Renfluence - AI Influencer Marketing Platform
Login / Sign up

Privacy Policy

Valid from 08 October 2019

Last Updated: 01 September 2025

Introduction

Thank you for visiting the website of our Company under the name RENFLUENCE ADVERTISING SERVICES P.C. and the distinctive title RENFLUENCE P.C, based in Athens (Leoforos Kifisias 71), hereinafter referred to as the "Company", which acts as the Data Controller of your personal data that it collects and processes in the context of its activities when you visit or use its websites.

Before using our website, please read this Privacy Policy carefully.

The protection of your personal data is very important to our Company and in order to be in compliance with the requirements of Regulation (EU) 2016/679, we inform you with this Policy about the type of personal data we collect when you visit our website, the purpose and how we process and protect them, as well as your rights regarding your personal data.

When you voluntarily provide us with your personal information, such as your name, telephone number or email address, we treat this information with the strictest confidentiality. Subject to specific provisions of this Policy, no personal information is rented, sold, publicly posted or shared with other companies, organizations or websites.

This Policy is public and applies to all users of our website and to the collection of your personal data by our Company.

This Privacy Policy applies only to our website, our SaaS platform and Al modules. We are not responsible for the privacy practices of other websites that you visit through our website (in case you sign-in or log-in via Facebook) and we recommend that you read the Policy maintained by each third party website.

Definitions

As of 25 May 2018, following the repeal of Directive 95/46/EC, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter referred to as the "Regulation") on the protection of natural persons with regard to the processing of personal data and on the free movement of such data was implemented and by virtue of Law 4624/2019 the Regulation was incorporated into Greek law.

In accordance with the legislation governing the processing of personal data and in particular Article 4 of the Regulation and for the purposes of this document, the basic definitions used are understood as:

  • <personal data»: any information relating to an identified or identifiable natural person
  • <data subject»: an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  • <processing»: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
  • <Controller»: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
  • <Processor»: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;
  • <recipient»: a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
  • <consent»: any freely given by the data subject, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
  • <personal data breach»: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;

Data subjects

Renfluence collects and processes personal data from:

  • Website visitors (via cookies, contact forms, newsletter subscriptions).
  • Platform users, including:
    • influencers,
    • brands and agencies,
    • collaborators or service providers.
  • Business partners in the context of contractual relations.

Renfluence only cooperates with individuals above the age of 18. Proof of age may be required. The Company bears no liability if a user provides false or misleading information, including false date of birth.

Purposes for processing your personal data

We process your data for the following purposes:

  1. Website functionality: ensuring the smooth operation of our websites through the use of cookies.
  2. Platform operation: creating and managing accounts, providing access to SaaS and Al tools, enabling influencer-brand collaborations.
  3. Communication: responding to inquiries, requests and support questions.
  4. Marketing: sending newsletters, updates and promotional communications (with your explicit consent).
  5. Business services: delivering influencer marketing campaigns, generating analytics reports.
  6. Legal compliance: meeting tax, accounting, regulatory and judicial obligations.
  7. Security & fraud prevention: ensuring safe use of the platform and preventing misuse.

Legal basis for processing your personal data

The storing and processing of the above data by RENFLUENCE is lawful, according to Article 6 of the Regulation, as it is done with your explicit consent, which you provide us when a) you accept the use of cookies, b) you accept the processing of the data you voluntarily enter in the contact form and/or c) you give your consent to subscribe to the newsletter.

Your consent can be withdrawn at any time. In this context, if you decide that you no longer wish to receive our newsletter or no longer wish that we contact you, you must inform us by sending an email to our Company's postal address: [email protected].

With regard to performance cookies, the Cookies Policy provides for the possibility of rejecting or deleting them.

This withdrawal does not affect the lawfulness of the processing based on the consent granted before its withdrawal.

Types of personal data

The personal data that we collect from you and that we process, with your consent, in the context of our activities and for the above purposes, are categorized according to the respective way of collection and include the following:

  • Data when accepting Cookies

    When you visit our website, we use cookies with which we may collect non-personal user identification data from you, the so-called website usage data. "Cookies" are small text files containing information that are stored in the browser of a user's computer or mobile phone or other mobile device (e.g. tablet) when the user visits a website. This information may contain details such as the date, time and duration of the visit, language selection, sign in and log in attempts.

