Privacy Policy

Global Compliance Standards

We have designed this policy to be transparent and compliant with major global regulations:

• GDPR & UK GDPR: General Data Protection Regulation (European Union & United Kingdom).
• CCPA / CPRA: California Consumer Privacy Act (United States).
• DPDP Act: Digital Personal Data Protection Act (India).
• LGPD: Lei Geral de Proteção de Dados (Brazil).
• PIPL: Personal Information Protection Law (China).
• PIPEDA: Personal Information Protection and Electronic Documents Act (Canada).
• POPIA: Protection of Personal Information Act (South Africa).
• Privacy Act 1988: Including the Australian Privacy Principles (Australia).
• PDPA: Personal Data Protection Act (Singapore).
• APPI: Act on the Protection of Personal Information (Japan).

Our “Zero-Tracking” Commitment

Unlike traditional SaaS platforms, SocialFly Live does not engage in surveillance or behavioral tracking.

• No Cookies: We do not use tracking cookies, advertising cookies, or third-party analytics cookies on our software.
• No Profiling: We do not build “user profiles” or monitor your browsing behavior to sell to advertisers.
• Data Minimalism: We only process the absolute minimum data required to execute the functions of the software as requested by you.

Data Ownership & Storage

All data you input into SocialFly Live remains your exclusive property. We act as a Data Processor, while you remain the Data Controller.

• Storage Limitation & Efficiency
  To maintain high-performance software and manage global server resources efficiently, we follow a strict Storage Limitation Principle. We do not retain unnecessary historical logs or “ghost” copies of your data.
  
• Immediate & Permanent Deletion (No Recovery)
  This is a critical notice for all users: In accordance with the “Right to Erasure” (GDPR Art. 17), when you delete a record, a file, or your account, the deletion is executed permanently and immediately across our primary production servers.
  
  1. Non-Recoverability: Because we do not maintain secondary archival backups of deleted content (to ensure your privacy and optimize storage), there is no way to recover data once it is deleted.
  
  2. User Liability: Users are solely responsible for ensuring they have exported any necessary business data before performing a deletion action.

Legal Basis for Processing

For users in jurisdictions requiring a “Legal Basis” (such as the EU), we process your data based on:

• Contractual Necessity: We process data only as needed to provide the business management services you have signed up for.
• Legal Obligation: We may retain minimal transactional data if required by global tax or accounting laws.

Your Global Privacy Rights

Regardless of where you are in the world, SocialFly honors the following rights:

• Right to Know – You have the right to know exactly what data we process (which is minimal).
• Right to Erasure – You can delete your data at any time via your dashboard.
• Right to Portability – You can export your data into standard formats before closing your account.
• Non-Discrimination – We will never charge you a different price or provide different service levels for exercising your privacy rights.

International Data Transfers

To provide a global service, your data may be processed on secure servers located in various regions (e.g., USA, EU, or Singapore). We utilize Standard Contractual Clauses (SCCs) and high-level encryption to ensure that your data receives the same level of protection regardless of where the server is located.

Data Security

We implement “Zero-Knowledge” inspired protocols where possible. All data is protected by AES-256 bit encryption at rest and TLS 1.3 in transit. Access to your business environment is restricted via encrypted authentication tokens.