Godscale has a zero-tolerance policy in data management; data protection and privacy are foundational to how we operate our services. We follow global best practices and comply with applicable data protection regulations to ensure lawful, ethical, and secure handling of personal data (PII).

Regulatory Framework We Align With:

India – Digital Personal Data Protection (DPDP) Act

European Union – General Data Protection Regulation (GDPR)

United Arab Emirates – Personal Data Protection Law (PDPL)

United States – CAN-SPAM Act (for email-based outreach)

Lawful Data Collection Practices

All leads are generated through lawful, permission-based channels such as paid advertising, landing pages, and professional outreach.

We do not engage in illegal data scraping or unauthorized data purchases.

Clear consent mechanisms are implemented wherever required.

Purpose Limitation & Data Minimization

Data is collected strictly for defined business purposes.

Only necessary data points are collected to fulfill campaign objectives.

Data is not reused or resold beyond the agreed contractual scope.

Data Storage & Security Measures

Secure CRM systems with controlled access permissions.

Role-based access for internal teams.

Regular internal audits and access reviews.

Data stored only for the duration necessary to fulfill contractual obligations.

Client Transparency & Accountability

Clear disclosure of lead sources and generation methods.

Defined lead qualification criteria agreed upon in advance.

Master Service Agreements (MSA) with confidentiality and data protection clauses.

Third-Party & Vendor Management

Careful vetting of advertising platforms and technology partners.

No sharing of data with unauthorized third parties.

Contractual safeguards where third-party tools are used.

Breach Prevention & Response

Preventive controls to minimize risk of data breaches.

Immediate internal escalation if a breach is suspected.

Client notification protocols aligned with applicable laws.

Legal Safeguards & Risk Management

Indemnity clauses are included in client agreements.

Ongoing review of compliance practices as regulations evolve.