Privacy Policy

Global Compliance Standards

We have designed this policy to be transparent and compliant with major global regulations:

• GDPR & UK GDPR: General Data Protection Regulation (European Union & United Kingdom).
• CCPA / CPRA: California Consumer Privacy Act (United States).
• DPDP Act: Digital Personal Data Protection Act (India).
• LGPD: Lei Geral de Proteção de Dados (Brazil).
• PIPL: Personal Information Protection Law (China).
• PIPEDA: Personal Information Protection and Electronic Documents Act (Canada).
• POPIA: Protection of Personal Information Act (South Africa).
• Privacy Act 1988: Including the Australian Privacy Principles (Australia).
• PDPA: Personal Data Protection Act (Singapore).
• APPI: Act on the Protection of Personal Information (Japan).

Our “Zero-Tracking” Commitment

Unlike traditional SaaS platforms, SocialFly Live does not engage in surveillance or behavioral tracking.

• No Cookies: We do not use tracking cookies, advertising cookies, or third-party analytics cookies on our software.
• No Profiling: We do not build “user profiles” or monitor your browsing behavior to sell to advertisers.
• Data Minimalism: We only process the absolute minimum data required to execute the functions of the software as requested by you.

Camera Access (For scanning provided Barcode)

Our app requests camera access solely to scan asset QR codes for quick identification, check-in/check-out, and inventory updates.

Camera data is processed in real time on your device; we do not record, store, or share any images or video footage.

You may deny or revoke camera access at any time via your browser or device settings, though barcode scanning functionality will be limited.

Email Access (Just to send notifications & user role access)

We collect your email address only to send system notifications (e.g., asset alerts, assignment updates) and to assign role-based access (Admin, Tech, Viewer).

Your email is not used for marketing, sold to third parties, or shared beyond the necessary operation of your organization’s asset management.

You can unsubscribe from non-critical notifications while still maintaining your account role and access.

 No Password Backup (We don’t store any information from our end)

For security, we do not store your password on our servers. Authentication is handled via encrypted, zero knowledge methods.

We cannot retrieve or reset your password for you — lost credentials require account recovery through your verified email.

No password data is backed up, logged, or accessible by any staff member at SocialFly.

 2-Month No-Use Data Deletion (Without subscription, only 2 months we will keep account)

If your account remains inactive (no logins, scans, or updates) for two consecutive months and you do not have an active subscription, we will permanently delete your account and all associated asset data.

You will receive a warning email 7 days before deletion. After deletion, data cannot be restored.

Active subscribers are exempt from this policy; inactivity limits reset upon subscription renewal.

No Refund (Free 7-day trial)

We offer a 7 day free trial with full features. No payment is required during the trial period.

If you subscribe and then cancel, we do not provide refunds for partial months or unused time. You retain access until the end of your paid billing cycle.

By subscribing, you acknowledge that you have tested the service during the free trial and accept the no refund terms.

Data Ownership & Storage

All data you input into SocialFly remains your exclusive property. We act as a Data Processor, while you remain the Data Controller.

• Storage Limitation & Efficiency
  To maintain high-performance software and manage global server resources efficiently, we follow a strict Storage Limitation Principle. We do not retain unnecessary historical logs or “ghost” copies of your data.
  
• Immediate & Permanent Deletion (No Recovery)
  This is a critical notice for all users: In accordance with the “Right to Erasure” (GDPR Art. 17), when you delete a record, a file, or your account, the deletion is executed permanently and immediately across our primary production servers.
  
  1. Non-Recoverability: Because we do not maintain secondary archival backups of deleted content (to ensure your privacy and optimize storage), there is no way to recover data once it is deleted.
  
  2. User Liability: Users are solely responsible for ensuring they have exported any necessary business data before performing a deletion action.

Legal Basis for Processing

For users in jurisdictions requiring a “Legal Basis” (such as the EU), we process your data based on:

• Contractual Necessity: We process data only as needed to provide the business management services you have signed up for.
• Legal Obligation: We may retain minimal transactional data if required by global tax or accounting laws.

Your Global Privacy Rights

Regardless of where you are in the world, SocialFly honors the following rights:

• Right to Know – You have the right to know exactly what data we process (which is minimal).
• Right to Erasure – You can delete your data at any time via your dashboard.
• Right to Portability – You can export your data into standard formats before closing your account.
• Non-Discrimination – We will never charge you a different price or provide different service levels for exercising your privacy rights.

International Data Transfers

To provide a global service, your data may be processed on secure servers located in various regions (e.g., USA, EU, or Singapore). We utilize Standard Contractual Clauses (SCCs) and high-level encryption to ensure that your data receives the same level of protection regardless of where the server is located.

Data Security

We implement “Zero-Knowledge” inspired protocols where possible. All data is protected by AES-256 bit encryption at rest and TLS 1.3 in transit. Access to your business environment is restricted via encrypted authentication tokens.