Privacy and Cookie Policy

Customers on our enterprise plan get a customized privacy policy

View Pricing

Referral Factory BV, the responsible Data Controller, doing business as Referral Factory, a Dutch limited with registration number KVK 71193529 and its registered address: Prinsengracht 301-G 1016 GX Amsterdam, hereinafter referred to asReferral Factory or “we”, “us” or “our”.

We take privacy and data protection very seriously and are committed to protect your personal information by offering the highest standards of data security. If you have any questions about this privacy and cookie policy after reading it, please don’t hesitate to contact us at [email protected].

1. Data Controller

This Privacy and Cookie Policy (“Policy”) applies to Referral Factory BV, the responsible Data Controller, doing business as the Referral Factory, a Dutch limited with registration number KVK 71193529 and its registered address: Prinsengracht 301-G 1016 GX Amsterdam, hereinafter referred to as the Referral Factory or “we”, “us” or “our”.

2. Applicable Privacy Laws

Under the General Data Protection Regulation (“GDPR”) we must inform both website visitors and subscribers to our services (“Customer(s),” “you,” or “your”) about our privacy and data protection policies. Personal data is information that can be used to identify you as an individual, such as your first and last name, address and e-mail address, IP address and telephone number.

Our internal security protocols and systems comply with industry-standard measures. This Policy governs the privacy of our customers and visitors to our website. We will discuss the relevant privacy and data protection measures in this document. Moreover, we will explain how we process, store, and protect your personal information.

We actively protect your privacy rights and take all necessary steps to shield your information. Our website fully complies with all applicable data protection laws and regulations, such as those applied in the European Union, the Netherlands, Canada, and California. In the event of any changes in the applicable law, we may inform you. However, you acknowledge and agree to inform yourself and check this page from time to time for any changes.

3. Contacting Us

We collect your personal data based on a legitimate interest when you contact us or create an account - either through our website, email, social media channels, or by any other means. Your personal data is kept private and is processed in a secure way in accordance with an appropriate retention period. Moreover, we promise a safe and secure data transmission of your data. Should you create an account with us and leave personal information you do so at your own risk. We will retain your data based on legitimate business interests. Your data will be stored as long it is legally required.

4. Use of Personal Information

Besides the legitimate interests mentioned in this Policy, your personal information may be used for other purposes that are always appropriate to our business dealings. As a result, your personal information and data may be used in different ways than the list below as long as you have not withdrawn your consent. We may also process your personal information after we have received a governmental or judicial order.

These purposes may apply:

Monitor your use of and activities on our website to improve our services;
Provide the services you have solicited from us;
Emails and other communications are collected in order to gather information from you about our system and its use.

5. Children and Privacy

We shall never collect or process any personal information from children under the age of sixteen (16). If you are the parent or guardian of a child under the age of sixteen (16) and your child is visiting our website, please contact us immediately at [email protected]. After such a request, we shall erase all (personal) information about children from our systems.

6. Data Sharing and Disclosures

We value your privacy and are committed to maintaining the trust of our users. We do not sell your personal data to third parties, and we strictly limit sharing of data to circumstances that allow us to serve you better, comply with legal requirements, or improve our services. Specifically, we may share data in the following situations:

Service Providers: We work with trusted service providers to support our operations (such as email delivery, data storage, and analytics). These providers are permitted to access data only as necessary to perform their functions and are contractually bound to uphold data protection standards.
Legal Compliance: We may disclose your data to law enforcement or other government entities if required to comply with applicable laws, regulations, or legal processes.
Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity under terms that maintain this privacy commitment.

Any data shared is done so with the utmost respect for your privacy and in accordance with applicable laws.

7. Third Party Data Processors

The Referral Factory makes use of other parties necessary to operate our business and services. Under the applicable laws and regulations, those third-parties are Data Processors. We make use of the following Data Processors. Please check their respective privacy and data protection policies.

