Stratto Technologies, Inc.
gostratto.com
Contact: privacy@meridiae.com
| Category | Data collected | Source |
|---|---|---|
| Identity | First name, last name, job title | Beta application form |
| Contact | Business email address | Beta application form |
| Organisation | Company name, industry sector | Beta application form |
| Technical | IP address, browser user agent, device type | Automatically — form submission & CloudFront logs |
| Usage | Pages visited, brief download events, email open/click | Automatically — CloudFront & email delivery system |
| Communications | Survey responses, email replies | You provide directly |
We do not collect payment card details, government identification, or sensitive personal categories as defined by GDPR Article 9.
| Purpose | Legal basis (GDPR) |
|---|---|
| Evaluate and process Beta applications | Legitimate interest (Art. 6(1)(f)) |
| Deliver intelligence briefs to approved subscribers | Performance of contract / legitimate interest |
| Send service communications (delivery notifications, surveys) | Legitimate interest |
| Prevent spam and abuse on our forms | Legitimate interest |
| Analyse visitor traffic and usage patterns | Legitimate interest |
| Comply with legal obligations | Legal obligation (Art. 6(1)(c)) |
We do not use your data for automated profiling that produces legal or similarly significant effects, nor for advertising targeting outside of our own service communications.
We use the following service providers who process personal data on our behalf. All are bound by data processing agreements and operate under appropriate safeguards.
| Processor | Purpose | Location |
|---|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure — subscriber data storage, email delivery (SES), content delivery (CloudFront), form processing | US (us-east-1) |
| Google (reCAPTCHA) | Bot detection on forms — receives IP address and browser signals from form submitters | US / EU |
Our intelligence production pipeline uses additional AI infrastructure that operates exclusively on non-personal data (maritime intelligence content, not subscriber information). No subscriber personal data is transmitted to or processed by these systems.
We do not sell, rent, or share your personal data with any third party for their own marketing purposes.
Meridiae is operated from the United States. If you are located in the EU/EEA, your personal data is transferred to and processed in the United States. These transfers are made under Standard Contractual Clauses (SCCs) or other appropriate GDPR safeguards as applicable to our service providers.
| Data type | Retention period |
|---|---|
| Beta subscriber records | Duration of subscription + 2 years |
| Form submission logs | 90 days |
| CloudFront access logs (IP, path, agent) | 90 days |
| Email delivery records | 12 months |
| Survey responses | Until service is discontinued or you request deletion |
If you are located in the EU/EEA, you have the following rights regarding your personal data:
To exercise any of these rights, contact privacy@meridiae.com. We will respond within 30 days.
We use cookies and similar tracking technologies on meridiae.com. For full details, see our Cookie Policy.
We implement appropriate technical and organisational measures to protect your personal data, including:
No method of transmission or storage is 100% secure. We cannot guarantee absolute security but commit to promptly notifying affected users of any breach that presents a material risk to their rights and freedoms.
Meridiae is a professional B2B service not directed at individuals under 18. We do not knowingly collect personal data from anyone under 18 years of age.
We may update this Privacy Policy from time to time. We will notify subscribers of material changes via email. The effective date at the top of this page indicates the most recent revision.
Privacy enquiries: privacy@meridiae.com
Stratto Technologies, Inc. — gostratto.com