Privacy Policy
This Privacy Policy describes how Outkast S.r.l. ("we", "Outkast") processes your personal data when you use the youdubstudio.com website (the "Site") and in particular when you submit an application through our form.
1. Data controller
The data controller is:
Outkast S.r.l.
Via Bono Cairoli 17, 20127 Milan (MI), Italy
VAT: IT13833230967
Email: [email protected]
For any privacy-related question or request, please write to [email protected].
2. What data we collect
When you fill out the application form on the Site we collect the following categories of personal data.
Identity and contact data
- First and last name
- Email address
- Phone number (optional)
Channel data
- Channel URL
- Publishing platform(s)
- Audience size (subscriber range)
- Original content language
- Topical niches
- Monthly publishing frequency
Business data
- Monthly revenue range
- Target dubbing languages
- Priority markets
- Past dubbing experience
- Project timeline
- Strategic answer (free-text on why your channel deserves a slot)
- Source of acquisition
Technical data
- Request IP address
- Browser user agent
- Country code derived from IP (used to serve the correct language)
Booking data
When you book a call on /book using the Cal.eu embed, our calendar provider (Cal.com Inc. via cal.eu) collects your name, email and chosen slot. See "Recipients" below.
3. Purposes and legal basis
| Purpose | Legal basis |
|---|---|
| Evaluate your application as a prospective client | Pre-contractual measures (Art. 6.1.b GDPR) |
| Contact you to discuss a possible engagement | Pre-contractual measures (Art. 6.1.b GDPR) |
| Keep a record of applications for future re-evaluation | Legitimate interest (Art. 6.1.f GDPR) |
| Serve the site in the right language via geo-IP | Legitimate interest (Art. 6.1.f GDPR) |
| Comply with legal obligations | Legal obligation (Art. 6.1.c GDPR) |
4. Retention period
We keep your application data for 24 months from the date of submission. This period lets us re-evaluate the application over time, since access criteria may evolve.
After 24 months data is automatically deleted, unless:
- you become our client, in which case a separate retention applies for accounting and contractual purposes (10 years from the end of the relationship, Italian Civil Code Art. 2220)
- you give explicit consent to extend the retention period
5. Recipients of the data
Your data is accessible to us and to a limited number of vendors that help us run the service. All are appointed as data processors under Art. 28 GDPR and bound by a Data Processing Agreement.
| Vendor | Service | Location | Non-EU transfer |
|---|---|---|---|
| Hetzner Online GmbH | Site and database hosting | Germany | No |
| Cal.com Inc. (via cal.eu) | Discovery-call calendar booking | European Union (EU data residency) | No |
| Wise Europe SA | Payment services (only if you become a client) | Belgium | No |
We do not sell or transfer your data to third parties for marketing or profiling purposes. We do not use your data to train artificial-intelligence models.
6. Non-EU transfers
Currently all data is hosted within the European Union. If we activate services involving non-EU transfers in the future (for instance a US-based transactional email provider), we will update this policy and adopt the Standard Contractual Clauses (SCC) approved by the European Commission, plus any additional technical and organisational measures needed.
7. Your rights
As a data subject, under Articles 15–22 GDPR you have the right to:
- Access: obtain confirmation of the data we process and a copy of it
- Rectification: correct inaccurate or incomplete data
- Erasure ("right to be forgotten"): request deletion of your data
- Restriction: limit processing in certain cases
- Portability: receive your data in a structured, readable format
- Object: object to processing based on legitimate interest
- Withdraw consent: where processing is based on consent, withdraw it at any time
To exercise any of these rights, write to [email protected]. We will respond within 30 days of receiving the request (Art. 12.3 GDPR).
You also have the right to lodge a complaint with the Italian data-protection authority (www.garanteprivacy.it).
8. Data security
We adopt appropriate technical and organisational measures to protect your data: HTTPS-encrypted transmission, restricted access to authorised personnel, periodic encrypted backups, servers in ISO 27001-compliant datacenters.
9. Changes to this policy
We may update this Privacy Policy. The last revision date is shown at the top of the document. For substantive changes we will notify active clients by email or post a notice on the Site.