EU/UK Data Protection Notice
(GDPR/UK-GDPR)

Effective date: 6th October 2025

Controller:

Right Pace Tech Media (trading as “RPTech Media”), 2 Frederick Street, Kings Cross, London, WC1X 0ND, United Kingdom.

Contact

info@rptechmedia.com | +44 020 3129 7779

1.Scope and Roles

1.1 This Notice explains how RPTech Media processes Personal Data subject to the General Data Protection Regulation (EU) 2016/679 (GDPR) and the UK General Data Protection Regulation as incorporated by the Data Protection Act 2018 (together, “Data Protection Law”).

1.2 RPTech Media is typically the controller for Personal Data relating to customers, prospects, site visitors and business contacts where we determine the purposes and means of processing. When we handle Personal Data solely on the written instructions of a customer in order to execute that customer’s campaigns, we act as a processor; in those cases, the customer is the controller and our obligations are governed by our services agreement and any data processing addendum.

2.Categories of Personal Data and Sources

2.1 We process business-context Personal Data such as name, job title, employer, business email, business telephone, work address, account and preference data, transactional identifiers (e.g., payment reference, not full card details), support communications, site/app usage information (including IP address, user agent, pages viewed and timestamps), and records of consents or opt-outs.

2.2 Personal Data is obtained (a) directly from you when you use our websites, portals, forms or support channels; (b) from customers, partners and vendors that lawfully supply data for campaign execution; (c) from publicly available business sources and reputable data providers; and (d) automatically via cookies, pixels and similar technologies when you engage with our digital properties or emails.

3.Lawful Bases and Purposes

3.1 We process Personal Data only where a lawful basis applies. Depending on the activity, our bases are:

(a) Contractual necessity – to register your account, accept and fulfil orders, configure campaigns, deliver lead files and reports, provide support and billing;

(b) Legitimate interests – to operate, secure and improve our services and websites; prevent fraud and misuse; personalise B2B communications to relevant business contacts; maintain business records; and assert or defend legal claims. We balance these interests against your rights and freedoms;

(c) Legal obligation – to comply with tax, accounting, financial crime, and other regulatory requirements; and

(d) Consent – where required for specific marketing activities or optional cookies; consent can be withdrawn at any time without affecting prior processing.

3.2 Where we act as processor, the customer is responsible for identifying its lawful basis and providing all required transparency to data subjects.

4.Cookies and Similar Technologies

4.1 We use strictly necessary cookies to run the site, as well as (where permitted) functional, analytics and marketing technologies to understand usage and measure performance. Controls are available through your browser and, where applicable, our on-site cookie preferences tool. Blocking strictly necessary cookies may impair functionality. See our Cookie Notice for details.

5.Disclosures and International Transfers

5.1 We disclose Personal Data to trusted service providers (e.g., hosting, email, analytics, security, payments), campaign-execution partners, professional advisers, prospective buyers or merger counterparties, and competent authorities where required by law. We do not sell Personal Data.

5.2 Because we operate globally, Personal Data may be transferred to countries outside the UK/EEA that do not provide the same level of protection. Where required, we implement appropriate safeguards, including the UK International Data Transfer Addendum and/or EU Standard Contractual Clauses. Copies of these safeguards may be requested using the contact details above.

6.Security

6.1 We maintain administrative, technical and physical safeguards designed to protect Personal Data against unlawful or unauthorised access, disclosure, alteration or loss, including access controls, encryption in transit, logging and monitoring, staff confidentiality obligations, and periodic testing. No system is perfectly secure; residual risk cannot be eliminated.

7. Retention

7.1 We retain Personal Data for the longer of: (a) the period necessary for the purposes described in this Notice; (b) any period required by law, regulation or guidance; and (c) the applicable limitation period for potential claims plus a reasonable buffer. Data is securely deleted or anonymised when no longer required.

8. Your Rights

8.1 Subject to conditions and exemptions under Data Protection Law, you may have the right to: access your Personal Data; rectify inaccurate data; erase data; restrict processing; object to processing based on legitimate interests or direct marketing; and data portability for data you provided to us where processing is based on consent or contract and carried out by automated means.

8.2 Where processing is based on consent, you may withdraw it at any time.

8.3 To exercise rights, contact us using the details above. We may request information to verify identity and authority before actioning a request. We will respond within the timelines set by law.

9. Marketing Preferences

9.1 We send B2B marketing communications to business contacts where permitted by law. You may opt out at any time by using the unsubscribe link in the message or contacting us. We will record and honour your preference.

10. Children

10.1 Our services and websites are directed to business users aged 18+. We do not knowingly collect Personal Data from children. If we become aware that a child has provided Personal Data, we will delete it.

11. Logs, Analytics and Third-Party Technologies

11.1 Our servers automatically create log files when the site is accessed (e.g., IP address, browser type, ISP, referring/exit pages, timestamps). We use this information to operate, secure and improve the site and to compile aggregate statistics.

11.2 Our websites may include links to third-party sites or incorporate third-party tags (for example, analytics or advertising measurement). Those third parties process Personal Data as independent controllers under their own notices and controls.

12. Payment Processing

12.1 Online payments are handled by independent payment service providers (e.g., Razorpay). Card details are submitted directly to the processor over an encrypted connection; RPTech Media does not store full card numbers or CVV codes. The processor’s privacy notice applies in addition to this Notice.

13. Complaints

13.1 If you believe we have not handled your Personal Data properly, please contact us first so we can address your concern quickly. You also have the right to lodge a complaint with your local supervisory authority.
United Kingdom: Information Commissioner’s Office (ICO) – ico.org.uk
EEA: contact details for supervisory authorities are available at edpb.europa.eu

14. Changes to this Notice

14.1 We may amend this Notice from time to time to reflect legal, technical or business developments. The effective date at the top of this page shows when it was last updated. Material changes will be signposted where legally required.