Stariage (“we,” “us,” “our”) is committed to protecting the privacy, security, and confidentiality of personal and organizational information entrusted to us. This Privacy Policy explains how we collect, process, store, secure, and use data in accordance with GDPR, SOX, industry best practices, and SAP partner-level standards for secure HR, payroll, and system consulting environments.

We operate as an independent consulting company and are not affiliated with, endorsed, sponsored, or certified by SAP SE. SAP, SuccessFactors, and SAP-related products are trademarks or registered trademarks of SAP SE in Germany and other countries.

 

 Scope of This Privacy Policy

​

This policy applies to all personal and business information collected through:

• Our website and webforms

• Email communications

• Professional consulting engagements

• HRIS/Payroll data shared for advisory or configuration support

• Diagnostic documents, configuration exports, test files, and integration materials

• Any systems or tools used to deliver consulting services

This policy applies to all clients, visitors, employees, contractors, and individuals whose data is processed by Stariage.

​

 Data We Collect

​

We may collect the following categories of data:

​

A. Contact & Business Information

​

• Name, email address, phone number

• Company name, job role, department

• Billing or contractual information

B. Project & Configuration Data

​

• SAP SuccessFactors configuration details

• Foundation objects, MDF definitions, HRIS metadata

• Integration mappings and technical documentation

​

C. Personal Data Shared by Clients (GDPR Category)

​

When supporting SuccessFactors, Payroll, or HR systems, clients may provide:

• Employee IDs

• Names, emails, job information

• Compensation or pay-related information

• Organizational data

• Workflow or approval role details

We do NOT collect or request more personal data than necessary.

​

D. Website & Technical Data

​

• IP address, browser type, device identifiers

• Analytics, traffic logs, cookies

• Session tracking (non-identifying)

​

E. Financial Data

​

• Only as required for invoicing

• Processed through secure third-party systems

We do not store or process credit card details directly.

​

 3. Legal Basis Under GDPR

​

We process personal data based on:

• Contractual necessity (to deliver consulting services)

• Legitimate business interest (support, communication, improvement)

• Legal compliance (SOX, audit controls, tax, security)

• Consent (website forms or voluntary submissions)

Clients remain data controllers.
Stariage acts as a data processor only for the purposes of consulting.

​

4. How We Use Your Information

​

Your information is used to:

• Provide SAP SuccessFactors, HRIS, Payroll, and technical consulting

• Respond to inquiries and manage client engagements

• Deliver configuration, troubleshooting, and support

• Generate documentation, mappings, and migration support

• Improve service quality and maintain audit trails

• Comply with GDPR, SOX, and client governance

• Manage billing, invoicing, and contractual obligations

We do not sell, market, or share personal data with third parties.

​

5. Data Sharing and Disclosure

​

We never disclose personal data to external parties unless:

1. Required by law or regulation (GDPR, SOX, tax agencies).

2. Client-authorized in writing.

3. Necessary for secure third-party tools (e.g., email hosting, encrypted storage).

4. Required for contractual compliance.

All third-party systems must meet:

• GDPR standards

• Encryption requirements

• Strong access controls

• Zero-sharing policies

​

6. Data Security & Protection Measures

​

Stariage follows enterprise-grade security practices, including:

• End-to-end encryption (in transit and at rest)

• Role-based access controls

• Multi-factor authentication

• Secure communication channels

• Logging and traceability for SOX audits

• Strong password and credential policies

• No storage on unsecured personal devices

• Immediate revocation of access upon project completion

• Segregated storage of HR and payroll data

• Controlled retention and safe deletion procedures

We follow SAP-recommended practices for handling configuration and HR data.

 

 7. GDPR Rights for Data Subjects

​

You have the right to:

• Access your data

• Rectify inaccurate information

• Request deletion (right to be forgotten)

• Limit processing

• Object to processing

• Request data portability

• Withdraw consent at any time

To exercise these rights, contact@stariage.com

​

 8. Data Retention

​

We retain personal and project data only for:

• The duration of the engagement

• Mandatory retention under law (e.g., SOX)

• Client-specific contractual requirements

Client HR and payroll data is deleted securely:

• Immediately after engagement completion

• Upon written request

• According to retention policies agreed in the contract

We do not retain any HR, payroll, or confidential data beyond the required period.

​

9. Cookies & Web Tracking

We may use cookies for:

• Basic website functionality

• Analytics and performance monitoring

• Security

• Wix-based user session tracking

Users may disable cookies at any time through browser settings.

​

 10. International Data Transfers

​

If data is transferred outside the EU/EEA, we ensure compliance with:

• GDPR-approved Standard Contractual Clauses (SCCs)

• Secure encrypted channels

• Approved data residency requirements

• Proper contractual protections

We never send HR or payroll data to countries without adequate protections unless explicitly authorized.

 11. Children’s Privacy

Our services are not directed at minors.
We do not knowingly collect children’s data unless it is part of a client’s HRIS dataset under strict GDPR controls.

12. Third-Party Systems

We use secure third-party systems only for:

• Email

• File transfer

• Project collaboration

• Cloud-based documentation

All systems must meet:

• GDPR compliance

• Enterprise-grade security

• No unauthorized data sharing

13. Links to External Sites

Our website may contain external links.
We are not responsible for their content, privacy practices, or security.

14. Updates to This Policy

We may update this Privacy Policy to reflect legal, technical, or operational changes. All updates will be posted with a revised effective date.

15. Contact Information

For privacy concerns, GDPR requests, or compliance inquiries:

​

Stariage

Email: contact@stariage.com
Location: 3333 Preston Road STE 300,

Frisco, Texas 75034

 

 SAP Trademark & Non-Affiliation Disclaimer (Required for SAP Partner Websites)

​

Stariage is an independent consulting provider and is not affiliated with, endorsed by, sponsored by, or certified by SAP SE. SAP, SAP SuccessFactors, and all SAP product names are trademarks or registered trademarks of SAP.