Privacy Policy

Last updated: April 2026.

Sitio Labs (“Sitio”, “we”, “us”) operates this website. This policy describes the limited data we collect, how we use it, and your rights under the GDPR (EU/EEA), the DPDPA, 2023 (India), and the CPRA (California).

1. Data we collect

• Form data: When you contact us, book a discovery call, or join our newsletter, we collect the information you submit (name, email, company, project brief).
• Booking data: When you book a call, we use Cal.com as our scheduling provider; calendar metadata (your selected slot, your timezone) is processed through Cal.
• Email delivery: Confirmation and notification emails are sent through Resend.
• Privacy-first analytics: We use Plausible Analytics, which is cookieless and does not track individuals. Aggregate, anonymous metrics only.

2. What we do with it

We use form data only to reply to you, schedule meetings, and (with explicit opt-in) send our studio newsletter. We do not sell, rent, or share your data with third parties for marketing purposes.

3. Cookies

We do not set advertising or tracking cookies. We do not display a cookie banner because we do not use cookie-based tracking. The only cookies our application sets are essential first-party cookies needed for your session (e.g. CSRF protection on form submissions).

4. Retention

Inquiry and booking data is retained for 36 months for project history and accounting purposes, then deleted. Newsletter data is retained until you unsubscribe.

5. Your rights

You may request access to, correction of, or deletion of your data at any time. Email [email protected]; we will respond within 30 days.

6. Data location

Form data is stored on Vercel and Resend infrastructure, which may be located outside India. By submitting forms you consent to this transfer; we use providers with GDPR-compliant Data Processing Agreements.

7. Contact

For privacy questions or requests, email [email protected]. The data fiduciary under the DPDPA is Sitio Labs, Mumbai, India.