1. Who we are
Reach247 Digital Ltd is the controller responsible for your personal data. If you have any questions about this policy, contact us at
hello@reach247.co.uk or using the details in section 10.
2. The data we collect
We may collect and use these categories of personal data: Identity Data (first and last name, business name); Contact Data (email and telephone/mobile number); Technical Data (IP address, browser type, timezone, location, operating system and platform); Usage Data (how you interact with our website and app); Marketing and Communications Data (your marketing preferences); and Loyalty Data (the cards you join and their activity, such as stamps, points, and membership status). In the Reach247 app we use your mobile number to sign you in (a one-time code sent by SMS) and your name and email at sign-up. Paid membership payments are processed by Stripe and we do not receive or store your full card number. If you allow it, your device location is used only to centre the in-app store map. Aggregated data that does not identify you is not personal data.
3. How we collect your data
Direct interactions (forms, phone, email, contact submissions, quote requests, feedback, and creating an account in the app); automated technologies (we may automatically collect Technical and Usage Data about your equipment, browsing actions and patterns); and third parties (analytics/advertising providers such as Google, Meta, LinkedIn, TikTok; business information providers such as Endole; and public sources such as Companies House).
4. How we use your data
Our legal bases are performance of a contract, our legitimate interests, compliance with a legal obligation, and consent. We use your data to manage our relationship with you and send service notifications; sign you in and operate your loyalty account; process paid memberships; administer and protect our business and website/app; deliver relevant content and measure advertising; run analytics to improve our service; and send marketing where you have agreed. Retention varies by purpose — e.g. relationship data for 2 years from last contact, business/technical data for 12 months, and analytics/advertising data for up to 26 months. Marketing data is kept until you opt out or after 2 years of inactivity.
5. Marketing and your choices
We will obtain your express consent before sharing your personal data with any third party for their own direct marketing purposes. You can opt out of marketing at any time via the unsubscribe link in our emails or by contacting us — this does not affect service notifications.
6. Disclosures of your data
We may share your data with service providers who help us run the service (CRM, hosting, our loyalty platform, SMS and email delivery, and Stripe for payments); analytics and advertising partners (Google, Meta, LinkedIn, TikTok); the stores whose loyalty programmes you join (they can see that you are a member and your activity with their programme); and third parties in the context of a business transfer. We do not sell your personal data to any third party. All third parties must keep your data secure and act only on our instructions.
7. International transfers
Where we transfer data outside the UK, we protect it using the International Data Transfer Addendum (IDTA) to the Standard Contractual Clauses for US-based providers, and equivalent contractual safeguards for advertising and analytics partners.
8. Data security
We use appropriate security measures to prevent your data from being accidentally lost, used or accessed in an unauthorised way, altered, or disclosed. Access is limited to those with a business need, and we have procedures to deal with any suspected breach.
9. Data retention
We keep your data for as long as reasonably necessary for the purposes we collected it, including to satisfy legal or regulatory requirements, and may retain it longer where a complaint or litigation is possible. We may anonymise data indefinitely for research. You can ask us to delete your account and data at any time.
10. Your legal rights
You have the right to request access to your data; request correction or erasure; object to or restrict processing; request transfer of your data; and withdraw consent. There is normally no fee and we aim to respond within one month. To exercise any right, email
hello@reach247.co.uk.
11. Contact details
Reach247 Digital Ltd — 2 Bawden Way, Chelmsford, England, CM2 9GY. Email:
hello@reach247.co.uk.
12. Complaints
You have the right to complain to the Information Commissioner’s Office (ICO) at www.ico.org.uk. We would appreciate the chance to address your concerns first, so please contact us before you approach the ICO.
13. Changes and third-party links
We review this policy regularly. Our website and app may contain links to third-party sites we do not control and are not responsible for; please review their privacy policies. See also our Cookie Policy at reach247.co.uk/cookies.