Articles on: Security Trust

Data Privacy

Data Privacy


Our Privacy Commitment


Your data belongs to you. Stageholder processes your data solely to provide our service. We don't sell your data, we don't use it for advertising, and we're transparent about how we handle it.


What Data We Collect


Account Data

Information you provide when creating an account:

  • Name and email address
  • Company/organization name
  • Password (encrypted, never stored in plain text)
  • Billing information (for paid accounts)


Asset & Business Data

Data you enter into Stageholder:

  • Asset records and details
  • Inventory information
  • Location data
  • User assignments
  • Custom fields you create
  • Documents and attachments


Usage Data

Information about how you use the service:

  • Login times and IP addresses
  • Features used
  • Error logs
  • Performance data


This helps us:

  • Improve the product
  • Troubleshoot issues
  • Ensure security


Cookies & Analytics

Standard website technologies:

  • Session cookies (required for login)
  • Preference cookies (remember your settings)
  • Analytics (understand usage patterns)


See our Cookie Policy for details.


How We Use Your Data


To Provide the Service

  • Store and display your asset data
  • Enable collaboration with team members
  • Generate reports and analytics
  • Send notifications you've requested


To Improve the Service

  • Analyze usage patterns
  • Identify and fix bugs
  • Develop new features
  • Optimize performance


To Communicate With You

  • Service announcements
  • Security alerts
  • Support responses
  • Product updates (you can opt out)


We DO NOT

  • ❌ Sell your data to third parties
  • ❌ Use your data for advertising
  • ❌ Share data with marketers
  • ❌ Mine your data for unrelated purposes


Data Ownership


Your Data is Yours

  • You retain full ownership of your data
  • We process it only to provide the service
  • You can export your data anytime
  • We delete your data when you close your account


Intellectual Property

  • Your asset data, documents, and content remain yours
  • We don't claim any rights to your business data
  • You grant us only the rights needed to operate the service


Data Sharing


Who We Share Data With


Service Providers

Third parties that help us operate:

  • Cloud hosting providers
  • Payment processors
  • Email delivery services
  • Customer support tools


These providers:

  • Are contractually bound to protect your data
  • Can only use data to provide their services
  • Are regularly assessed for security


At Your Direction

  • Team members you invite to your workspace
  • Integrations you enable (APIs, third-party apps)
  • Data exports you request


Legal Requirements

We may disclose data if required by:

  • Valid legal process
  • Court orders
  • Government requests


We'll notify you when possible and challenge overbroad requests.


We Don't Share

  • ❌ With advertisers
  • ❌ With data brokers
  • ❌ With other customers
  • ❌ For any reason beyond operating the service


Data Retention


Active Accounts

  • Data retained while your account is active
  • Backups retained for disaster recovery
  • Audit logs retained per your plan settings


After Cancellation

  • Data retained for 30 days (in case you return)
  • After 30 days, data is permanently deleted
  • Backups purged according to backup schedule


Data Deletion

You can request deletion of:

  • Individual records
  • Your entire workspace
  • Your account


We honor deletion requests promptly, subject to legal retention requirements.


Your Rights


Access Your Data

  • View all your data in the platform
  • Export your data anytime
  • Request a copy of personal data


Correct Your Data

  • Edit any information in the platform
  • Request corrections to account data
  • Update your preferences


Delete Your Data

  • Delete individual records
  • Request account deletion
  • Data purged per retention policy


Data Portability

  • Export data in standard formats (CSV, Excel)
  • No lock-in — your data is always accessible
  • API access for programmatic export


Object to Processing

  • Opt out of marketing communications
  • Request restriction of certain processing
  • Contact us with concerns


GDPR Compliance


For EU/EEA users and organizations:


Lawful Basis

We process data based on:

  • Contract: To provide the service you signed up for
  • Legitimate Interest: To improve and secure the service
  • Consent: For optional communications


Data Controller

You are the data controller for your workspace data. Stageholder is the data processor.


Data Processing Agreement

Enterprise customers can request a DPA that:

  • Defines our processing obligations
  • Specifies security measures
  • Addresses sub-processors
  • Covers data transfers


International Transfers

For data transferred outside the EU/EEA:

  • Standard Contractual Clauses (SCCs)
  • Adequate security measures
  • Compliance with GDPR requirements


CCPA Compliance


For California residents:


Your Rights

  • Right to know what personal information we collect
  • Right to delete personal information
  • Right to opt-out of sale (we don't sell data)
  • Right to non-discrimination


Exercising Rights

Contact us at privacy@stageholder.com to exercise your rights.


Children's Privacy


Stageholder is a business service not intended for children under 16. We don't knowingly collect data from children.


Contact Us


Privacy Questions

Email: privacy@stageholder.com


Data Protection Officer

For Enterprise customers, contact your account manager for DPO information.


Address

[Company Address]

Attn: Privacy Team


Policy Updates


We may update this policy periodically. We'll notify you of significant changes via:

  • Email notification
  • In-app announcement
  • Website notice


Last updated: [Date]



Full Privacy Policy: stageholder.com/privacy


Updated on: 24/12/2025

Was this article helpful?

Share your feedback

Cancel

Thank you!