top of page

Privacy Policy for RepGro by
Cardiff Media Ltd

Privacy Policy of Repgro

Introduction

Dear Interested Party, Repgro, operated by Cardiff Media Ltd., has great respect for the privacy of Users. The data communicated through the Site will be treated with the utmost care and necessary tools to ensure their security, in compliance with current legislation to protect the confidentiality of data. The "European Regulation 2016/679 on the Protection of Individuals with regard to the Processing of Personal Data and on the free movement of such data" (GDPR) provides for the protection of individuals with regard to data processing. Pursuant to Article 13 of the GDPR, we inform you of the following:

1. What is Repgro and How It Works Repgro offers a software platform, accessible through its website, allowing customers to: a) Manage customer reviews and display selected reviews on landing pages. b) Communicate with customers to request reviews of venues or purchased products/services. c) Monitor the progress of reviews and scores aggregated among service providers.

Repgro acts as:

  • Data Controller for the data of Users who own businesses and browsing data, as detailed in points a) and b) of Article 2 of this policy.

  • Processor for the data of end customers (reviewers) provided by Merchants. This processing is governed by the "Data Processor Addendum" pursuant to Article 28 of the GDPR, integral to the contractual relationship between Repgro and the Merchant.

Repgro does not use data provided by Merchants for its own purposes such as marketing or communication to third parties. Merchants ensure end customers are informed that their data will be processed by external data processors, including Repgro.

2. Glossary

  • Addendum: Document governing the privacy relationship between the Merchant and Repgro.

  • Personal Data: Any information concerning an identified or identifiable natural person.

  • Repgro: Cardiff Media Ltd, 41 Harlequin Drive, Newport, NP20 5GJ, Email: info@repgro.co.uk

  • Processor: Entity processing personal data on behalf of the Controller.

  • Controller: Entity determining the purposes and means of processing personal data.

  • User(s)/Customer(s)/Data Subject(s): Individuals visiting the website and using the service.

3. Categories of Data Repgro collects personal data and other information from Users as part of the registration processes, including: a. Data provided during registration and for payment: Includes name, contact details, and billing information. b. Automatically collected data: Includes IP addresses, browser type, and other technical data. c. Data provided voluntarily by the User: Includes data provided through emails or forms. d. Data processed as Data Processors: Data provided by Merchants for review management. e. Cookies: Used for site functionality and user experience. f. Plug-ins: Social media plug-ins for content sharing.

4. Source of Personal Data Personal data is collected directly from Data Subjects or uploaded by Merchants.

5. Purpose of Data Processing and Legal Basis Repgro processes data for various purposes including:

  1. Registration and access to services.

  2. Payment processing.

  3. Storage of payment data (with User consent).

  4. Communication to business partners/third parties (with User consent).

  5. Newsletter (with User consent).

  6. Direct marketing communications.

  7. Service maintenance and improvement.

  8. Fraud detection and prevention.

  9. Compliance with legal obligations.

6. Data Recipients User data may be disclosed to partners, consulting companies, private companies, third-party technical service providers, hosting providers, IT companies, and communications agencies. Data processors are appointed according to Article 28 GDPR.

7. Data Transfer to a Third Country Data may be shared with services outside the EU, such as social plug-ins and Google Analytics, authorized by Article 45, paragraph 1 of the GDPR.

8. Period of Conservation Data is periodically reviewed for obsolescence. Automatically collected data is kept for statistical and security purposes. Data voluntarily provided is kept until the purpose is achieved or as required by law.

9. Rights of the Data Subject Data Subjects can request access, rectification, erasure, restriction, objection to processing, data portability, and revocation of consent by contacting info@repgro.co.uk. Complaints can be lodged with a supervisory authority.

10. Data Processing Methods User data will be processed in compliance with regulations and confidentiality obligations using computer tools, paper media, and other suitable media, ensuring adequate security measures as per Article 5 par. 1 letter F of the GDPR.

11. Final Notes and Way of Updating This policy is provided for the Repgro website and not other websites accessed through links. It may change due to new legislation, so Users should periodically check for updates.

bottom of page