scale360ai

Get in touch!

Let’s Talk

Privacy Policy

Privacy Policy

Last Updated: January 20, 2026

1. Introduction

Scale360 AI (“Company,” “we,” “our,” or “us”) is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, services, products, and applications (collectively, the “Services”).

By using our Services, you consent to the practices described in this Privacy Policy. If you do not agree with this policy, please do not access or use our Services.

2. Information We Collect

We collect information that you provide directly to us, information we obtain automatically when you use our Services, and information from third-party sources.

2.1 Information You Provide to Us

Account Information:

  • Name, email address, and contact details
  • Username and password
  • Company name and job title
  • Billing address and payment information
  • Phone number

Profile Information:

  • Professional background and preferences
  • User preferences and settings
  • Communication preferences
  • Language and timezone settings

Content and Usage Data:

  • Text, images, files, and other content you upload or create
  • Prompts, queries, and inputs you provide to our AI Services
  • Generated content and outputs from our AI models
  • Feedback, reviews, and survey responses
  • Communications with our support team

Payment Information:

  • Credit card or payment method details (processed securely by third-party payment processors)
  • Billing history and transaction records
  • Tax identification numbers (for business accounts)

Enterprise Customer Data:

  • Custom agreements and contracts
  • API keys and integration configurations
  • Team member information and access permissions

2.2 Information We Collect Automatically

Usage Information:

  • Pages visited, features used, and time spent on Services
  • Click patterns and navigation paths
  • Search queries and interactions with AI models
  • Error logs and performance data
  • Session duration and frequency of use

Device Information:

  • IP address and device identifiers
  • Browser type and version
  • Operating system and device type
  • Screen resolution and language settings
  • Referral URLs and exit pages

Location Information:

  • General geographic location based on IP address
  • Timezone information
  • Country and region

Cookies and Tracking Technologies:

  • Cookies, web beacons, and similar technologies
  • Session identifiers and authentication tokens
  • Analytics and performance tracking data
  • Advertising and marketing tracking (with consent)

2.3 Information from Third-Party Sources

Third-Party Integrations:

  • Information from connected services (Google Drive, Slack, etc.)
  • Social media profile information (if you connect accounts)
  • OAuth authentication data

Business Partners:

  • Lead generation and marketing partners
  • Payment processors and financial institutions
  • Identity verification services

Publicly Available Sources:

  • Business information from public databases
  • Professional networking sites
  • Company websites and directories

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Provide and Improve Services

  • Create and manage your account
  • Process transactions and deliver Services
  • Provide AI-powered features and functionalities
  • Generate, process, and deliver AI outputs
  • Customize and personalize your experience
  • Respond to your requests and provide customer support
  • Send service-related notifications and updates

3.2 Develop and Improve AI Models

  • Train and improve our AI models and algorithms
  • Analyze usage patterns to enhance model performance
  • Conduct research and development
  • Test new features and capabilities
  • Evaluate model accuracy and safety
  • Note: You can opt out of having your data used for model training in your account settings

3.3 Analytics and Performance

  • Monitor and analyze usage trends and preferences
  • Measure effectiveness of our Services
  • Track performance metrics and identify issues
  • Conduct A/B testing and experiments
  • Generate aggregated, anonymized statistics

3.4 Security and Fraud Prevention

  • Detect and prevent fraud, abuse, and security threats
  • Verify user identity and prevent unauthorized access
  • Monitor for violations of our Terms and Conditions
  • Protect against malicious or harmful activities
  • Maintain system integrity and availability

3.5 Marketing and Communications

  • Send promotional materials and product updates (with consent)
  • Provide personalized recommendations
  • Conduct surveys and request feedback
  • Communicate about events, webinars, and news
  • Deliver targeted advertising (with consent)

3.6 Legal and Compliance

  • Comply with legal obligations and regulations
  • Respond to legal requests and court orders
  • Enforce our Terms and Conditions
  • Protect our rights and property
  • Resolve disputes and legal claims

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers and Partners

We share information with third-party vendors who perform services on our behalf:

  • Cloud hosting providers (AWS, Google Cloud, Azure)
  • Payment processors (Stripe, PayPal)
  • Analytics providers (Google Analytics, Mixpanel)
  • Customer support platforms (Zendesk, Intercom)
  • Email and communication services (SendGrid, Twilio)
  • Security and fraud prevention services
  • Marketing and advertising platforms

All service providers are contractually obligated to protect your information and use it only for specified purposes.