    If you sign-in or log-in via Facebook, it uses its own cookies to collect information about your activities on our website (third party cookies).

  • Data you enter in the Contact Form

    If you are interested in being contacted via the contact form available on our website, we will collect your full name, email address and contact telephone number (landline or mobile), with your explicit consent.

  • Data you enter in the Newsletter Form

    If you choose to subscribe to the newsletter, we will collect your full name and email address, with your explicit consent.

Third parties

Access to your data is restricted to authorized personnel and trusted third parties. Renfluence may share data with:

  • Technical service providers: hosting providers, cloud infrastructure, analytics and Al tool vendors.
  • Contracted processors: companies providing development, support or marketing services, operating under written agreements and GDPR compliance.
  • Social media platforms: if you log in via integrations (e.g., Meta, TikTok).
  • Public authorities: when legally required to comply with obligations or respond to lawful requests.

All processors act on our instructions and are bound by strict confidentiality and security obligations.

International Data Transfers

Given Renfluence's international activity, your data may be transferred outside the European Economic Area (EEA).

Transfers are performed only when:

  • the destination country has an adequacy decision by the European Commission, or
  • appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), or
  • another lawful derogation applies.

Renfluence ensures that such transfers respect the rights and freedoms of Data Subjects.

Data Retention

Renfluence retains your personal data for no longer than necessary for the purposes described in this Policy:

  • Contact forms: retained until your request is resolved, maximum one (1) year.
  • Newsletters: retained until consent withdrawal, maximum five (5) years (with periodic review).
  • Platform accounts: retained while account is active; upon deactivation, retained up to five (5) years for compliance.
  • Contracts & financial data: retained as legally required (up to ten (10) years under Greek tax law).

Upon expiry of these periods or withdrawal of consent, data are securely deleted or anonymized.

Your rights regarding the processing of your personal data

As Data Subjects, you have specific rights under the Regulation, which you may exercise upon your explicit request to our Company.

In this context, specific ways of facilitating your requests are provided for, to which we are obliged to respond. In particular, you may submit your requests either a) via the contact form available on our website or b) by sending an email to our postal address [email protected].

Since your request may be submitted by the above electronic means, our Company's response will be made accordingly in electronic form by sending an email, and may also be made by sending a printed communication.

In the event that your identity cannot be verified and in order to ensure the security of your data, we may take all reasonable measures and request additional information to identify and verify your identity before responding to any request pursuant to Article 11 par. 2 of the Regulation.

Your rights as a Data Subject are as follows:

  • Right to information:

    Pursuant to Article 13 of the Regulation, you have the right to receive information necessary to ensure fair and transparent processing of your personal data.

  • Right of access:

    In accordance with Article 15.1 of the Regulation, you have the right of access at any time to the following information concerning your personal data that we process, in accordance with the applicable legislation and free of charge. This means that you have the right to be informed of information concerning a) the type of data, b) the purposes of processing, c) the legal basis for processing, d) the relevant categories of data, e) the recipients or categories of recipients to whom the data have been or will be disclosed, f) the period of data storage or the criteria for determining it, g) the existence of a right of rectification, erasure, restriction, opposition, h) the right to lodge a complaint with the supervisory authority, i) any available information on the origin of the data, and j) any existence of automated decision-making.

    Our Company shall provide you with a copy of your processed data free of charge, however, if you request additional copies we may impose a reasonable fee for administrative costs, pursuant to Article 15 para. 3 of the Regulation.

  • Right of rectification

    Pursuant to Article 16 of the Regulation, you have the right to request the correction of any inaccurate data about you and the completion of such data by means of a supplementary declaration and our Company will promptly correct/complete such data.

  • Right to erasure ("right to be forgotten"):

    Pursuant to Article 17 par. According to Article 17.1 of the Regulation, you have the right to request the deletion of your personal data and our Company will proceed to their immediate deletion.

    However, in certain cases where there are legal obligations that require mandatory data retention, the deletion of data may be prohibited under Article 17(1) of the Regulation. 3 of the Regulation. In these cases, we will explain why we cannot delete your personal data and for how long.

