Last updated: April 2026 | Apex Reputation UK Ltd | Registered in England and Wales
Apex Reviews is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Apex Reputation UK Ltd ("Apex Reviews", "we", "us", "our") is registered in England and Wales and is the Data Controller for personal data collected through our website and business activities.
Email: [email protected]
Website: apexreputationuk.com
We are registered with the Information Commissioner's Office (ICO) as required under UK data protection law.
We may collect and process the following categories of personal data:
Full name and job title
Business name and registered address
Email address and telephone number
Payment information (processed securely via Stripe — we do not store card details)
Any information you provide in enquiry forms, emails, or calls
IP address and browser type
Pages visited and time spent on our website
Referring website or source
Device type and operating system
When providing reputation marketing services, our clients may share their customers' personal data (names, phone numbers, email addresses) with us for the purpose of sending review requests. In this capacity we act as a Data Processor on behalf of our clients who are the Data Controllers. This data is used solely to deliver the contracted services and is never used for our own marketing purposes.
PurposeLegal BasisTo respond to enquiries and provide information about our servicesLegitimate interestsTo deliver contracted reputation marketing servicesPerformance of a contractTo process payments and manage billingPerformance of a contractTo send service-related communications and updatesPerformance of a contractTo send marketing emails about our services to existing clientsLegitimate interests (with opt-out)To comply with legal and regulatory obligationsLegal obligationTo improve our website and services using analytics dataLegitimate interests
We may contact UK business owners and representatives by email regarding our services. This outreach is conducted in accordance with the Privacy and Electronic Communications Regulations (PECR) which permits B2B email marketing to corporate email addresses under legitimate interests, provided a clear opt-out is always included.
If you have received an email from us and do not wish to hear from us again, simply reply with "STOP" or email [email protected] and we will remove you from our outreach list immediately.
Our website uses cookies to improve your browsing experience. Cookies are small text files stored on your device. We use the following types of cookies:
Essential cookies: Required for the website to function. Cannot be disabled.
Analytics cookies: Help us understand how visitors use our website (e.g. Google Analytics). These are only set with your consent.
Marketing cookies: Used to track visits and deliver relevant advertising. Only set with your consent.
You can control and manage cookies through your browser settings at any time. Disabling certain cookies may affect the functionality of our website.
We do not sell, rent, or trade your personal data. We may share data with trusted third-party service providers who assist us in delivering our services:
GoHighLevel — CRM and marketing automation platform (GDPR compliant, Data Processing Agreement in place)
Stripe — Payment processing (PCI DSS compliant)
Google Workspace — Business email and document storage
Twilio — SMS delivery services
Google LLC — Google Business Profile management and analytics
All third-party processors are required to handle your data securely and in accordance with UK GDPR. We do not transfer your data outside of the UK or EEA without appropriate safeguards in place.
Data TypeRetention PeriodClient contact and billing dataDuration of contract plus 6 years (HMRC requirement)Enquiry and prospect data2 years from last contactCustomer data processed on behalf of clientsDuration of client contract plus 30 daysWebsite analytics data26 monthsEmail correspondence3 years
You have the following rights regarding your personal data:
Right of access: You can request a copy of the personal data we hold about you.
Right to rectification: You can ask us to correct inaccurate or incomplete data.
Right to erasure: You can ask us to delete your personal data in certain circumstances.
Right to restrict processing: You can ask us to limit how we use your data.
Right to data portability: You can request your data in a structured, machine-readable format.
Right to object: You can object to processing based on legitimate interests, including direct marketing.
Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.
To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days. There is no charge for making a request.
We take data security seriously and implement appropriate technical and organisational measures to protect your personal data, including:
Encrypted data storage and transmission (SSL/TLS)
Access controls limiting who can view personal data
Regular review of our data handling practices
Use of GDPR-compliant third-party platforms with Data Processing Agreements
In the event of a data breach that poses a risk to your rights and freedoms, we will notify the ICO within 72 hours and affected individuals without undue delay as required by UK GDPR.
Our services are directed exclusively at businesses and are not intended for individuals under the age of 18. We do not knowingly collect personal data from children.
Our website may contain links to third-party websites. We are not responsible for the privacy practices of those websites and encourage you to read their privacy policies before providing any personal data.
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Website: ico.org.uk
Helpline: 0303 123 1113
Address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
We would appreciate the opportunity to address your concerns before you contact the ICO, so please contact us first at [email protected].
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by email or by posting a notice on our website. The date at the top of this page indicates when the policy was last updated.
If you have any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us:
Apex Reputation UK Ltd
Email: [email protected]
Website: apexreputationuk.com
© 2026 Apex Reputation UK Ltd. Registered in England and Wales. All rights reserved.