Privacy Policy

Reputeasy has great respect for the privacy of Users.

The data that may be communicated through the Site will be treated with the utmost care and with all the tools necessary to ensure their security, in full compliance with current legislation placed to protect the confidentiality of data. We wish to inform you that the "European Regulation 2016/679 on the Protection of Individuals with regard to the Processing of Personal Data and on the free movement of such data" (henceforth "Regulation" or "GDPR") provides for the protection of individuals with regard to the processing of data of a personal nature as a fundamental right. Therefore, pursuant to Article 13 of the GDPR, we would like to inform you of the following.

1. What is Reputeasy and how it works

Reputeasy offers a software platform, accessible via its website, which allows customers to:

a) Centrally manage end customer reviews, selecting a carousel of the best reviews for their landing pages;

b) Communicate actively with end customers to request reviews of venues and/or products/services;

c) Monitor review progress and scores, aggregated across various service providers. Under GDPR Regulations, Reputeasy acts as:

- Data Controller for data of Users who own businesses and/or conduct business activities ("Merchants") and browsing data, specifically those referred to in points a) and b) of Article 2 of this Policy.

- Processor for end customer data (those reviewing the Merchant's business), provided by Merchants in the context of requesting, creating, and organizing reviews. This processing is governed by the "Data Processor Addendum" under Article 28 of the Regulations. The Addendum is part of the contractual relationship between Reputeasy and the Merchant, along with this notice and the terms and conditions. Reputeasy does not use Merchant-provided data for its own purposes, such as marketing, market research, communication to third parties, or dissemination. Merchants must ensure that end customers are adequately informed about their data being processed by external processors, particularly by Reputeasy.

2. Glossary

"Addendum" is the document that governs the Merchant-Reputeasy relationship regarding privacy.

"Personal Data" refers to any information about an identifiable person, including identifiers like names, identification numbers, location data, online identifiers, or physical, physiological, genetic, mental, economic, cultural, or social characteristics.

"Processor" is the entity that processes personal data on behalf of the Controller.

"Controller" is the entity determining the purposes, means, and instruments of personal data processing, including security measures.

"User(s)" and/or "Customer(s)" "Data Subject(s)" are individuals visiting and using the Reputeasy website and service, who are the subjects of the Personal Data.

3. Categories of data

The Controller directly collects Personal Data and other information from Users during the online registration process on www.Reputeasy.com to provide requested services. This may include contact details and data necessary for payment.

Additionally, the site automatically collects data inherent to internet protocol use, and Users may voluntarily provide data via emails or comments. Reputeasy processes Merchant-provided data as a Processor, as per the Addendum. The site uses cookies and incorporates social media plug-ins/buttons for content sharing, with specific privacy policies applicable to these plug-ins.

4. Source of Personal data

Personal data is collected directly from the Data Subject. End-customer data are uploaded by Merchants.

5. Personal and legal basis of data processing

Users' data processing serves various purposes, including site registration and access, payment processing, communication with business partners/third parties, newsletters, direct marketing, service maintenance and improvement, detecting/preventing fraud, compliance with legal obligations, and improving web browsing experience. The legal basis for these purposes includes contractual fulfilment, User consent, the legitimate interest of the Owner, and legal obligations.

6. Data recipients

Users' data may be disclosed to partners, consulting companies, private companies, technical service providers, hosting providers, IT companies, and communication agencies, relevant to the stated processing purposes.

7. Data transfer to a third country

Some data may be shared with services outside the European Union, particularly through social plug-ins and Google Analytics. This transfer is regulated by EU Regulation 2016/679, Article 45.

8. Period of conservation

Data storage follows the principle of limitation, with periodic verification of the relevance of stored data to their collection purposes. Data are processed according to the time necessary for specific purposes or legal regulations.

9. Rights of the data subject

Data Subjects can request access, rectification, erasure, or restriction of their data, object to processing, request data portability, and revoke consent. Complaints can be lodged with a supervisory authority. Requests should be sent to hello@reputeasy.com.

10. Data processing methods

Data will be processed in compliance with regulations and confidentiality obligations, using computer and paper media, among other suitable means, in accordance with adequate security measures.

11. Final notes and updating

This policy applies only to the Reputeasy website and is subject to change with new legislation. Users are encouraged to regularly check the Privacy Policy for updates.