4.2 Business Transfers

If we are involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and your choices regarding your information.

4.3 Legal Requirements

We may disclose your information when required by law or in response to:

  • Court orders, subpoenas, or legal processes
  • Government or regulatory requests
  • Law enforcement investigations
  • Protection of our legal rights and property
  • Prevention of fraud or illegal activities
  • Protection of user safety and security

4.4 With Your Consent

We may share information for other purposes with your explicit consent or at your direction, such as:

  • When you authorize third-party integrations
  • When you participate in co-marketing initiatives
  • When you request information sharing with partners

4.5 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you, including:

  • Industry benchmarks and statistics
  • Research findings and insights
  • Performance metrics and trends
  • Public reports and publications

5. Data Retention

5.1 Retention Periods

We retain your information for as long as necessary to:

  • Provide Services and maintain your account
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Fulfill legitimate business purposes

Specific Retention Periods:

  • Account Data: Retained while your account is active and for up to 90 days after account closure
  • Transaction Records: Retained for 7 years for accounting and tax purposes
  • Usage Logs: Retained for up to 2 years for analytics and security
  • Generated Content: Retained according to your subscription plan (typically 30-90 days after deletion)
  • Support Communications: Retained for 3 years
  • Marketing Data: Retained until you opt out or for 2 years of inactivity

5.2 Data Deletion

You may request deletion of your personal information at any time. We will delete your data within 30 days, except where:

  • We are required to retain it by law
  • It is needed for pending legal matters
  • It has been anonymized and is no longer personally identifiable

6. Your Privacy Rights

Depending on your location, you may have the following rights:

6.1 Access and Portability

  • Right to Access: Request a copy of the personal information we hold about you
  • Right to Data Portability: Receive your data in a structured, commonly used format

6.2 Correction and Deletion

  • Right to Correct: Update or correct inaccurate or incomplete information
  • Right to Delete: Request deletion of your personal information (subject to legal exceptions)

6.3 Control and Restriction

  • Right to Opt-Out: Unsubscribe from marketing communications
  • Right to Restrict Processing: Limit how we use your information
  • Right to Object: Object to certain processing activities, including profiling

6.4 Data Processing Preferences

  • Opt-Out of AI Training: Prevent your data from being used to train AI models
  • Cookie Preferences: Manage cookie and tracking preferences
  • Communication Preferences: Control email and notification settings

6.5 Withdrawal of Consent

Where we process your information based on consent, you may withdraw consent at any time. This does not affect the lawfulness of processing before withdrawal.

6.6 How to Exercise Your Rights

To exercise any of these rights, please:

  • Access your account settings
  • Contact us at privacy@scale360ai.com
  • Use the privacy controls in our platform

We will respond to your request within 30 days (or as required by applicable law).

6.7 Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection authority in your jurisdiction if you believe we have violated your privacy rights.

7. International Data Transfers

7.1 Global Operations

Scale360 AI operates globally, and your information may be transferred to, stored, and processed in countries other than your own, including Canada, the United States, and the European Union.

7.2 Data Protection Safeguards

When transferring data internationally, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by relevant authorities
  • Adequacy decisions by regulatory bodies
  • EU-US Data Privacy Framework participation (when applicable)
  • Binding Corporate Rules for intra-group transfers
  • Encryption and security measures during transfer

7.3 Your Consent

By using our Services, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.

8. Data Security

8.1 Security Measures

We implement industry-standard security measures to protect your information:

Technical Safeguards:

  • Encryption in transit (TLS/SSL) and at rest (AES-256)
  • Secure authentication and access controls
  • Regular security audits and penetration testing
  • Intrusion detection and prevention systems
  • Automated threat monitoring and response
  • Secure API design and implementation

Organizational Safeguards:

  • Employee training on data protection and security
  • Access controls and least-privilege principles
  • Background checks for personnel with data access
  • Incident response and disaster recovery plans
  • Regular security policy reviews and updates

Physical Safeguards:

  • Secure data centers with restricted access
  • Environmental controls and redundancy
  • Video surveillance and security personnel

8.2 Third-Party Security

We carefully vet service providers and require them to implement appropriate security measures through contractual obligations.

