Public personal data is visible on our platform, like your username, country, reviews, and any attached photos or videos.
Private personal data includes contact details, login info, IP address, device data, and anything not publicly shown.
Create an account
Write reviews or reply as a business
Connect social media accounts
Use our services
Contact our support team or participate in verification
Name, email, and password
Review history and star ratings
IP address and browser settings
Social media profile info (if connected)
Questions asked on business pages
Any info shared when responding to business requests
Business Users
We also collect business account data like your company name, replies to reviews, and verification or payment details (if applicable).
Third-Party Links
Our platform may link to external sites. Their privacy practices may differ, so check their policies.
How We Collect Your Personal Data
We mainly collect your personal data directly from you—when you create an account, leave reviews, interact with our platform, or open our emails. We also collect data automatically from your device, like your IP address and browser details. In some cases, we receive data from third parties, such as businesses sending review invitations or when you sign up through social media.
CertMeUp is the data controller for most data, like reviews you post or your user account info.
Businesses are data controllers for data related to review invitations or “Request Information” responses—they are responsible for handling that data.
CertMeUp acts as a data processor in these specific cases.
Provide and improve our services
Personalize your experience
Respond to support requests
Send newsletters
Detect fraud and moderate content
Train staff and improve quality
Comply with legal obligations
Notify you of activity related to your reviews or business account
We may also use automation, including AI and machine learning, to help with these tasks.
Legal Grounds for Processing
We process your data based on:
Your contract with us
Our legal obligations
Legitimate interests, like improving our platform
Your consent (e.g. for cookies)
Public interest or legal claims
You can withdraw consent or object to certain uses of your data at any time.
1. Public Personal Data
Your public information—like your username, reviews, and business replies—is visible to anyone visiting CertMeUp. This also includes what you choose to show on your profile.
2. Private Personal Data
Only authorized CertMeUp employees can access your private data and only when necessary for their work. If you were invited to write a review by a business, they may access your info through their CertMeUp account and match it to your review.
3. Third-Party Access (Public Data Only)
We allow selected third parties to access public data to increase the visibility of reviews. These include:
Search engines and AI systems
Businesses you reviewed
Online platforms like price comparison or shopping sites
App partners
Social networks
Other licensed third parties
If you respond to a business’s request for more info, we share your response with that business. We won’t share any documents you upload unless it's basic info like a reference number.
4. Data Processors
We work with trusted third-party service providers (data processors) who help operate our platform. They process your data only on our instructions and under strict security measures. Some may be located outside your country, but we use legal safeguards to ensure your data stays protected, especially for EU residents.
5. Legal and Safety Disclosures
We may also share your data when required to:
Comply with laws, legal actions, or government requests
Enforce our terms and protect our operations
Prevent fraud, misuse, or illegal activity
Support mergers, sales, or other business transitions
We store your personal data only as long as necessary—depending on why it was collected and whether we still have a legal or legitimate reason to keep it. Once no longer needed, we delete or anonymize it.
If you delete your account, we may still retain some data for legal, security, or fraud prevention reasons.
We use technical, organizational, and administrative safeguards to protect your personal data. While we work hard to secure our systems, no online platform can guarantee complete security—so we advise against sending sensitive information by email.
We use cookies, pixels, and tracking codes to improve and personalize your experience, track usage, and support advertising.
Cookies are small text files that store preferences and settings.
Pixels are invisible images used to track how you interact with emails or pages.
Tracking codes help measure website visits and user actions.
See our GDPR/Cookie Policy for full details.
If we hold personal data about you, you have the following rights:
Access: Request a copy of the data we hold.
Correct or Delete: Edit or remove your personal info via your account, or by emailing privacy@certmeup.com.
Object or Limit Processing: You can object to how we use your data, especially for marketing or third-party sharing. Use this form to opt out.
Withdraw Consent: If we process your data based on your consent, you can revoke it at any time.
Note: Some rights may be limited if your request affects others’ privacy or legal obligations. For unresolved concerns, you can contact a data protection authority.
CertMeUp is not intended for users under 18, and we don’t knowingly collect their personal data. If you believe a child under 18 has submitted data, please contact us.
We may update this Privacy Policy over time due to changes in laws or our services. Updates will be posted here, and significant changes affecting your rights will be communicated directly (e.g., via email or on our platform). Continued use of CertMeUp means you accept the updated policy.