Privacy Policy

1. Purpose

Wavebrook Analytics Ltd (“Wavebrook”, “we”, “us”, or the “Company”) respects your privacy and is committed to protecting your personal data. This Privacy Policy informs you how we process your personal data when you visit our website, subscribe to or register for our services, or leave a review or rating. It also explains your privacy rights under the Data Protection Act 2018, UK GDPR, and EU GDPR (“Data Protection Laws”).

2. Controller for personal data

Unless we notify you otherwise, Wavebrook is the controller of your personal data for the purposes of this website.

3. Scope

This Privacy Policy applies to the processing of personal data in connection with:

• Our customers (“Publishers”) for the provision of our services.
• Suppliers providing products and services to us.
• Visitors to our website.

4. Further information about our services for Publishers and partner network

Publishers can integrate the Wavebrook SDK into their apps, which are then published on Google Play and the App Store. We enable the collection of pseudonymous data from our Publishers’ apps by our partner network. With the explicit consent of the app users, our partners run SDK-based technology in the background to collect data. Publishers must provide appropriate privacy notices, disclosures, and consent requests to their app users and comply with applicable privacy legislation. Publishers are also required to follow the Wavebrook Publisher Guidelines and Policies, available at https://wavebrook.com/guidelines.

For a list of our partners, please visit https://wavebrook.com/partners.

5. Types of personal data

Personal data means any information from which an individual can be identified. We may collect, use, store, and transfer the following categories of personal data:

• Identity Data: first name, last name, username, title.
• Contact Data: billing/delivery address, email address, telephone numbers.
• Financial Data: bank account and payment card details.
• Transaction Data: details about payments and services purchased.
• Technical Data: IP address, login data, browser type/version, time zone, location, plug-ins, operating system, platform.
• Profile Data: username, password, preferences, feedback, survey responses.
• Usage Data: information about how you use our website and services.
• Marketing and Communications Data: preferences for receiving marketing from us or third parties.

6. How we collect your personal data

Directly from you

We collect personal data when you fill in forms, leave reviews, correspond with us, or subscribe to services.

From use of our website

We collect Technical, Usage, Profile, and Marketing data through your interaction with the site. See our Cookie Notice for details.

Indirectly from third parties

We may receive Identity or Contact data from third parties when providing services or when you share data with us via a third party.

7. How we use your personal data

We only process personal data where permitted by law, primarily:

• Performance of a contract with you
• Compliance with legal obligations
• Legitimate interests (where your rights do not override them)
• Consent (where applicable; you may withdraw consent at any time)

8. Purposes and lawful bases

Common purposes include:

• Registering and providing services (contract)
• Responding to enquiries (contract / legitimate interests)
• Processing payments and recovering debts (contract / legitimate interests)
• Managing our relationship, notifications, reviews (contract / legal obligation / legitimate interests)
• Administering and protecting the business and website (legitimate interests / legal obligation)
• Delivering relevant content and measuring advertising effectiveness (legitimate interests)
• Data analytics to improve the site and services (legitimate interests; consent where cookies are used)
• Making recommendations about relevant services (legitimate interests)

9. Marketing communications

You can opt out of marketing communications at any time via the unsubscribe link or by contacting us. Opting out does not affect service-related communications.

10. Sharing your personal data

We may share data with:

• Internal staff and contractors (need-to-know basis)
• IT, communication, and business support suppliers
• Professional advisers (lawyers, bankers, auditors, insurers)
• Payment service providers
• Law enforcement, regulators, and authorities
• Advertising networks and analytics providers
• Third parties in case of business sale or reorganisation

11. International transfers

We may transfer data outside the UK/EEA only where adequate safeguards are in place (adequacy decision or approved contractual clauses). Contact us for details of the mechanism used.

12. Data security

We implement appropriate technical and organisational measures to protect your data. However, transmission over the internet is never completely secure, and any transmission is at your own risk.

13. Data retention

We retain personal data only as long as necessary for the purposes collected, considering legal, accounting, and regulatory requirements. Anonymised data may be retained indefinitely.

14. Children’s data

Our website and services are not intended for children under 13 (UK) or 16 (EU), and we do not knowingly collect their data.

15. Your rights

Under Data Protection Laws you have rights to access, correction, erasure, objection, restriction, portability, and to withdraw consent. Contact us to exercise these rights (no fee in most cases).

16. Contact us

For any privacy questions or to exercise your rights, please email us at privacy@wavebrook.com.

17. Complaints

If you have concerns, please contact us first. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (www.ico.org.uk) or your local supervisory authority.

18. Changes to this Privacy Policy

We may update this policy from time to time. Material changes will be notified where required by law.