StartupScaleStory
StartupScaleStory

Free & Fast: Estimate your PR timeline and readiness score — private, fast, and free.

Start free assessment

Privacy Policy

Last updated: 5 October 2025

We respect your privacy and handle your information responsibly. This policy explains what we collect, how we use it, and the rights and choices you have.

Who we are

Startup Story Scale (“we”, “our”, “us”) provides readiness assessments and related tools for early-stage teams. This policy applies to our website, dashboard, and related services (the “Services”).

Information we collect

  • Account & contact data — name, email, password (hashed), organization details.
  • Startup submission data — information you provide for assessments (e.g., product links, traction signals, team details), attachments or URLs.
  • Log & technical data — IP address, device/browser type, operating system, language, time zone, and basic usage events for security and diagnostics.
  • Payment data — processed by our payment provider; we store minimal references (e.g., transaction IDs), not full card details.

How we use your information

  • Provide, maintain, and improve the Services.
  • Generate assessment results and versioned recommendations.
  • Operate security controls, prevent fraud and abuse.
  • Respond to support requests and communicate service updates.
  • Meet legal, regulatory, and compliance obligations.

Legal bases (where applicable)

  • Contract — to deliver the Services you request.
  • Legitimate interests — e.g., to secure our platform and improve features in ways that do not override your rights.
  • Consent — where required (e.g., optional communications). You can withdraw at any time.
  • Legal obligations — when we must process data to comply with law.

Retention

We retain information only as long as necessary for the purposes described here, or as required by law. When no longer needed, data is deleted or de-identified according to our retention schedules.

Sharing & disclosure

  • Service providers — trusted vendors (e.g., hosting, analytics, email, payments) under contracts with confidentiality and data protection obligations.
  • Legal & safety — if required by law, regulation, or to protect rights, safety, or the Services.
  • Business transfers — in a merger, acquisition, or asset sale, subject to appropriate safeguards and notice where required.
  • No selling of personal data — we do not sell personal information.

Security

  • Encryption in transit (TLS) and least-privilege access.
  • Audit logging, monitoring, and periodic reviews.
  • Vendor due diligence and contractual controls.

International transfers

Your data may be processed in countries other than your own. Where required, we implement appropriate safeguards (e.g., standard contractual clauses) to protect your information.

Your rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your personal data, and to object or request portability. You can also withdraw consent where processing relies on it.

To exercise rights, contact us using the details below. We will respond as required by applicable law.

Children

The Services are not directed to children under the age of 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal data from children.

Changes to this policy

We may update this policy from time to time. If material changes are made, we will provide reasonable notice as required. Your continued use of the Services after the effective date indicates acceptance of the updated policy.

Contact us

Questions or requests? Contact our team.