8.3 Limitations

While we strive to protect your information, no security system is impenetrable. We cannot guarantee absolute security. You are responsible for:

  • Maintaining the confidentiality of your password
  • Using strong, unique passwords
  • Enabling two-factor authentication when available
  • Protecting your devices and access credentials
  • Reporting suspected security incidents promptly

8.4 Security Breach Notification

In the event of a data breach that affects your personal information, we will:

  • Notify you within 72 hours (or as required by law)
  • Provide details about the breach and affected data
  • Explain steps we are taking to address the breach
  • Advise you on protective measures you can take

9. Children’s Privacy

9.1 Age Restrictions

Our Services are not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18.

9.2 Parental Rights

If we become aware that we have collected information from a child under 18, we will take steps to delete it promptly. If you believe we have collected information from a child, please contact us at privacy@scale360ai.com.

9.3 Educational Use

For educational institutions using our Services for students, additional safeguards and parental consent mechanisms may apply as required by law (such as COPPA in the United States or similar laws in other jurisdictions).

10. Cookies and Tracking Technologies

10.1 What We Use

We use cookies and similar technologies to:

  • Maintain your session and remember your preferences
  • Analyze usage and improve Services
  • Provide personalized experiences
  • Deliver targeted advertising (with consent)
  • Detect and prevent fraud

10.2 Types of Cookies

Essential Cookies:

  • Required for Services to function
  • Cannot be disabled without affecting functionality
  • Include authentication and security cookies

Functional Cookies:

  • Remember your preferences and settings
  • Enhance user experience
  • Can typically be disabled

Analytics Cookies:

  • Track usage patterns and performance
  • Help us improve Services
  • May be disabled

Advertising Cookies:

  • Deliver personalized advertisements
  • Track advertising effectiveness
  • Require consent in many jurisdictions

10.3 Cookie Management

You can control cookies through:

  • Browser settings (most browsers allow cookie blocking)
  • Our cookie preference center
  • Third-party opt-out tools (NAI, DAA)

Note: Disabling essential cookies may limit your ability to use certain features.

10.4 Do Not Track

Some browsers support “Do Not Track” signals. Currently, there is no industry standard for responding to such signals. We do not respond to Do Not Track signals but provide other privacy controls.

11. Third-Party Links and Services

11.1 External Links

Our Services may contain links to third-party websites, applications, or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

11.2 Third-Party Integrations

When you connect third-party services to our platform:

  • You authorize data sharing between services
  • Third-party privacy policies apply to their handling of data
  • We are not responsible for third-party data practices
  • You can disconnect integrations at any time

11.3 Social Media Features

Our Services may include social media features and widgets. These features may collect information about your interactions and may use cookies. Your interactions with these features are governed by the privacy policies of the respective social media companies.

12. AI-Specific Privacy Considerations

12.1 AI Model Training

Data Used for Training:

  • We may use anonymized, aggregated data to train and improve AI models
  • User inputs and generated outputs may be used for model refinement
  • We implement privacy-preserving techniques to protect individual privacy

Opt-Out Options:

  • You can opt out of having your data used for AI training
  • Enterprise customers can negotiate specific data usage terms
  • Opting out does not affect your ability to use our Services

12.2 Generated Content

Privacy of AI Outputs:

  • Generated content may not be unique to you
  • Similar prompts may produce similar outputs for different users
  • We do not claim ownership of your generated content
  • You are responsible for reviewing outputs for sensitive information

12.3 Data Minimization in AI

We practice data minimization by:

  • Collecting only necessary information for AI functionality
  • Removing personally identifiable information before training when possible
  • Using differential privacy techniques
  • Regularly reviewing and updating data retention policies

12.4 Bias and Fairness

We work to minimize bias in our AI systems through:

  • Diverse training data sets
  • Regular bias audits and testing
  • Transparent reporting of limitations
  • Continuous improvement based on feedback

13. Region-Specific Privacy Information

13.1 European Economic Area (EEA) and United Kingdom

Legal Basis for Processing: We process your data based on:

  • Consent: For marketing communications and optional features
  • Contract Performance: To provide Services you’ve requested
  • Legitimate Interests: For analytics, security, and improvements
  • Legal Obligation: To comply with applicable laws

Your GDPR Rights:

  • Right of access, rectification, and erasure
  • Right to restrict or object to processing
  • Right to data portability
  • Right to withdraw consent
  • Right to lodge a complaint with supervisory authority

Data Protection Officer: You may contact our DPO at dpo@scale360ai.com

EU Representative: Scale360 AI EU Representative (if applicable)

13.2 California (CCPA/CPRA)

California Consumer Rights:

  • Right to know what personal information is collected
  • Right to know whether personal information is sold or disclosed
  • Right to opt out of sale of personal information
  • Right to deletion of personal information
  • Right to non-discrimination for exercising rights
  • Right to correct inaccurate information
  • Right to limit use of sensitive personal information

Sale of Personal Information: We do not sell personal information as defined by CCPA.

