Privacy Policy for SigmaTag

Last Updated: March 6, 2026

SigmaTag ("we", "our", "us") provides digital tools for creating and sharing fabric quality reports and EU Digital Product Passport (DPP) compliance data. We are committed to protecting your privacy and handling your data responsibly. This Privacy Policy explains what information we collect, how we use it, and the rights you have over your data.

1. Information We Collect

1.1 Account Information

  • Name, email address, phone number
  • Business name, address, GST (optional)
  • Login credentials

1.2 Usage Data

  • Reports you create (GSM, width, thread count, images, notes)
  • Shipment links you share
  • Buyer views and activity logs

1.3 Device & Technical Information

  • IP address, browser type, device model
  • Cookies and session data

1.4 Media & Images

  • Photos uploaded for QC verification
  • Timestamp and metadata of images
  • AI-based 'fingerprint' metadata for fabric weave authentication

1.5 DPP Specific Data

  • Material provenance (Tier-1 to Tier-4 supply chain data)
  • Carbon footprint and sustainability ESG metrics
  • GS1 Digital Link identifiers and machine-readable product IDs

2. How We Use Your Information

We use collected information for:

  • Creating and storing QC reports
  • Generating shareable shipment links
  • Analytics and insights (e.g., rejection trends)
  • Account creation and authentication
  • Customer support and communication
  • Improving product features and performance
  • We never sell your data.

3. Sharing of Information

We may share information only in these scenarios:

  • With Buyers: When you share a report or shipment link
  • With Regulators: Technical documentation shared with EU Market Surveillance Authorities as required by DPP regulations
  • With Service Providers: Cloud hosting (Firebase, Google Cloud)
  • Legal Requirements: If required by law, court order, or government request
  • We do not share or sell data to advertisers or third‑party marketers.

4. Data Storage & Security

  • Data is stored securely on Google Cloud & Firebase
  • All communication is encrypted (HTTPS)
  • Role‑based access for internal systems
  • Regular backups and monitoring

5. Your Rights

You can request:

  • Access to your data
  • Correction of incorrect information
  • Deletion of your account
  • Export of your reports or uploaded files
  • Email requests to support@sigmatag.com.

6. Cookies

SigmaTag uses cookies for:

  • Login sessions
  • Dashboard analytics
  • Improving user experience
  • You may disable cookies in your browser settings.

7. Data Retention

  • Account data until you delete your account
  • Reports and images as long as your account is active
  • DPP Data: Legally required 10-year persistence for all issued Digital Product Passports as per EU ESPR 2024/1781
  • Logs for security purposes for up to 90 days
  • You may request permanent deletion of non-regulatory data.

8. Children’s Privacy

SigmaTag is not intended for users under 18. We do not knowingly collect children’s data.

9. Changes to This Policy

We may update this policy from time to time. Continued use constitutes acceptance.

10. Contact Us

For questions or concerns:

  • Email: support@sigmatag.com
  • Website: https://sigmatag.com