Privacy Policy

How we collect, use, and protect your personal information.

Last updated: May 2026  ·  Effective: May 2026

Contents

  1. Who We Are
  2. Data We Collect
  3. How We Use Your Data
  4. Legal Basis for Processing
  5. Who We Share Data With
  6. How Long We Keep Your Data
  7. Your Rights
  8. Security
  9. International Transfers
  10. Cookies
  11. Children
  12. Changes to This Policy
  13. Contact Us

1. Who We Are

getServiceRelay ("we", "us", "our") is a B2B service partnership platform that enables service businesses to build and manage affiliate networks, agree commission terms with partner companies, and exchange contact details upon mutual acceptance.

We are the data controller responsible for your personal data processed in connection with your use of our platform at www.getservicerelay.com and app.getservicerelay.com.

You can contact us regarding data protection matters at: [email protected].

2. Data We Collect

2.1 Account and Registration Data

When you register for an account, we collect:

  • Your name and business email address
  • Your password (stored in encrypted form — never in plain text)
  • The name of your tenant (workspace)
  • Your role within your organisation

2.2 Company Profile Data

When you set up your company profile, we collect information you provide including:

  • Company name, address, and contact details
  • Industry niche and service category
  • Any other information you voluntarily add to your company profile

2.3 Platform Activity Data

As you use the platform, we collect records of your activity including:

  • Affiliation requests sent and received, and their status
  • Commission terms agreed with partner companies
  • Messages sent and received through our messaging system

2.4 Technical Data

We automatically collect certain technical data when you access our platform:

  • IP address and approximate location
  • Browser type and version
  • Device type and operating system
  • Pages visited and time spent on the platform
  • Referring website
  • Error logs and diagnostic information

2.5 Communications Data

If you contact us directly by email or any other means, we will retain a record of that correspondence including your name, contact details, and the content of your communication.

3. How We Use Your Data

We use the personal data we collect for the following purposes:

  • Providing the service: To create and manage your account and tenant workspace, facilitate affiliate connections, enable messaging between partners, and exchange contact details upon mutual affiliation acceptance.
  • Communications: To send you transactional notifications (e.g. new affiliation requests, new messages, affiliation accepted) that are essential to the operation of your account.
  • Security and fraud prevention: To verify your identity, detect and prevent unauthorised access, and protect the integrity of the platform.
  • Legal compliance: To comply with applicable laws, regulations, and lawful requests from authorities.
  • Service improvement: To analyse usage patterns and resolve technical issues in order to improve the platform.
  • Customer support: To respond to your queries and provide technical assistance.

We do not sell your personal data to third parties. We do not use your data for targeted advertising. We do not share your data with your partner companies beyond the information you have explicitly made available through your company profile and affiliation activity on the platform.

We process your personal data under the UK General Data Protection Regulation (UK GDPR) on the following legal bases:

  • Contract performance (Article 6(1)(b)): Processing necessary to provide the service you have registered for, including account management, notifications, and platform functionality.
  • Legitimate interests (Article 6(1)(f)): Processing for security monitoring, fraud prevention, service improvement, and maintaining the technical integrity of the platform, where these interests are not overridden by your data protection rights.
  • Legal obligation (Article 6(1)(c)): Processing required to comply with applicable law.
  • Consent (Article 6(1)(a)): Where we rely on consent (for example, for optional marketing communications), you may withdraw consent at any time.

5. Who We Share Data With

We do not share your personal data with third parties except in the following circumstances:

  • Service providers: We use third-party infrastructure and service providers (including hosting, email delivery, and database services) who process data on our behalf under strict data processing agreements. These providers are permitted to use your data only to provide services to us.
  • Partner companies on the platform: When you engage in an affiliation with another company on the platform, certain information about your company (as entered in your company profile) will be visible to that partner. You control what information you include in your company profile. Individual user data (such as email addresses) is not shared with other tenants on the platform.
  • Legal requirements: We may disclose your data where required to do so by law, court order, or by a competent regulatory authority.
  • Business transfers: In the event of a merger, acquisition, or sale of all or part of our business, personal data may be transferred as part of that transaction. We will notify you of any such change.

6. How Long We Keep Your Data

We retain your personal data for as long as your account remains active and for a reasonable period thereafter to enable you to reactivate your account and to meet our legal obligations.

  • Account data: Retained for the duration of your account plus 2 years following account closure.
  • Platform activity records (affiliations, messages): Retained for the duration of your account plus 6 years, in order to support any potential commercial disputes between parties.
  • Technical logs: Retained for up to 90 days for security and diagnostic purposes.
  • Communications with support: Retained for up to 3 years.

You may request deletion of your data at any time (see Your Rights below). Some data may be retained beyond these periods where required by law or where we have a legitimate interest in doing so (for example, to defend a legal claim).

7. Your Rights

Under the UK GDPR, you have the following rights in relation to your personal data:

  • Right of access: You may request a copy of the personal data we hold about you.
  • Right to rectification: You may request correction of inaccurate or incomplete data.
  • Right to erasure: You may request deletion of your personal data in certain circumstances, subject to our legal obligations and legitimate interests.
  • Right to restriction: You may request that we restrict the processing of your data in certain circumstances.
  • Right to data portability: You may request a copy of your data in a structured, machine-readable format.
  • Right to object: You may object to processing based on legitimate interests.
  • Right to withdraw consent: Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, please contact us at [email protected]. We will respond within one calendar month.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe we have not handled your data in accordance with applicable law.

8. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or damage. These measures include:

  • Encryption of data in transit using HTTPS/TLS
  • Encrypted storage of all passwords
  • Strict multi-tenant data isolation — each tenant's data is logically separated and inaccessible to other tenants
  • Access controls limiting data access to authorised personnel only
  • Regular security reviews

No method of transmission over the internet or electronic storage is 100% secure. While we take all reasonable steps to protect your data, we cannot guarantee absolute security. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by law.

9. International Transfers

Your data is primarily processed and stored within the United Kingdom and the European Economic Area. Where data is transferred outside these areas, we ensure appropriate safeguards are in place in accordance with UK GDPR, such as standard contractual clauses approved by the relevant authority.

10. Cookies

We use cookies and similar technologies on our platform. For full details of the cookies we use and how to manage your preferences, please see our Cookie Policy.

11. Children

getServiceRelay is a business-to-business platform intended for use by adults acting in a professional capacity on behalf of a registered business. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has provided us with personal data, please contact us and we will take steps to delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will post the updated policy on this page with a revised "Last updated" date. Where changes are material, we will notify registered users by email. Your continued use of the platform after the date of any update constitutes your acceptance of the revised policy.

13. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us: