Home/Privacy Policy
Privacy Policy

Privacy Policy

Last updated: April 26, 2026

This Privacy Policy explains how Scrolller ("we," "us," or "our") collects, uses, and protects information when you visit scrolller.io or engage our digital marketing services.

The short version

  • • We collect contact details when you fill out a form, book a call, or subscribe to our newsletter.
  • • We use standard analytics (Google Analytics 4) to understand how people use our site.
  • • We don't sell your personal information to anyone.
  • • You have rights — including the right to access, delete, or correct your data. See Section 7.
  • • Questions? Email privacy@scrolller.io.

1. Who We Are

Scrolller is a digital marketing agency based in Beavercreek, Ohio, United States. We provide SEO, paid media, content marketing, web design, and related services to businesses across multiple industries.

For the purposes of this Privacy Policy, the data controller is:

Scrolller
2369 Spicer Dr
Beavercreek, OH 45431
United States
Email: privacy@scrolller.io
Phone: +1 (631) 401-2355

2. Information We Collect

2.1 Information You Provide Directly

When you submit a contact form, request a free audit, book a call, or subscribe to our newsletter, we collect:

  • Name
  • Email address
  • Phone number (when provided)
  • Company name and website
  • The content of any messages, questions, or descriptions of your business goals you share with us
  • Scheduling and meeting metadata (when you book a call via Calendly)

2.2 Information Collected Automatically

When you visit our website, we (or our third-party providers) automatically collect:

  • IP address and approximate geographic location
  • Browser type and version, operating system, and device information
  • Pages viewed, time spent on pages, and links clicked
  • Referring URL (the page you came from)
  • Cookies and similar tracking technologies (see Section 4)

2.3 Information from Clients During Engagements

When we work with you as a client, we may collect additional information necessary to deliver our services — including access credentials to your marketing platforms, business documents, performance data, and contact details for your team members. This information is governed by our Master Services Agreement and is treated as confidential.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to inquiries: When you contact us through a form or email, we use your information to respond to your questions and follow up about potential engagements.
  • To provide our services: If you become a client, we use your information to deliver the marketing services we've agreed to provide.
  • To send marketing communications: If you subscribe to our newsletter or opt in to marketing emails, we send you content, updates, and occasional offers. You can unsubscribe at any time.
  • To improve our website: We analyze usage patterns to understand which content is useful, which pages need improvement, and how visitors navigate our site.
  • To comply with legal obligations: We may use or disclose information to comply with applicable laws, respond to lawful requests, or protect our rights.
  • To prevent fraud and abuse: We use technical information to detect suspicious activity, prevent spam, and protect the integrity of our website.

4. Third-Party Services and Data Processors

We use the following third-party services to operate our website and business. Each of these processes some of your data on our behalf, subject to their own privacy policies:

  • Google Analytics 4 (Google LLC) — for website analytics. Data is processed in accordance with Google's Privacy Policy.
  • Google Search Console (Google LLC) — for search performance monitoring.
  • Calendly (Calendly LLC) — for scheduling consultation calls. Calendly's Privacy Policy.
  • Vercel (Vercel Inc.) — for website hosting and edge delivery. Vercel's Privacy Policy.
  • Email service providers — for transactional and marketing email delivery. The specific provider may change over time.

We do not authorize these providers to use your information for their own purposes beyond what is necessary to deliver the service to us. We have data processing agreements in place where required by law.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to recognize your browser, remember your preferences, and analyze how our site is used. The cookies we use fall into three categories:

  • Essential cookies: Required for the site to function. These cannot be disabled.
  • Analytics cookies: Help us understand how visitors use the site (e.g., Google Analytics). These can be disabled through your browser or our cookie consent tool, where applicable.
  • Marketing cookies: If we run advertising campaigns, these may track conversions and visits referred from ads. These can also be disabled.

Most browsers allow you to control cookies through their settings. You can block or delete cookies, though doing so may affect your experience on our site. For more information about managing cookies, visit allaboutcookies.org.

