Privacy Policy

This Privacy Policy describes how Place & Pay Media collects, uses, and protects your personal data when you use our services. We are committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner, in compliance with General Data Protection Regulation (GDPR) and applicable data protection laws.

1. Data Controller

Place & Pay Media is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please contact us.

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

• Contact Information: Name, email address, phone number, and business address
• Business Information: Company name, job title, and business details
• Payment Information: Billing details and payment method information (processed securely by our payment providers)
• Communication Data: Records of our correspondence with you
• Technical Data: IP address, browser type, and device information when you visit our website

3. How We Collect Your Data

We collect personal data through:

• Direct interactions when you contact us or book a strategy call
• When you fill out forms on our website
• Through email, phone, or other communications
• Automated technologies such as cookies when you browse our website

4. Legal Basis for Processing

We process your personal data on the following legal bases:

• Contract: Processing is necessary for the performance of our contract with you
• Legitimate Interests: Processing is necessary for our legitimate business interests, provided your rights do not override these interests
• Consent: Where you have given us explicit consent to process your data for specific purposes
• Legal Obligation: Where we are required to process data to comply with legal obligations

5. How We Use Your Personal Data

We use your personal data for the following purposes:

• To provide our PR and media placement services
• To communicate with you about your account and our services
• To process payments and send invoices
• To improve our website and services
• To send you marketing communications (only with your consent)
• To comply with legal and regulatory obligations

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Typically, we retain data for:

• Active clients: Duration of the business relationship plus 7 years
• Prospective clients: 2 years from last contact
• Website visitors: 26 months

7. Your Data Protection Rights

Under GDPR, you have the following rights:

• Right to Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restrict Processing: Request limitation of processing
• Right to Data Portability: Request transfer of your data to another controller
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us. We will respond to your request within one month.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Access controls and authentication procedures
• Regular security assessments
• Staff training on data protection

9. Data Sharing and Third Parties

We may share your personal data with:

• Service Providers: Payment processors, cloud storage providers, and IT service providers who process data on our behalf
• Media Partners: Editors and publications where necessary to secure your media placement (with your consent)
• Legal Authorities: When required by law or to protect our legal rights

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes.

10. International Data Transfers

We primarily process data within the European Economic Area (EEA). If we transfer your personal data outside the EEA, we ensure appropriate safeguards are in place, such as:

• Transfer to countries with adequacy decisions
• Standard Contractual Clauses approved by the European Commission
• Binding Corporate Rules

11. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience. We use privacy-friendly anonymous page view measurement for aggregate traffic statistics, and we only enable optional analytics cookies for deeper interaction tracking when you provide consent. When analytics is enabled, we may also process attribution identifiers that you provide (for example through forms, campaign links, or booking flows) to measure marketing and conversion performance. You can control optional cookies through our cookie preferences panel and browser settings. For more information, please see our Cookie Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, or if you wish to exercise your data protection rights, please contact us.

Last Updated: April 15, 2026