Privacy Policy

Date: 14 July 2025

NEGOTINATION LTD. takes your privacy seriously. We only use your personal information to provide you with the products and services you request and to manage your account. We do not sell or share your data with third parties without your explicit permission. Your data is never used for any other purposes than those described in this policy.

1. About this Privacy Policy

This privacy policy outlines your relationship with our company and how we collect, store, process, and use your personal data.

2. About NEGOTINATION LTD.

NEGOTINATION LTD. is a UK-registered company (No. 16180136), registered with the UK’s Information Commissioner’s Office (ICO) under the Data Protection Act 2018.

Data Controller: Christophe Pirolley

Contact us:

• 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
• +44 2038 68 68 67
• GDPR@negotination.com
• www.negotination.com

3. What Data We Collect

We may collect and process the following types of data:

• full name
• email address
• phone number
• company name
• tax ID number
• bank account (IBAN/BIC)
• login credentials
• IP address
• location data
• usage data
• cookie identifiers
• device/browser info
• communications via forms, email, or our platform

4. Legal Grounds for Processing

We process data based on:

• performance of a contract
• legal obligations
• legitimate interests
• consent (e.g. newsletter, Google sign-in)

5. Data Use

We use your data to :

• register your account
• manage participation in group deals and cashback programs
• provide support
• send communications
• perform analysis
• etc.

You can withdraw your consent at any time by contacting GDPR@negotination.com

6. Retention

• Login/account data: 5 years from last activity.
• Payment/transaction data: up to 7 years for compliance.
• Other data: until deletion request or consent withdrawal.

7. Data Sharing and Processors

We do not sell your data. We share limited data with trusted processors for specific purposes:

• Wallester AS – card issuance and payment
• Google Ireland Ltd. – account sign-in

8. Cookies and Tracking

We use cookies and tracking technologies. See our Cookie Policy for details.

9. Your Rights

Under GDPR, you have the right to:

• access
• rectify
• erase
• restrict
• object to processing
• data portability
• complain to the ICO (www.ico.org.uk)

We process access requests within 20 days.

10. International Data Transfers

Some services may involve transfers outside the EU/UK. We apply:

• Standard Contractual Clauses (SCCs)
• Transfer Impact Assessments (TIAs)
• encryption
• access control

These measures ensure your data remains protected.

11. Data Security

We implement strict safeguards including:

• encryption
• access control
• breach notification (ICO in 24h, users in 72h)

12. Changes to this Policy

Last updated on 14 July 2025. Previous versions available upon request.

13. Contact

For inquiries, contact GDPR@negotination.com – to Christophe Pirolley, Data Controller.