RateGather

Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your information.

This Privacy Policy governs our collection, use, and disclosure of Personal Data when you use our Service and informs you about your privacy rights and how the law protects you.

About RateGather

RateGather is an online service operated by RATEGATHER sp. z o.o. (a Polish limited liability company), with its registered office at 1 Maja Street 39, 71-627 Szczecin, Poland, registered in the National Court Register (KRS) under number 0001246347, Tax ID (NIP) 8513352292, REGON 544954155 (the "Controller," "we," "our," or "us").

We provide local SEO services and tools designed to help businesses improve their online presence and search engine rankings. Our services include review management, citation building, local SEO optimization, AI-assisted content generation, and email communication tools.

For questions regarding this Privacy Policy or your personal data, please contact us at [email protected]. We have not appointed a Data Protection Officer; all data protection inquiries should be directed to the contact email above.

1. Personal Data We Collect

A. Types of Personal Data Collected

We collect the following categories of Personal Data:

B. Sources of Personal Data

We collect Personal Data from the following sources:

2. Use of Personal Data

We use the Personal Data collected for various purposes, including:

3. Sharing of Personal Data

A. Third-Party Service Providers (Sub-processors)

To provide the Service, we engage the following sub-processors. Each operates under a written data processing agreement that meets the requirements of GDPR Article 28 (and equivalent U.S. requirements where applicable):

This list may be updated when our service providers change. The current list is always available in this Privacy Policy.

B. Users of the Service

Users of the Service may enter their own clients' data to send email communications. RateGather acts as a data processor with respect to such data; the user is the data controller and is solely responsible for the accuracy of the data and for ensuring that appropriate consent has been obtained.

C. Data Collection via QR Codes and Shortlinks

Users may use our Service to generate QR codes or shortlinks for marketing or tracking purposes. When end users interact with these QR codes or shortlinks, certain data may be collected, such as IP address, location, and device information. Users of the Service are responsible for obtaining appropriate consent from end users before using these tools.

D. Business Transactions

In the event of a merger, acquisition, or asset sale, Personal Data may be transferred. We will notify you before your Personal Data is transferred and becomes subject to a different Privacy Policy.

E. Legal Requirements

We may disclose Personal Data if required by law or to respond to valid requests by public authorities (e.g., a court, government agency, or law enforcement).

F. No Sale of Personal Information

We do not sell your Personal Data for monetary consideration. See Section 13 (California Privacy Rights) for additional disclosures regarding "sale" and "sharing" as defined under California law.

4. Data Security

We implement appropriate technical and organizational measures to protect your Personal Data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your Personal Data only as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. We will establish specific retention periods based on the type of data and its purpose.

6. Your Rights

You have the following rights regarding your Personal Data:

To exercise these rights, please contact us at [email protected].

7. User Responsibilities and Consent

  1. Consent for Communications: Users of the Service who input their clients' data for email communications must ensure that they have obtained explicit and informed consent from their clients before using the Service to send such communications, including the use of shortlinks in those messages. RateGather is not responsible for any unauthorized or non-compliant use of the Service to send communications to clients.
  2. Consent for Data Collection via Shortlinks: Users must inform their clients and end users that by clicking on shortlinks included in QR codes or email communications, their interactions will be tracked, and data such as IP address, location, and device information may be collected. Users are responsible for obtaining their consent to such tracking and data collection.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to monitor activity on our Service. You can manage cookie preferences through your browser settings. Disabling cookies may affect the functionality of our Service.

Types of Cookies Used:

9. International Data Transfers

RateGather is established in Poland (European Union). When you use the Service, your Personal Data may be transferred to and processed in countries outside the European Economic Area (EEA) and/or your country of residence, including the United States.

Where Personal Data is transferred outside the EEA, we rely on one or more of the following legal mechanisms under the GDPR:

Our sub-processors also implement supplementary technical and organizational measures, including encryption in transit and at rest, access controls, and security audits. You may request a copy of the safeguards in place by contacting us at [email protected].

10. Children's Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect Personal Data from children. If we become aware of such data collection, we take steps to remove that information.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. Your continued use of the Service after changes are posted indicates your acceptance of the revised Privacy Policy.

12. California Privacy Rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act ("CCPA/CPRA"), grants you the following rights regarding your Personal Information:

Categories of Personal Information collected in the past 12 months: identifiers (name, email, phone, online identifiers), commercial information (transaction records), internet or other network activity (browsing history, interactions with our Service), geolocation data, and inferences drawn from the above. We do not knowingly collect Sensitive Personal Information.

Sources: directly from you, automatically through your use of the Service, and from the sub-processors listed in Section 3.

Business purposes for collection: providing and maintaining the Service, customer support, security and fraud prevention, analytics, advertising, and legal compliance.

How to exercise your rights: Submit a verifiable consumer request by emailing us at [email protected] with the subject line "California Privacy Request." We may need to verify your identity before fulfilling your request. You may designate an authorized agent to make a request on your behalf in accordance with California law. We will respond within 45 days, with a possible 45-day extension as permitted by law.

For more information about your California privacy rights, you may contact the California Attorney General's office at oag.ca.gov/privacy.

13. Contact Us

If you have any questions about this Privacy Policy, please contact us at [email protected].

Last Updated: June 25, 2026