1. Introduction
DirectorReach ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our UK company director data service.
DirectorReach is operated by App Factory, a trading name of App Factory Dev Ltd, registered in England and Wales.
2. Information We Collect
Account Information: When you create an account, we collect your name, email address, company details, and payment information (processed securely by our payment provider).
Usage Data: We automatically collect information about how you interact with our service, including IP addresses, browser type, search queries, and data exports.
3. Director Data We Provide
Our service provides business contact data for UK company directors sourced from:
- Companies House public records
- Publicly available business information
- Verified email addresses derived from business domains
This data is processed under the legitimate interest basis for B2B marketing purposes in accordance with GDPR Article 6(1)(f).
4. How We Use Your Information
We use the information we collect to:
- Provide access to our UK director database
- Process your transactions and manage your account
- Send you technical notices, updates, and support messages
- Respond to your enquiries and customer service requests
- Monitor and analyse usage patterns to improve our service
- Comply with legal obligations
5. Lawful Basis for Processing
Your Data: We process your account data based on contractual necessity and legitimate interests.
Director Data: The business contact information we provide is processed under the legitimate interest basis. Directors have a reasonable expectation that their business contact details may be used for B2B communications related to their professional role.
6. Data Retention
Account Data: We retain your account information for as long as your account is active, plus 7 years for legal and accounting purposes.
Director Data: We refresh our database weekly and remove records for directors who have resigned or companies that have been dissolved.
7. Data Security
We implement appropriate technical and organisational measures to protect personal information. All data is encrypted in transit using TLS and at rest using AES-256 encryption. Access to director data is logged and auditable.
8. Your Rights (GDPR)
If you are in the UK or EU, you have the right to:
- Access your personal data
- Rectify inaccurate personal data
- Request erasure of your personal data
- Restrict processing of your personal data
- Data portability
- Object to processing of your personal data
To exercise these rights, contact us at privacy@app-factory.dev.
9. Rights of Data Subjects in Our Database
Directors whose information appears in our database may:
- Request access to the data we hold about them
- Request correction of inaccurate data
- Object to processing of their data
- Request suppression from marketing communications
We maintain a suppression list and will honour all valid objection requests within 30 days.
10. Third-Party Services
We may use third-party services including:
- Payment processors (Stripe)
- Cloud hosting providers (AWS)
- Analytics services
11. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with UK GDPR.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.
13. Contact Us
If you have any questions about this Privacy Policy, please contact us:
- Email: privacy@app-factory.dev
- Website: app-factory.dev