Privacy policy.

1. Who we are

Data Quality Sense ("DQS") is a product of CloudInfinity, a sole proprietorship (jednoosobowa działalność gospodarcza) registered in Poland and trading under the brand Tucario ("we", "us").

For the purposes of the GDPR, CloudInfinity is the data controller of the personal data collected through this marketing website. For the DQS managed package installed in your Salesforce org, Salesforce is the processor and you, the org owner, are the controller — we are neither, because we never receive the data (see Section 2.1).

For privacy questions, data access requests, or to exercise any of the rights listed below, write to [email protected].

2. What we collect, and where

DQS has two components. They collect different things, for very different reasons.

2.1 The DQS Salesforce app

DQS is a 100% Salesforce-native managed package. Every line of code — Apex, Lightning Web Components, Aura, Flow — runs inside your own Salesforce org. The package has no external HTTP callouts, no Named Credentials, no Remote Site Settings, and no analytics or telemetry of any kind. Your data never leaves your Salesforce boundary, because the app has no way to send it out.

The objects DQS creates in your org store only data quality metadata:

• Definitions and schedules (DQS_Definition__c, DQS_Batch_Schedule__c) — the rules you configure: which object, which fields, which capabilities.
• Scan results (DQS_Dimension_Result__c, DQS_Metric_Result__c, DQS_Field_Result__c) — aggregated scores and record IDs of offenders. PII field values are redacted to [REDACTED] before they are written to result rows or CSV exports.
• Error logs and audit trail (DQS_Error_Log__c, audit fields on definition records) — who triggered a scan and any failures that occurred.

You control how long any of this is kept via the built-in Data Retention settings (custom metadata types, configurable per dimension), and you can wipe it entirely by uninstalling the package. None of this data is ever transmitted to us.

2.2 This marketing website

The site you are reading is a static Astro build served from Cloudflare Pages. We offer a single first-party product-analytics tool — PostHog (EU Cloud) — and it only runs after you click "Accept analytics" in the consent banner. If you click "Reject", PostHog is never loaded and no analytics cookies are set. You can change your mind any time from the "Cookie preferences" section at the bottom of this page.

When enabled, PostHog is configured to the most privacy-friendly defaults it offers: pageviews and clicks are captured, IP addresses are masked, session recordings are disabled, anonymous visitors do not get a persistent person profile (person_profiles: 'identified_only'), and the "Do Not Track" browser signal is respected as an additional safeguard.

The site has no advertising tracker, no session replay, and no third-party tag manager. Besides the PostHog ph_* cookie (set only after you accept), the site stores a single dqs-analytics-consent value in your browser's localStorage to remember your consent choice, plus whatever Cloudflare Turnstile needs to prove you are not a bot on the forms below.

The site actively collects personal data in four places:

• Data quality assessment. The interactive assessment asks you to self-score your Salesforce data quality across a set of dimensions. At the end you are invited to enter an email to receive your personalised results. If you submit that email it is passed to a Cloudflare Pages Function, which forwards it to Maileroo (for the result email) and tags the contact in CampaignLark with product:dqs and source:assessment.
• Newsletter. If you subscribe on the newsletter page or elsewhere on the site, your email is submitted to a Pages Function and forwarded to CampaignLark with the single tag product:dqs. Every email includes a one-click unsubscribe link.
• Demo request. When you submit the demo form, your name, email, optional company name, and message are posted to our own Salesforce CRM via Web-to-Case. We use this to reply to you and schedule a demo. We do not enrich this data from third-party sources.
• Report a bug. The bug report form goes to the same Salesforce Web-to-Case endpoint with a DQS product tag. We use it to investigate the issue and reply to you.

Cloudflare keeps standard edge access logs (IP address, user agent, requested URL, timestamp) as part of delivering the site to you. Those logs are retained per Cloudflare's own policy and used by us only to investigate abuse and operational issues.

If you click "Book a Demo" or "Talk to a Founder", you are redirected to a Google Calendar appointment scheduling page. Anything you submit on that page is processed by Google under its own privacy policy; we only receive the resulting calendar invite.

3. Why we process this data (legal basis)

• Consent (Art. 6(1)(a) GDPR) — the newsletter and the assessment result email. You can withdraw consent any time by clicking unsubscribe or emailing us.
• Contract / pre-contract (Art. 6(1)(b) GDPR) — demo requests and bug reports. We need this data to reply to you and, if you go on to install DQS, to support the app.
• Legitimate interest (Art. 6(1)(f) GDPR) — Cloudflare edge access logs and Turnstile anti-bot checks, used solely for operational troubleshooting and abuse prevention.
• Consent (Art. 6(1)(a) GDPR and ePrivacy Art. 5(3)) — PostHog product analytics. We only load PostHog after you click "Accept" in the consent banner, and we stop capturing the moment you withdraw consent.
• Legal obligation (Art. 6(1)(c) GDPR) — if we ever issue an invoice relating to DQS (e.g. for a licensed deployment), that invoice data is retained for 5 years to meet Polish accounting law (Ustawa o rachunkowości, Art. 74).

