Privacy Policy
We collect only what we need, we do not sell your data, and we will never auto-enrol you in marketing. Effective April 19, 2026.
1. Who We Are
Stratridge is a B2B marketing strategy and execution optimisation suite operated by Capstera (“we,” “our,” or “us”). Our registered address and data-controller contact details are available on request at privacy@stratridge.com.
2. Information We Collect
We collect information in three ways: information you give us directly, information generated automatically when you use the service, and information from third-party integrations you choose to connect.
| Category | Examples | Purpose |
|---|---|---|
| Account data | Name, work email, company name | Authentication, account management, support |
| Usage data | Pages visited, features used, audit inputs, timestamps | Product improvement, billing, anomaly detection |
| Technical data | IP address, browser type, device type, session tokens | Security, fraud prevention, rate limiting |
| Communications | Emails, contact-form messages, support tickets | Responding to enquiries, improving support |
| Payment data | Billing address, last-four card digits (tokenised) | Subscription billing via our payment processor |
Full card numbers are never stored by Stratridge; they are processed exclusively by our PCI-DSS-compliant payment processor.
3. How We Use Your Information
We process your data only where we have a lawful basis to do so. The primary bases we rely on are:
- —Contract performance: to provide the Stratridge service you have subscribed to, including running audits, generating reports, and managing your account.
- —Legitimate interests: to improve our product, prevent fraud, ensure security, and send transactional communications directly related to your account.
- —Consent: to send marketing emails or newsletters, and to set non-essential cookies. You may withdraw consent at any time.
- —Legal obligation: to comply with applicable laws, regulations, or enforceable government requests.
4. Sharing and Disclosure
We do not sell, rent, or trade your personal data. We share data only in the following limited circumstances:
- —Service providers: sub-processors such as cloud infrastructure, payment processing, email delivery, and analytics platforms, each bound by data-processing agreements.
- —AI model providers: when you run an audit or use the Analyst, your inputs may be processed by third-party large language model APIs. We do not permit those providers to use your data for model training.
- —Legal requirements: if required by law, court order, or to protect the rights, property, or safety of Stratridge, our users, or others.
- —Business transfers: in connection with a merger, acquisition, or sale of assets, subject to the acquirer honouring the commitments in this policy.
5. Data Retention
We retain personal data for as long as your account is active or as needed to provide services. Account data is deleted within 90 days of account closure on request. Audit outputs and usage logs are retained for up to 24 months to support the continuous audit and trajectory features, after which they are anonymised or deleted. Financial records are retained for seven years as required by applicable law.
6. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access — request a copy of the data we hold about you.
- Rectification — ask us to correct inaccurate or incomplete data.
- Erasure — request deletion of your personal data (“right to be forgotten”).
- Restriction — ask us to limit processing in certain circumstances.
- Portability — receive your data in a structured, machine-readable format.
- Objection — object to processing based on legitimate interests.
- Withdraw consent — at any time, without affecting prior lawful processing.
To exercise any of these rights, email privacy@stratridge.com. We will respond within 30 days.
7. Cookies
We use cookies and similar tracking technologies. For full details on what we use and how to control it, please see our Cookie Policy.
8. International Transfers
Stratridge operates globally and may transfer your data to countries outside your own. Where transfers occur from the European Economic Area, UK, or Switzerland, we rely on Standard Contractual Clauses or equivalent safeguards approved by the relevant supervisory authority.
9. Security
We implement industry-standard technical and organisational measures to protect your data, including encryption in transit (TLS 1.2+) and at rest, access controls, and regular security reviews. No system is perfectly secure; if you discover a vulnerability, please disclose it responsibly to security@stratridge.com.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated by email to registered users and by a prominent notice on the website at least 14 days before they take effect. Continued use of the service after the effective date constitutes acceptance of the revised policy.
11. Contact Us
For privacy-related questions or to exercise your rights, contact our privacy team at privacy@stratridge.com. You also have the right to lodge a complaint with your local data protection supervisory authority.