Privacy Policy
Effective Date: 22/02/2025
Last Updated: 22/05/2025
At Review Raiven, we take your privacy seriously. This policy explains how we collect, process, and protect your personal data in compliance with UK GDPR and the Data Protection Act 2018.
1. Information We Collect
We may collect and process the following data:
Identity & Contact Data – Name, business details, email, and phone number when you sign up or contact us.
Usage Data – IP address, browser type, device data, and website interactions.
Customer Review Data – Review requests, feedback, and engagement with our platform.
Marketing & Communication Preferences – Your opt-in status for promotional materials.
2. How We Use Your Information
We process your data to:
Provide and enhance our services.
Automate and track review requests.
Respond to customer inquiries and support requests.
Improve website functionality and user experience.
Send marketing communications (only with your consent).
3. Legal Basis for Processing
Under UK GDPR, our processing relies on:
Consent – When you sign up for marketing emails.
Legitimate Interest – To improve services, prevent fraud, and enhance security.
Contractual Necessity – To deliver services you've subscribed to.
Legal Obligation – When required by law.
4. Third-Party Services & Integrations
We may share your data with trusted third parties, such as:
Payment Processors – Secure transaction handling (e.g., Stripe, PayPal).
CRM & Email Platforms – Customer communications (e.g., Mailchimp, HubSpot).
Analytics Providers – Website traffic analysis (e.g., Google Analytics).
All third-party services comply with UK GDPR and process data securely on our behalf.
5. Email Marketing & Communications
If you opt in to marketing, we may send updates, promotions, and industry insights via email.
You can withdraw consent at any time by clicking "Unsubscribe" in any email or contacting us directly.
We will never sell your email address or personal information to third parties.
Marketing emails comply with the Privacy and Electronic Communications Regulations (PECR).
6. Data Security Measures
We use industry-standard security protocols, including:
Encryption – Secure data storage and transmission.
Access Control – Restricted access to sensitive data.
Regular Audits – Compliance and security checks.
7. Data Breach Procedures
If a data breach occurs:
We will assess the impact and secure affected systems.
If the breach poses a risk to your rights, we will notify you and the ICO within 72 hours.
We will implement corrective measures to prevent future breaches.
8. International Data Transfers
If we transfer data outside the UK, we ensure:
UK-approved Standard Contractual Clauses (SCCs).
Data protection agreements with third-party vendors.
Encryption and strict access controls.
9. Data Retention Policy
We only retain data for as long as necessary:
Account & Service Data – Up to 6 years for legal compliance.
Marketing Data – Until you opt out.
Analytics Data – Retained for 12-24 months for performance analysis.
10. Your Rights Under UK GDPR
You have the right to:
Access – Request a copy of your data.
Rectification – Correct inaccuracies.
Erasure ("Right to be Forgotten") – Request deletion.
Objection – Stop processing based on legitimate interest.
Data Portability – Receive data in a structured format.
To exercise your rights, contact us at [email protected]
.
11. Cookies & Tracking Technologies
We use cookies for functionality, analytics, and marketing. You can manage cookie settings in your browser.
12. Legal Disclaimer
While we take all reasonable measures to protect your data, no system is 100% secure. By using our services, you acknowledge that any data transmission is at your own risk
.
13. Policy Updates
We may update this Privacy Policy. Any changes will be posted on this page with the updated date.
14. Contact Us
For privacy-related inquiries, contact:
📧 Email: [email protected]
If unsatisfied with our response, you can lodge a complaint with the Information Commissioner's Office (ICO) at www.ico.org.uk