4. Who else touches your data (sub-processors)

A sub-processor is a third party that processes your personal data on our behalf. Naming them here is a legal requirement under GDPR Art. 28 and also how we think it should work — if you want to trust us, you should know exactly who we trust.

Important: the list below applies to the marketing website only. The DQS Salesforce app has zero sub-processors, because it has no way to transmit data outside your Salesforce org (see Section 2.1).

This list is kept current. When we add a new sub-processor we update this page before they start processing your data.

5. International transfers

Some of the sub-processors above are located outside the European Economic Area. Where that is the case, we rely on the European Commission's Standard Contractual Clauses (SCCs) — Decision (EU) 2021/914 — as the transfer mechanism. The fourth column of the table above says which mechanism applies to each provider.

6. How long we keep your data (retention)

• Newsletter and assessment emails — retained in CampaignLark for as long as you remain subscribed. When you unsubscribe, the record is marked as unsubscribed and fully deleted within 30 days.
• Demo requests and bug reports — stored as Case records in our Salesforce CRM for as long as needed to support the conversation, then archived. You can ask us to delete them at any time.
• Invoice / accounting data — retained for 5 years after the transaction, as required by Polish accounting law.
• Cloudflare access logs — retained per Cloudflare's default retention policy and never exported by us for profiling.
• PostHog product analytics events — retained for up to 12 months then rolled up or deleted. The PostHog distinct_id cookie (ph_*) has a default lifetime of 365 days and you can clear it from your browser storage at any time.
• DQS app data in your Salesforce org — retained according to the Data Retention settings you configure inside DQS, and fully removed if you uninstall the package. We cannot delete this for you because we cannot see it.

7. Your rights under the GDPR

You have, at any time, the right to:

• Access (Art. 15) — ask for a copy of the personal data we hold on you.
• Rectification (Art. 16) — ask us to correct inaccurate data.
• Erasure (Art. 17, "right to be forgotten") — ask us to delete your data. Email [email protected] and we will action the request within 30 days.
• Restriction (Art. 18) — ask us to pause processing pending a dispute.
• Data portability (Art. 20) — ask us to export your full footprint on this website as a machine-readable file.
• Objection (Art. 21) — object to processing based on legitimate interest.
• Complaint — lodge a complaint with your local supervisory authority. In Poland that is the President of the Personal Data Protection Office (UODO).

8. Security

We take appropriate technical and organisational measures to protect your data. The big ones:

• All external traffic to this site and our Pages Functions is over TLS 1.2+.
• The DQS Salesforce app enforces Salesforce platform security: CRUD/FLS checks on every SOQL and DML operation (WITH USER_MODE), SOQL injection protection via String.escapeSingleQuotes on any dynamic query, permission-set gates on admin operations, and deletion validation on result records.
• PII field values are redacted ([REDACTED]) before being written into result rows or exported to CSV. The actual value never leaves the source field.
• The DQS package is reviewed by the Salesforce Code Analyzer on every release, and passes the Salesforce AppExchange security review as part of distribution.
• The marketing website's forms are rate-limited and gated by Cloudflare Turnstile to block automated abuse. No analytics SDK, session replay, or third-party tag manager runs on any part of the site.

9. Data breach notification

If a personal data breach occurs and it is likely to result in a risk to your rights and freedoms, we will notify the supervisory authority within 72 hours of becoming aware of it, as required by Art. 33 GDPR. Where the breach is likely to result in a high risk, we will also notify you directly without undue delay. Note that we cannot experience a breach of DQS app data because we do not have access to it — any breach at the app level would be a breach of your own Salesforce org, which is governed by your agreement with Salesforce.

10. Children

Data Quality Sense is a professional B2B tool for Salesforce administrators and data teams. It is not directed at anyone under 16 and we do not knowingly process data from children. If you believe a child has submitted personal data via this site, contact us and we will delete it.

11. Changes to this policy

If we change how we process your data in a material way, we update this page and the "Last updated" date above. For substantive changes that affect existing customers under signed agreements, we also notify the designated DPA contact and, where relevant, email registered account holders.

Cookie preferences

You can change your analytics choice at any time. Opting out stops PostHog from capturing new events and clears the PostHog ph_* cookie from this browser.

12. Contact

Privacy questions, data access, correction, erasure, or portability requests:

[email protected]
CloudInfinity (sole proprietorship)
Poland