Engage Logo

Legal

Privacy Policy

Your privacy matters to us. This Policy describes how Engage collects, uses, and protects your personal information, and explains your rights over that data.

Effective date: 1 April 2025  ·  Last updated: April 2025

1. Introduction

Cencorp Group ("Engage", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use the Engage platform, including our website, mobile applications, APIs, and related services (collectively, the "Service").

This Policy applies to all users of the Service — whether you are an individual user, a business customer, or just visiting our website. By using the Service, you agree to the collection and use of information in accordance with this Policy.

We encourage you to read this Policy carefully. If you have any questions, please contact our privacy team at privacy@engageplatform.ai.

2. Data Controller

Cencorp Group acts as the data controller for personal information processed through the Service. This means we determine the purposes and means of processing your personal data.

If you are located in the European Economic Area (EEA), the United Kingdom, or other jurisdictions with specific data protection laws, your rights may include additional protections described in Section 10.

For all privacy-related enquiries or to exercise your rights, please contact: Email: privacy@engageplatform.ai Subject line: "Privacy Request – [Your Name]"

3. Information We Collect

We collect information in the following ways:

A. Information You Provide Directly: • Account registration details: name, email address, phone number, job title, and company name. • Profile information and preferences you set within the Service. • Payment information (processed securely by our third-party payment provider; we do not store full card details). • Communications you send us, including support requests, feedback, and survey responses. • Any content, documents, or files you upload to the Service.

B. Information Collected Automatically: • Log data: IP address, browser type and version, operating system, pages visited, time and date of visits, referring URLs. • Device identifiers and mobile advertising IDs when using our mobile applications. • Usage data: features used, actions taken, session duration, and interaction patterns within the Service. • Cookies and similar tracking technologies (see Section 8).

C. Information from Third Parties: • Single sign-on providers (e.g., Google, Microsoft) when you log in via those services. • Third-party integrations you connect to your Engage Account. • Publicly available sources for verification or enrichment purposes, where permitted by applicable law.

4. How We Use Your Information

We use the personal information we collect for the following purposes:

Service Delivery: To create and manage your Account, provide access to the features you have subscribed to, process payments, and fulfil our contractual obligations to you.

Service Improvement: To analyse usage patterns, identify bugs, conduct research and testing, and improve the performance, security, and user experience of the Service.

Communications: To send you transactional messages (account confirmations, invoices, security alerts), product updates, and — where you have opted in — marketing and promotional materials.

Customer Support: To respond to your enquiries, troubleshoot issues, and provide technical assistance.

Safety & Security: To detect, investigate, and prevent fraudulent transactions, abuse, violations of our Terms & Conditions, and other illegal or harmful activity.

Legal Compliance: To comply with applicable laws, regulations, legal processes, and enforceable governmental requests.

Analytics & Research: To generate aggregated, anonymised analytics about how our users interact with the Service. This information does not identify you personally.

5. Legal Basis for Processing (GDPR & UK GDPR)

If you are located in the EEA or the United Kingdom, we process your personal data under the following legal bases:

Contractual Necessity (Article 6(1)(b)): Processing is necessary to perform the contract we have with you — i.e., providing the Service you subscribed to.

Legitimate Interests (Article 6(1)(f)): Processing is necessary for our legitimate interests, such as improving the Service, preventing fraud, and ensuring security — provided these interests are not overridden by your rights.

Consent (Article 6(1)(a)): Where we rely on your consent (e.g., for marketing emails or optional analytics cookies), you may withdraw your consent at any time without affecting the lawfulness of processing prior to withdrawal.

Legal Obligation (Article 6(1)(c)): Processing is necessary to comply with a legal obligation, such as financial record-keeping requirements.

6. Sharing Your Information

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

We may share your information in the following limited circumstances:

Service Providers: We engage trusted third-party vendors (such as cloud hosting providers, payment processors, email delivery services, and analytics tools) to help operate the Service. These vendors are contractually obligated to process your data only on our instructions and to maintain appropriate security measures.

Business Transfers: In connection with a merger, acquisition, restructuring, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections described in this Policy.

Legal Requirements: We may disclose your information if required to do so by law, regulation, court order, or governmental authority, or if we believe disclosure is necessary to protect the rights, property, or safety of Engage, our users, or the public.

With Your Consent: We may share your information with third parties when you have given us your explicit consent to do so.

In all cases, we share only the minimum information necessary for the stated purpose.