Shine the Light Law: California residents may request information about disclosure of personal information to third parties for direct marketing purposes.

Contact for California Residents: privacy@scale360ai.com or 1-800-PRIVACY (toll-free)

13.3 Canada (PIPEDA)

We comply with Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA):

  • Accountability for personal information in our custody
  • Identification of purposes for data collection
  • Consent for collection, use, and disclosure
  • Limiting collection to identified purposes
  • Limiting use, disclosure, and retention
  • Accuracy of personal information
  • Appropriate safeguards
  • Openness about policies and practices
  • Individual access to personal information
  • Challenging compliance

Privacy Commissioner Contact: You may file a complaint with the Office of the Privacy Commissioner of Canada at www.priv.gc.ca

13.4 Other Jurisdictions

We comply with privacy laws in all jurisdictions where we operate, including:

  • Brazil’s LGPD
  • Australia’s Privacy Act
  • Singapore’s PDPA
  • Other applicable data protection regulations

14. Business Transfers and Corporate Changes

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets:

  • Your information may be transferred to the acquiring entity
  • We will notify you via email and/or prominent notice on our website
  • You will be informed of your choices regarding your information
  • The acquiring entity must honor this Privacy Policy unless you consent to changes

15. Changes to This Privacy Policy

15.1 Policy Updates

We may update this Privacy Policy periodically to reflect:

  • Changes in our practices
  • Changes in applicable laws
  • New features or services
  • Feedback from users and regulators

15.2 Notification of Changes

We will notify you of material changes through:

  • Email to your registered address
  • Prominent notice on our website or Services
  • In-app notifications

15.3 Effective Date

Changes become effective 30 days after notification unless otherwise specified. Your continued use of Services after changes take effect constitutes acceptance of the updated Privacy Policy.

15.4 Previous Versions

We maintain an archive of previous Privacy Policy versions, available upon request.

16. Contact Us

16.1 Privacy Inquiries

For questions, concerns, or requests regarding this Privacy Policy or our privacy practices:

Email: privacy@scale360ai.com
Data Protection Officer: dpo@scale360ai.com
Mail:
Scale360 AI
Privacy Department
883 Avenue Ball
Montreal, Quebec, H3N-1J8
Canada

Phone: +1 (514)-975-8651

16.2 Response Time

We will respond to your privacy inquiries within:

  • 30 days for general inquiries
  • 45 days for complex requests (with notification of extension)
  • As required by applicable law in your jurisdiction

16.3 Privacy Request Portal

You may submit privacy requests through our online portal at: https://scale360ai.com/privacy-requests

16.4 Security Concerns

To report security vulnerabilities or incidents: Email: security@scale360ai.com

17. Glossary

Personal Information: Information that identifies, relates to, or could reasonably be linked to you.

Processing: Any operation performed on personal data, including collection, storage, use, disclosure, and deletion.

Controller: The entity that determines the purposes and means of processing personal data.

Processor: An entity that processes personal data on behalf of the controller.

Anonymization: The process of removing personally identifiable information so that individuals cannot be identified.

De-identification: Removing or modifying information that identifies an individual.

Consent: Freely given, specific, informed, and unambiguous agreement to processing of personal data.

18. Your Responsibilities

As a user of our Services, you are responsible for:

  • Providing accurate and truthful information
  • Maintaining the security of your account credentials
  • Complying with applicable laws when using our Services
  • Not sharing sensitive information of others without authorization
  • Reviewing and understanding this Privacy Policy
  • Promptly updating your information when it changes
  • Respecting the privacy rights of others

Acknowledgment

BY USING OUR SERVICES, YOU ACKNOWLEDGE THAT YOU HAVE READ AND UNDERSTOOD THIS PRIVACY POLICY AND AGREE TO ITS TERMS.

© 2026 Scale360 AI. All Rights Reserved.

Document Version: 2.0
Last Reviewed: January 20, 2026
Next Review Date: July 20, 2026