Service and Company	Country	Privacy Policy URL
Stripe (Stripe, Inc.)	USA	https://stripe.com/en-nl/privacy
Google Analytics (Google, LLC)	USA	https://policies.google.com/privacy
Google Tag Manager (Google, LLC)	USA	https://policies.google.com/privacy
Mailgun Technologies, Inc	USA	https://www.mailgun.com/privacy-policy/
HubSpot LLC	USA	https://legal.hubspot.com/privacy-policy
AWS	USA	https://aws.amazon.com/privacy/
Meta Platforms Inc	USA	https://www.facebook.com/privacy/policy/
Intercom Inc	USA	https://www.intercom.com/legal/privacy

Remarketing and Behavioral Targeting

These services allow us and our partners to inform, optimize and serve advertising based on past use of the service by the User. This activity is performed by tracking Usage Data and by using Cookies, information that is transferred to the partners that manage the remarketing and behavioral targeting activity.

Facebook Remarketing (Facebook)

Facebook Remarketing is a Remarketing and Behavioral Targeting service provided by Facebook Inc. that connects the activity of our service with the Facebook advertising network.

Personal Data collected: Cookie and Usage Data.

Default place of processing: USA

Options for processing place: We can process a customers data in the EU on request.

We undertake to only use Data Processors that offer the same level of data protection as our company. We will never be liable for data leaks or breaches made by the Data Processors listed above or their respective sub-processors. Your personal data may be transferred to a country outside the European Economic Area (EEA) or the USA. The country the data is transferred to shall always have the same level of privacy and data protection laws and regulations as laid down in the GDPR, and any other applicable law or regulation.

8. Rights of Individuals

Under the GDPR, you are considered a Data Subject with certain fundamental rights as listed below.

8.1 Access Rights

You have the right to access the personal data we have received from you by receiving a copy of the information we have stored. Moreover, you may ask us about how we collect and process your data.

8.2 Rectification Rights

If your data is incorrect or incomplete, you can correct it yourself by logging in or by contacting us at [email protected] and providing us with the correct information.

8.3 Right to be Forgotten

When you believe we do not have a good reason anymore to hold your personal data for a more extended period of time, each individual can request the full deletion of personal data. We will immediately award such a request unless there is a legal obligation to keep your personal data for a longer period of time.

8.4 Portability Rights

Upon your request, we shall give you a copy of your data in a machine-readable format, or transfer it directly to a new Data Controller appointed by you.

8.5 Objection Rights

You can always ask us to stop the processing of your personal data. Moreover, you can always object to the processing of your personal data when it is based on your explicit permission.

8.6 Complaints

We want to solve any matter regarding your privacy directly with you. Please contact us at [email protected]. You also have the right to bring a complaint before the national Data Protection Authority in the country where you reside.

9. Messages and Opting Out

We may send you specific offers related to our business unless you have opted out from receiving such communications. We always give you the option to cancel receiving such offers. However, you cannot opt-out from receiving messages that are necessary to fulfill our contractual obligations and legal duties.

Our website may have links to third-party websites and/or service providers. Customers should be advised before they click external links on our website, and may do so at their own risk. Referral Factory is never responsible or liable for any damages or losses due to visiting any external links from our website.

10. Amendments

We may amend this Privacy and Cookie Policy from time to time to comply with new privacy laws and regulations. Each Customer is solely responsible for checking this page on a regular basis to see any applicable changes in our privacy and data protection laws as the policy may change from time to time.

11. Cookies

We make use of cookies to improve your experience on our website. Each Customer may allow or disallow the use of cookies on their computer, which complies with legislation to obtain your permission first before placing cookies.

Cookies are small files saved to your hard drive. They track, store and save information about the way you use our website. Placing cookies allows us to offer a personalized experience. If you wish to not use and store cookies on your computer, you should take all necessary steps within the security settings of your web browsers and block all cookies from our website.

12. Legal information

Notice to European Users: this privacy statement has been prepared in fulfillment of the obligations under Art. 10 of EC Directive n. 95/46/EC, and under the provisions of Directive 2002/58/EC, as revised by Directive 2009/136/EC, on the subject of Cookies.