Corporate Privacy & Data Security Policy.

1. Important Information and Who We Are

1.1. Purpose of this Privacy Notice: This privacy notice aims to give you information on how we collect and process your personal data through your use of this website, including any data you may provide when you sign up for our services or purchase a press release distribution package.

1.2. Controller Identity: RED PRESS WIRE LTD is the data controller and is responsible for your personal data (collectively referred to as "we", "us", or "our" in this privacy notice). We are registered in England and Wales under Company Registration Number 17054431.

As a UK-registered data controller, we are fully committed to protecting your privacy and enforcing the highest standards of data security protocols.

2. The Data We Collect About You

2.1. Personal data, or personal information, means any information about an individual from which that person can be identified. We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

• Identity Data: includes first name, maiden name, last name, username or similar identifier.
• Contact Data: includes billing address, corporate address, email address, and telephone numbers.
• Financial and Transaction Data: details about your payments to us. Note that we do not process or store your complete financial card details; these are encrypted and handled seamlessly by our PCI-DSS compliant third-party payment gateways (e.g., Stripe, PayPal).
• Technical Data: includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, and other technology on the devices you use to access this website.
• Usage Data: includes information about how you use our website, products, and services.
• Content Data: explicitly covers the text, media, and corporate contact details you actively submit to us for public distribution through our press release network.

3. How We Use Your Personal Data

3.1. We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

• Performance of a Contract: where we need to perform the contract we are about to enter into or have entered into with you (e.g., distributing your press release, processing payments).
• Legitimate Interests: where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., maintaining the security of our platform, improving our automated distribution systems).
• Legal Compliance: where we need to comply with a legal or regulatory obligation under UK Law.

3.2. Express Consent for Public Distribution: By the very nature of our service, "Content Data" submitted for a press release is intended for the public domain. You provide explicit consent for us to syndicate this specific data via RSS feeds, APIs, and direct email to thousands of global media publishers, news desks, and journalists.

4. Disclosures & International Transfers

4.1. We may have to share your personal data with internal third parties (e.g., editorial teams), external third parties (e.g., payment service providers acting as processors based in the UK, EU, or US), and media publishers operating globally.

4.2. Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented: we will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data. Where we use certain service providers located in the US, we use specific contracts approved for use in the UK which give personal data the same protection it has in the UK.

5. Data Security & Retention

5.1. Enterprise Security: We have put in place appropriate, enterprise-level security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a corporate "need to know". They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

5.2. Retention: We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements under English Law.

6. Your Legal Rights under UK GDPR

6.1. Under the Data Protection Act 2018 and UK GDPR, you hold specific legal rights in relation to your personal data, including the right to:

• Request access to your personal data (a "data subject access request").
• Request correction of the personal data that we hold about you.
• Request erasure of your personal data ("right to be forgotten"), subject to overriding legal retention obligations.
• Object to processing of your personal data.
• Request restriction of processing your personal data.

7. Data Protection Officer & Contact Details

We have appointed a data privacy manager who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact them using the details set out below.