Privacy Notice

Last updated: 2026-07-05

This notice explains how we handle your personal data when you use RegWatch.

1. About this notice

This Privacy Notice explains how RegWatch ("we", "us", "our") collects, uses, shares, and protects personal data when you visit regwatch.wiki or use our information/research subscription service (the "Service").

The Service is a business-to-business informational tool and is not directed to children or to consumers seeking to gamble. It is intended for users aged 18 or over.

2. Who is the data controller

The controller of your personal data is currently the RegWatch team, operating on a pre-incorporation basis — a company has not yet been formally registered. This section will be updated with our registered legal name, jurisdiction, company number, and registered office once incorporation is complete. You can contact us at support@regwatch.wiki.

Where required by applicable data-protection law, we will appoint and identify here:

EU representative (Art. 27 GDPR), if required: Not yet appointed — will be added here if/when required.

UK representative, if required: Not yet appointed — will be added here if/when required.

Data Protection Officer (if appointed): Not yet appointed — will be added here if/when required.

3. Summary — at a glance

Account data (name, email, password) — to create/operate your account. Legal basis: contract.

Billing/transaction data (via payment provider) — to take payment, prevent fraud, meet tax/accounting law. Legal basis: contract; legal obligation.

Usage & device data, cookies — to run, secure, and improve the Service. Legal basis: legitimate interests; consent (non-essential cookies).

Support & communications — to answer requests and provide support. Legal basis: contract; legitimate interests.

Marketing contact (if you opt in) — to send updates/newsletters. Legal basis: consent.

4. Personal data we collect

Data you give us

Account & profile: name, email address, password (stored hashed), organisation/role (optional), language/preferences.

Billing: name, billing address/country, and transaction details. Payment-card and equivalent sensitive data are collected and processed by our payment provider / Merchant of Record — we do not store your full card number.

Communications: the content of emails, support tickets, and feedback you send us.

Data we collect automatically

Usage data: pages/briefs viewed, searches, features used, timestamps, referring pages.

Device/technical data: IP address, browser type, device and operating system, approximate location (derived from IP), and diagnostic/log data.

Cookies and similar technologies: see Section 7.

Data from third parties

Payment providers / Merchant of Record share limited order and billing confirmation data with us to fulfil and support your Subscription.

Analytics and security providers may provide aggregated or event data.

We do not intentionally collect special-category data, and we ask that you do not submit it.

5. How we use personal data (purposes)

We use personal data to:

(a) create and administer your account and provide the Service (contract);

(b) process payments, renewals, refunds, invoices, and prevent fraud/abuse (contract; legal obligation; legitimate interests);

(c) provide customer support and respond to enquiries (contract; legitimate interests);

(d) operate, secure, maintain, and improve the Service, including analytics and troubleshooting (legitimate interests; consent where required for non-essential cookies);

(e) send service/transactional messages (e.g. receipts, renewal reminders, security and policy updates) (contract; legitimate interests; legal obligation);

(f) send marketing communications where you have opted in, and manage your preferences (consent);

(g) comply with legal, tax, and accounting obligations, and establish, exercise, or defend legal claims (legal obligation; legitimate interests).

Where we rely on legitimate interests, we balance those interests against your rights; you may object (Section 12).

6. Payments and Merchant of Record

Payments are handled by third-party providers. Where a Merchant of Record is used, that provider is the reseller and processes your payment data under its own privacy policy as an independent controller for the payment transaction; it collects and remits applicable taxes and issues your receipt.

Where payment is taken directly, the processor handles card/payment data under its own terms and privacy policy. In all cases, we do not receive or store your full payment-card details.

7. Cookies and analytics

We use strictly necessary cookies to run the Service and secure your session, and (subject to your consent where required) analytics and preference cookies to understand usage and improve the Service.

You can control non-essential cookies via our cookie banner/settings and your browser. Blocking some cookies may affect functionality.

8. How we share personal data

We share personal data only as needed, with:

Sub-processors / service providers acting on our instructions (hosting, storage, email/CRM, customer support, analytics, security) under data-processing agreements;

Payment providers / Merchant of Record (Section 6);

Professional advisers (legal, accounting) where necessary and under confidentiality;

Authorities or third parties where required by law, to enforce our Terms, or to protect rights, safety, and security;

A successor entity in connection with a merger, acquisition, reorganisation, or asset sale (you will be notified of any change of controller).

We do not sell your personal data (see Section 13 for California specifics).

9. International transfers

Your data may be processed outside your country, including outside the EEA/UK. Where we transfer personal data internationally, we use an appropriate safeguard such as an adequacy decision, the EU Standard Contractual Clauses (and the UK Addendum/IDTA), or another lawful mechanism. You may request a copy of the relevant safeguard at support@regwatch.wiki.

10. Retention

We keep personal data only as long as necessary:

Account data: for the life of your account and then deleted or anonymised within 30 days of account closure, unless longer retention is required by law.

Billing/tax records: retained for the period required by tax/accounting law (typically 7 years).

Support communications: typically 24 months.

Cookies/analytics: per the retention set for each tool.

We may retain limited data longer where necessary to comply with law or to establish, exercise, or defend legal claims.

11. Security

We use appropriate technical and organisational measures (e.g. HTTPS/TLS, hashed passwords, access controls, and reputable infrastructure providers) to protect personal data. No method of transmission or storage is completely secure; we cannot guarantee absolute security. Report concerns to support@regwatch.wiki.

12. Your rights

Subject to applicable law, you may have the right to: access your personal data; request rectification; request erasure; restrict or object to processing (including direct marketing); data portability; withdraw consent at any time; not be subject to solely automated decisions with legal/similar effects (we do not carry out such decision-making); and lodge a complaint with your supervisory authority.

How to exercise. Email support@regwatch.wiki. We will respond within the legal time limit (generally one month under GDPR). We may verify your identity before acting.

Complaints. EU users may complain to their local Data Protection Authority; UK users to the ICO. We would appreciate the chance to address your concern first.

13. California privacy rights (CCPA/CPRA)

If you are a California resident, you may have the right to know/access, delete, and correct your personal information, and to opt out of the "sale" or "sharing" of personal information and of targeted advertising.

We do not sell personal information for money. If we ever "share" personal information for cross-context behavioural advertising, we will provide a "Do Not Sell or Share My Personal Information" mechanism. We do not discriminate against you for exercising your rights. You may use an authorised agent. Contact support@regwatch.wiki.

14. Children

The Service is not intended for anyone under 18, and we do not knowingly collect their personal data. If you believe a minor has provided us data, contact support@regwatch.wiki and we will delete it.

15. Marketing communications

We send marketing emails only with your consent or where otherwise permitted by law. You can unsubscribe at any time via the link in any marketing email or by contacting support@regwatch.wiki. Transactional/service messages (e.g. receipts, security notices) are not marketing and may still be sent.

16. Changes to this notice

We may update this notice; the "Last updated" date will change and, for material changes, we will provide additional notice. Please review it periodically.

17. Languages

This notice is provided in English, Russian, and Ukrainian. The translations are provided for convenience only; in the event of any discrepancy, the English version prevails, except where mandatory local law requires the local-language version to govern.

18. Contact

Controller: the RegWatch team (pre-incorporation — see Section 2.1)

Privacy contact: support@regwatch.wiki

Security contact: support@regwatch.wiki

Registered address: to be added upon incorporation