Privacy Policy

Effective date: January 5, 2026

This Privacy Policy explains how REGREP (“REGREP”, “we”, “us”, “our”) collects, uses, shares, and protects personal data when you visit our website, use our services, or otherwise interact with us.

1. Who We Are

REGREP is the data controller for personal data processed in connection with our website and business operations (for example, marketing enquiries, contact requests, and account administration). Where we process personal data on behalf of customers within the REGREP platform, we typically act as a data processor and processing is governed by the applicable Data Processing Agreement (DPA).

Controller details:
Legal name: Regtify Limited
Email: privacy@regrep.eu
DPO contact: dpo@regrep.eu

2. Personal Data We Collect

We may collect the following categories of personal data:

  • Contact details (e.g., name, email address, phone number, company, job title).
  • Account and user information (e.g., username, role, authentication identifiers, support-related communications).
  • Communications (e.g., messages sent via forms, email correspondence, meeting notes where shared with us).
  • Usage and device data (e.g., IP address, browser type, pages viewed, timestamps, referral URLs, approximate location derived from IP).
  • Cookies and similar technologies (see our Cookie Policy for details).

We do not intentionally collect special category data (such as health data) unless you choose to provide it as part of a communication. Please avoid sending sensitive personal data unless necessary.

3. How We Use Personal Data

We use personal data for the following purposes:

  • Provide and operate the Services (e.g., user administration, authentication, access management).
  • Customer support (e.g., respond to enquiries, troubleshoot issues, provide assistance).
  • Security and fraud prevention (e.g., monitoring, access logs, abuse detection).
  • Product improvement (e.g., analytics, performance monitoring, service quality).
  • Sales and marketing (e.g., demo requests, newsletters where opted-in/where permitted).
  • Compliance and legal obligations (e.g., record-keeping, responding to lawful requests).

4. Legal Bases for Processing

Where GDPR applies, we process personal data under one or more of the following legal bases:

  • Contract (performance of a contract or steps prior to entering a contract).
  • Legitimate interests (e.g., securing our Services, improving our offering, responding to business enquiries).
  • Consent (e.g., where required for certain cookies or marketing communications).
  • Legal obligation (e.g., compliance with applicable laws and lawful requests).

5. How We Share Personal Data

We may share personal data with:

  • Service providers that help us operate our business (e.g., hosting, analytics, email delivery, CRM, customer support tools).
  • Professional advisors (e.g., legal, accounting, audit) where necessary.
  • Authorities where required by law or to protect rights, safety, and security.
  • Corporate transactions (e.g., merger, acquisition, financing, or sale of assets), subject to appropriate safeguards.

We do not sell personal data.

6. International Transfers

Your personal data may be processed in countries outside your country of residence. Where GDPR applies and data is transferred outside the European Economic Area (EEA), we use appropriate safeguards such as Standard Contractual Clauses or equivalent lawful mechanisms.

7. Data Retention

We retain personal data only as long as necessary for the purposes described in this Privacy Policy, including to comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary depending on the type of data and the context in which it is processed.

8. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. No method of transmission or storage is completely secure; however, we work to maintain safeguards appropriate to the nature of the data and associated risks.

9. Your Rights

Depending on your location and applicable law (including GDPR), you may have rights such as:

  • Access to your personal data
  • Correction of inaccurate or incomplete personal data
  • Deletion (erasure) of your personal data in certain circumstances
  • Restriction or objection to processing in certain circumstances
  • Data portability in certain circumstances
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with a supervisory authority

To exercise your rights, contact us using the details in the “Contact Us” section. We may need to verify your identity before responding.

10. Cookies and Similar Technologies

We use cookies and similar technologies to operate our website and improve user experience. For details and preferences, please review our Cookie Policy.

11. Children’s Privacy

Our website and Services are not directed to children, and we do not knowingly collect personal data from children.

12. Contact Us

For questions about this Privacy Policy or our processing of personal data, contact:

Email: privacy@regrep.eu
Address: Frankfurt am Main, Germany Bockenheimer Landstraße 17–19, 60325

13. Updates to This Policy

We may update this Privacy Policy from time to time. The effective date at the top indicates when this version takes effect. Where required, we will provide additional notice of material changes.