6. Data Sharing and Disclosure

We do not sell your personal information. We share your information only in the following limited circumstances:

  • With service providers: Third-party vendors (listed in Section 4) who help us operate our website and business. They are contractually obligated to use your information only as directed by us.
  • For legal reasons: When required by law, subpoena, court order, or to protect our legal rights, prevent fraud, or address security or technical issues.
  • In a business transfer: If Scrolller is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership and your choices.
  • With your consent: When you have given us explicit permission to share your information for a specific purpose (e.g., featuring your business in a case study).

7. Your Rights

7.1 Rights for All Users

Regardless of where you live, you have the right to:

  • Request access to the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your information (subject to legal exceptions)
  • Unsubscribe from marketing emails at any time using the unsubscribe link in those emails

To exercise these rights, email us at privacy@scrolller.io. We will respond within 30 days.

7.2 California Residents (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (as amended by the California Privacy Rights Act) gives you additional rights:

  • Right to know: What personal information we collect, use, disclose, and (if applicable) sell.
  • Right to delete: Personal information we have collected from you, subject to certain exceptions.
  • Right to correct: Inaccurate personal information.
  • Right to opt-out of sale or sharing: We do not sell your personal information. We do not share it for cross-context behavioral advertising in the CCPA-defined sense.
  • Right to limit use of sensitive personal information: We do not use sensitive personal information for purposes that would trigger this right.
  • Right to non-discrimination: We will not discriminate against you for exercising any of these rights.

To exercise any CCPA right, email privacy@scrolller.io or call +1 (631) 401-2355. You may designate an authorized agent to make a request on your behalf; we will require verification of the agent's authority.

7.3 EU/UK Residents (GDPR/UK GDPR)

Although Scrolller is based in the United States and primarily serves US clients, if you are located in the European Union, European Economic Area, or United Kingdom, the General Data Protection Regulation gives you the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time
  • Right to lodge a complaint with a supervisory authority

Our legal bases for processing personal information under GDPR are: (a) your consent, (b) the necessity of processing for performance of a contract, (c) compliance with legal obligations, and (d) our legitimate interests in operating and improving our business, where those interests are not overridden by your rights.

8. Data Retention

We retain personal information only as long as needed for the purposes described in this policy or as required by law:

  • Contact form submissions: Up to 24 months from last contact, then deleted unless you become a client.
  • Newsletter subscriptions: Until you unsubscribe.
  • Client records: For the duration of the engagement plus seven years afterward, to comply with tax, accounting, and contract record-keeping requirements.
  • Analytics data: Per Google Analytics 4 default retention settings (currently 14 months).
  • Cookies: Per the expiration set on each cookie. Most expire within 12–24 months or when you close your browser.

9. Data Security

We use commercially reasonable technical and organizational measures to protect the personal information we collect, including encryption in transit (HTTPS/TLS), access controls limiting who on our team can access your information, and reputable third-party service providers with their own security programs.

No system is 100% secure, however, and we cannot guarantee absolute security of information transmitted over the internet. If we ever experience a data breach affecting your information, we will notify you in accordance with applicable law.

10. International Data Transfers

We are based in the United States, and our service providers may store and process data in the United States and other countries. If you are located outside the United States, your information will be transferred to and processed in the US.

For visitors from the EU, EEA, or UK: where we transfer personal data internationally, we rely on appropriate safeguards, including Standard Contractual Clauses approved by the European Commission, where applicable.

11. Children's Privacy

Our website and services are not directed to children under the age of 13 (or 16 in the EU/EEA/UK). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will delete that information. If you believe we may have inadvertently collected information from a child, please contact us at privacy@scrolller.io.

12. "Do Not Track" Signals

Some browsers send a "Do Not Track" signal to websites you visit. There is currently no industry consensus on how to interpret this signal, and our website does not respond to it. However, you can control cookies and tracking through your browser settings as described in Section 5.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, provide additional notice (such as a banner on our website or an email to subscribers).

Your continued use of our website and services after changes are posted constitutes your acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy, want to exercise any of your rights, or have concerns about how we handle your information, please contact us:

Scrolller
Privacy Inquiries
2369 Spicer Dr
Beavercreek, OH 45431
United States

Email: privacy@scrolller.io
Phone: +1 (631) 401-2355

We will respond to all reasonable requests within 30 days, or sooner if required by applicable law.