Scorchsoft Ltd – Privacy Policy
Last updated: 06/12/2025
Scorchsoft Ltd (“we”, “our”, “us”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share information about visitors to our website, our clients, and users who interact with our applications and integrations – including third-party platform authorisations such as LinkedIn OAuth.
By using our website, products, or services, you agree to the terms of this policy.
1. Who We Are
Scorchsoft Ltd
Registered in England & Wales
Website: https://www.scorchsoft.com
Email: [email protected]
We specialise in the development of bespoke web and mobile applications, SaaS platforms, AI-powered systems, and integrations with external APIs (including LinkedIn).
We act as a Data Controller for information we collect directly, and as a Data Processor when processing information on behalf of our clients.
2. Information We Collect
2.1 Information You Provide Directly
- Name and contact details
- Organisation details
- Project or enquiry information
- Email address and communication content
- Account details for services you use with us
2.2 Automatically Collected Information
When you visit our website, we may automatically collect:
- IP address
- Browser type and device information
- Pages visited and interaction data
- Cookies and tracking technologies (see Section 10)
2.3 Information from Third-Party Integrations (e.g. LinkedIn OAuth)
If you connect a third-party account (such as LinkedIn) to one of our applications, we may receive:
- Public profile information
- LinkedIn Page or organisational identifiers
- Permissions you have granted (e.g. ability to publish posts on your behalf)
- Access tokens required to perform the functionality you approved
We only access the minimum data required to perform the functionality you explicitly authorise. We do not collect or store your LinkedIn password.
3. How We Use Your Information
3.1 Providing Our Services
- Responding to enquiries
- Delivering software development, hosting, and support services
- Managing accounts, projects, or user logins
- Operating any applications or integrations you choose to use
3.2 Third-Party Integrations (including LinkedIn)
If you authorise an application built by Scorchsoft to access LinkedIn on your behalf, we may use your data to:
- Post content to LinkedIn (e.g. text, images, or media)
- Manage LinkedIn Page or Profile posting actions
- Authenticate your identity using OAuth
- Maintain tokens required for automated or scheduled posts
We do not post anything without your explicit action or prior authorisation.
3.3 Business Operations
- Improving our website and services
- Customer service and communication
- Security monitoring
- Legal and regulatory compliance
4. Legal Basis for Processing
Under UK GDPR and EU GDPR, we rely on the following legal bases:
- Contract – processing necessary to provide our services
- Consent – especially for third-party platform authorisation (e.g. LinkedIn OAuth)
- Legitimate Interest – analytics, security, and service improvement
- Legal Obligation – where processing is required by law
5. How We Store & Protect Your Data
We store personal data securely using:
- Encrypted servers and secure hosting environments
- Access controls and authentication
- Routine security monitoring
We retain your information only as long as needed to fulfil our business purposes or legal obligations.
6. Sharing Your Information
We do not sell or rent personal data.
We may share data with:
- Service providers (hosting, analytics, email, cloud platforms)
- Third-party platforms you explicitly connect (e.g. LinkedIn)
- Legal authorities if required by law
Where data is transferred outside the UK/EU, we ensure appropriate safeguards, including Standard Contractual Clauses or equivalent mechanisms.
7. Your Rights
You have the right to:
- Access your data
- Request correction or deletion
- Withdraw consent at any time
- Object to certain types of processing
- Request data portability
- Lodge a complaint with the Information Commissioner’s Office (ICO)
To exercise any rights, contact us at [email protected].
8. LinkedIn API & OAuth-Specific Information
When you authenticate with LinkedIn via one of our applications:
- You explicitly grant permissions (such as posting on your behalf).
- You may revoke access at any time through your LinkedIn account settings.
- We only perform actions that you initiate or configure.
- We store OAuth access tokens securely and never access your password.
- We do not access private LinkedIn content unless you grant permissions.
If you revoke permissions, our application loses access immediately.
9. Data Processed on Behalf of Clients
For applications we build for customers, Scorchsoft operates under Data Processor terms:
- We only process data according to client instructions.
- Clients are responsible for their own end-user consent and data policies.
- We provide hosting, development, or data handling as required by the contract.
10. Cookies & Tracking
We may use cookies and similar technologies for:
- Website performance and functionality
- Analytics (e.g. understanding how visitors use our site)
- Session management
- Marketing and advertising (where applicable and subject to consent)
You may control cookies through your browser settings. Some features of the site may not function correctly if certain cookies are disabled.
11. Children’s Privacy
Our services are not intended for individuals under 16 years of age. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us so we can remove it.
12. Changes to This Policy
We may update this Privacy Policy from time to time. The latest version will always be available on this page and will supersede any previous versions.
13. Contact Us
If you have any questions about this Privacy Policy or how we process data, please contact:
Email: [email protected]
Website: https://www.scorchsoft.com