7. International Data Transfers

Engage operates globally, and your personal information may be transferred to and processed in countries other than the one in which you reside. These countries may have data protection laws that differ from those in your country.

For transfers of personal data from the EEA or UK to countries not deemed adequate by the European Commission or UK ICO, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or equivalent mechanisms.

By using the Service, you acknowledge and agree to this transfer, storage, and processing of your information. If you have questions about our international transfer safeguards, contact us at privacy@engageplatform.ai.

8. Cookies & Tracking Technologies

We use cookies, web beacons, pixel tags, and similar technologies to collect information about your interactions with the Service and to personalise your experience.

Types of cookies we use:

• Essential Cookies: Strictly necessary for the Service to function (e.g., authentication, session management). These cannot be disabled. • Performance Cookies: Help us understand how users interact with the Service by collecting anonymous usage data (e.g., Google Analytics). • Functionality Cookies: Remember your preferences and settings to improve your experience. • Marketing Cookies: Used to deliver relevant advertisements and track campaign effectiveness (only where you have consented).

You can manage cookie preferences through your browser settings or our cookie consent tool. Disabling non-essential cookies may affect certain features of the Service.

For detailed information on the specific cookies we use and their purposes, please refer to our Cookie Policy, available at engageplatform.ai/cookies.

9. Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes described in this Policy, unless a longer retention period is required or permitted by law.

Account Data: Retained for the duration of your Account and for up to 90 days following account closure, after which it is permanently deleted or anonymised.

Financial Records: Retained for a minimum of 7 years to comply with tax and accounting obligations.

Communication Records: Support tickets and email correspondence retained for up to 3 years.

Analytics Data: Aggregated and anonymised, retained indefinitely.

Backup Data: May persist in encrypted backups for up to 180 days before being overwritten.

You may request deletion of your personal data at any time (see Section 10). We will action valid deletion requests within 30 days, subject to legal retention requirements.

10. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you. • Right to Rectification: Request correction of inaccurate or incomplete data. • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal retention obligations. • Right to Restriction: Request that we restrict processing of your data in certain circumstances. • Right to Data Portability: Receive your personal data in a structured, machine-readable format. • Right to Object: Object to processing based on our legitimate interests or for direct marketing. • Right to Withdraw Consent: Where processing is based on consent, withdraw it at any time without affecting prior lawful processing. • Right to Lodge a Complaint: Lodge a complaint with your local supervisory authority (e.g., the ICO in the UK, or your EEA member state's DPA).

To exercise any of these rights, please email privacy@engageplatform.ai with the subject line "Privacy Request". We will verify your identity and respond within 30 days (or 1 calendar month for GDPR requests). In complex cases, we may extend this period by up to two additional months, with notice.

11. Children's Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect or solicit personal information from anyone under 16. If we become aware that we have collected personal data from a child under 16 without verified parental consent, we will delete that information promptly.

If you believe we may have inadvertently collected information from a minor, please contact us immediately at privacy@engageplatform.ai.

12. Security

We implement and maintain appropriate technical and organisational security measures designed to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit (TLS 1.2+) and at rest (AES-256). • Role-based access controls and principle of least privilege. • Regular security assessments, penetration testing, and vulnerability management. • Multi-factor authentication for internal systems. • Audit logging and anomaly detection.

While we strive to use commercially acceptable means to protect your data, no method of electronic storage or transmission over the internet is 100% secure. We cannot guarantee absolute security. In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant authorities as required by applicable law.

13. Third-Party Links & Integrations

The Service may contain links to third-party websites and may integrate with external services. This Privacy Policy applies only to information collected through the Engage Service. We are not responsible for the privacy practices of third-party websites or services.

We encourage you to review the privacy policies of any third-party services you access through the Service. Your use of third-party services is at your own risk and is governed by their respective privacy policies.

14. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will:

• Post the updated Policy on this page with a revised "Last updated" date. • Notify you via email to the address associated with your Account. • Display a prominent notice within the Service for at least 14 days following the update.

We encourage you to review this Policy periodically. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Policy.

15. Contact & Data Protection Officer

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal data, please contact us:

Privacy Team Email: privacy@engageplatform.ai Subject: "Privacy Enquiry – [Your Name]"

Cencorp Group — Engage Platform Website: https://engageplatform.ai

We are committed to working with you to resolve any concerns about your privacy. If you are unsatisfied with our response, you have the right to lodge a complaint with your relevant data protection authority.