LAST UPDATED — APRIL 2025

Privacy Policy

StackRa Agency's commitment to transparency in how we collect, use, and protect your personal data.

Overview

StackRa Agency ("we", "our", "us") is committed to protecting the privacy and personal data of every individual who interacts with our digital transformation services, SaaS platforms, and open-source solutions. This Privacy Policy explains how we collect, use, store, and protect your information when you use our services. By accessing or using any StackRa service, you agree to the practices described in this policy. If you do not agree, please discontinue use of our services. Last updated: April 1, 2025 — Version 2.1

Data We Collect

We collect only what is necessary to deliver our services effectively:

Identity & Contact Information

Full name, email address, phone number, company name, and billing address — provided when you register an account or contact our team.

Usage & Platform Data

Access logs, IP addresses, browser type, session duration, feature interactions, and navigation paths within our SaaS platforms.

Payment Information

Billing details processed securely through Stripe and PayPal. We never store raw card numbers — only tokenized references.

Project & Integration Data

Files, configurations, content, and data you upload or connect during the deployment of your digital solutions.

Device & Technical Data

Operating system, device identifiers, time zone, language settings, and crash/error reports for performance optimization.

Cookies & Tracking Technologies

Session cookies, analytics pixels, and similar tools to understand how our platforms are used and to improve user experience.

How We Use Your Data

Your data powers the services you rely on:

Service Delivery

Provisioning, operating, and maintaining your SaaS subscriptions and digital transformation projects.

Personalization

Customizing dashboards, recommending features, and tailoring content relevant to your industry and workflow.

Technical Support

Diagnosing bugs, resolving incidents, and providing expert support for deployed solutions.

Security & Fraud Prevention

Detecting anomalous behavior, preventing unauthorized access, and safeguarding platform integrity.

Product Improvement

Analyzing anonymized, aggregated data to research new features and enhance service quality.

Legal Compliance

Meeting accounting, tax, and regulatory obligations required under applicable laws.

Sharing & Disclosure

We do not sell your personal data. We share data only in these limited circumstances:

Cloud Infrastructure Partners

AWS, Google Cloud, Microsoft Azure — certified ISO 27001 providers hosting our infrastructure under strict data processing agreements.

Analytics Providers

Google Analytics and Mixpanel receive anonymized behavioral data to help us improve our products.

Legal Obligations

When required by a valid court order, government authority, or to protect StackRa's legal rights.

Business Transfers

In the event of a merger or acquisition, you will be notified before any data transfer occurs.

Data Security

We implement layered technical and organizational safeguards:

End-to-End Encryption

AES-256 encryption at rest and TLS 1.3 in transit. Encryption keys are managed in dedicated Hardware Security Modules (HSMs).

Access Controls

Multi-factor authentication (MFA), role-based access control (RBAC), and full audit logging on all admin actions.

Regular Security Testing

Annual penetration tests, weekly automated vulnerability scans, and an active bug bounty program.

Backup & Disaster Recovery

Daily automated backups with geo-redundant storage. Recovery Point Objective (RPO) < 1 hour; Recovery Time Objective (RTO) < 4 hours.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights:

Right of Access

Request a copy of all personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete information.

Right to Erasure

Request deletion of your personal data ('right to be forgotten').

Right to Restriction

Request that we limit how we process your data in certain circumstances.

Right to Portability

Receive your data in a machine-readable format (JSON or CSV).

Right to Object

Object to processing for direct marketing or legitimate interest purposes.

Cookies Policy

We use the following categories of cookies:

Essential Cookies

Required for core platform functionality — session management, CSRF protection, load balancing. Cannot be disabled.

Analytics Cookies

Collect anonymized usage data to help us improve performance. You may opt out via your browser settings.

Marketing Cookies

Used to show relevant advertisements on third-party platforms. You can opt out at any time through our Cookie Preferences center.

Data Retention

We retain your data only for as long as necessary: • Account data — for the duration of the contract + 2 years after termination • Transaction records — 7 years (statutory accounting requirement) • Analytics data — up to 26 months in anonymized aggregate form • Support tickets — 3 years from last interaction • Backup snapshots — up to 90 days after account deletion After these periods, data is securely deleted or irreversibly anonymized.

Contact & Data Requests

To exercise your rights or raise a privacy concern, contact our Data Privacy Team:

EMAIL

privacy@stackra.agency

PHONE

+84 375 686 583 +84 346 403 449 (Reservations)

RESPONSE TIME

We aim to respond within 72 business hours.

HOURS

Monday – Sunday, 24 hours

Thu Duc Office

Thu Duc City, Ho Chi Minh City, Vietnam

Quy Nhon Office

Quy Nhon City, Binh Dinh Province, Vietnam

This policy is effective as of April 1, 2025. We may update it periodically — registered users will be notified by email.
© 2025 StackRa Agency. All rights reserved.