Privacy Policy

Scout is an AI-powered business operations audit service. When you sign up, Scout guides you and your team through a structured interview about your workflows, tools, and business operations. Our AI agents analyse those responses and produce a personalised report with workflow diagrams, automation recommendations, ROI projections, and an implementation roadmap.

Account data. When you create an account (via email/password or Google OAuth) we store your email address, full name, and company name.

Business profile data. During onboarding you provide your industry, business name, your role, team size, approximate revenue range, the tools your business uses, and a description of your operational pain points. This data powers your audit.

Interview responses. Your answers to the CEO interview questions and your team members’ answers to their respective interview sessions are stored and processed to generate your report.

Team member data. When you invite team members to participate, we store their email addresses and their interview responses. By inviting them, you confirm you have their consent to share their email with us for this purpose.

Meeting booking data. If you book a strategy call, we store your preferred date, time, timezone, any notes you provide, and any additional attendee emails.

Payment data. We record whether your audit is paid or unpaid and any discount code applied. We do not store full card details on our servers.

Usage and session data. We store your audit progress, session state, and timestamps (sign-up date, last sign-in). We use auth cookies set by Supabase to keep you logged in. We do not run third-party analytics or advertising trackers on this platform.

We process your data to:

• Create and manage your account (contract performance)
• Run your audit — generating questions, processing interview answers, building diagrams and reports (contract performance)
• Send you transactional emails: team interview invitations, report-ready notifications, meeting confirmations (contract performance)
• Operate and improve the Scout platform (legitimate interest)
• Comply with legal obligations

We do not sell your data. We do not use your data for advertising.

To generate your audit report, your business description, interview responses, and workflow information are sent to the following AI providers:

• OpenAI — used to generate interview questions, analyse workflows, and produce report sections. OpenAI’s data processing is governed by their privacy policy.

Other infrastructure sub-processors we rely on:

• Supabase — database and authentication hosting. Your data is stored on Supabase servers.
• Vercel — application hosting and serverless functions.
• Google — OAuth login (if you choose to sign in with Google) and email delivery via Gmail SMTP.

We only share the minimum data required for each sub-processor to perform their function.

We use a single session cookie set by Supabase to keep you authenticated. This cookie is strictly necessary for the service to function — it is not used for tracking or advertising. You can delete it at any time by signing out or clearing your browser cookies, but doing so will end your session.

We retain your account data and audit data for as long as your account is active. If you request account deletion, we will delete your personal data within 30 days, except where we are required to retain it by law (for example, payment records).

Depending on your jurisdiction (including under GDPR for EU/EEA residents), you have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your data (“right to be forgotten”)
• Object to or restrict certain processing
• Request a portable copy of your data
• Withdraw consent where processing is based on consent

To exercise any of these rights, email sales@metadots.co. We will respond within 30 days.

All data is transmitted over HTTPS. Access to production data is restricted to authorised personnel. Authentication is handled by Supabase with row-level security policies. We do not log passwords, API keys, or payment credentials.

Scout is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, contact us and we will delete it promptly.

We may update this policy as the product evolves. If we make material changes we will notify you by email or by a notice on the platform. The “last updated” date at the top of this page reflects the most recent revision.

METADOTS (PRIVATE) LIMITED
Email: sales@metadots.co