  • Right to restriction of processing

    Pursuant to Article 18 of the Regulation, you have the right to request the restriction of the processing of your personal data by our Company, which will proceed to the immediate restriction of the processing, except for storage.

  • Right to data portability

    Pursuant to Article 20 of the Regulation, you have the right to request to receive your data in a structured format (i.e. in a readable form) and to have it transferred to another controller, and you also have the right to request direct transfer from our Company to the other controller.

    However, in certain cases, due to our Company's documented legal obligations, your request may not be accepted under Articles 17 and 20(1) and (2). 3 of the Regulation.

  • Right to object

    Pursuant to Article 21 of the Regulation, you have the right to object at any time to the processing of your data and our Company is obliged to no longer process your data, unless it demonstrates compelling legitimate grounds that override the interests of the data subject.

  • Right of complaint and redress

    Pursuant to Article 77 of the Regulation, you have the right to lodge a complaint with the competent supervisory authority, without prejudice to other administrative or judicial remedies under Articles 78 and 79 of the Regulation.

  • Right to compensation and liability

    Pursuant to Article 82 of the Regulation, if you suffer material or non-material damage as a result of a breach of the Regulation, you have the right to claim compensation, from our Company as Controller or from the Processor, to the extent of each party's liability, if it is proven that they are responsible for the event giving rise to the damage.

How to exercise your rights

To exercise your rights, you may submit a request to us at the Company's email address ([email protected]) with the title "Exercise of Rights" and we will examine it and reply to you as soon as possible.

Exceptions:

  • if you wish to withdraw your consent from receiving our newsletter you may do so by selecting the link "To unsubscribe from the newsletter mailing list click here" located at the bottom of each Newsletter Form.
  • If you wish us not to process your cookies you can deactivate the option from your browser setting.

To protect the confidentiality of your information, we will ask you to verify your identity before proceeding with any request you make under this Privacy Policy. If you have authorized a third party to make a request on your behalf, we will ask them to demonstrate that they have your permission to act for this purpose.

Processing safety

Our Company, as Data Controller, makes reasonable efforts to protect your data from any unauthorized access, alteration, destruction or breach of the data we hold. To this end, it implements appropriate technical and organisational measures to ensure that your data is processed lawfully and fairly in a transparent manner, on the basis of defined and legitimate purposes, under the principle of necessity and under legitimate processing bases. In other words, it has established legitimate safeguards to ensure the protection of your data.

These technical and organisational measures are defined in internal Policies of our Company and are also applied by the Processor. Pursuant to Articles 28 par. 3(c) and 32 of the Regulation, the Processor must take the necessary technical and organisational security measures during processing to ensure the integrity and the appropriate level of security against risks and to prevent any damage or loss, such as passwords, firewalls, detection and malware protection systems, use of pseudonymisation and anonymisation methods, encryption of systems, back-ups, encryption of back-ups, prevention of loss of network data.

The Contractor shall be bound by the confidentiality of the personal data which it processes on behalf of the Controller and may not disclose them to third parties. The individual terms of the processing assignment shall be determined by a relevant contract or other legal act between the Processor and the relevant Controller.

Please note that all the Data you provide is encrypted so that it cannot be decrypted or altered during its online transfer.

Amendments to this Policy

Our Company may amend this Privacy Policy at any time without notice and for this reason we consider it advisable to refer to it regularly. In this regard, please check the effective date at the beginning of this Policy. Any revision will take effect as soon as we post the revised Policy.

The most recent amendment will always be deemed to be the applicable Privacy Policy. We always indicate the date on which each amendment was posted and provide access to previously archived versions so that you can review them.

If we make material changes to this Policy that expand our right to use your personal data, we will provide prominent notice on our website and, when your consent to receive newsletters is in place, we may also notify you by email to provide you with the opportunity to re-consent or withdraw consent for future use of that data.

Applicable law

The applicable law is Greek law, as formulated in accordance with the General Data Protection Regulation 2016/679/EU, and in general the applicable national and European legislative and regulatory framework for the protection of personal data. The competent courts for any arising disputes related to your data are the Courts of Athens.

How to contact us

If you have any questions regarding this Policy or if you need assistance or clarification regarding the exercise or understanding of your privacy options, please contact our Company either via the contact form available on our website or by sending an email to [email protected].

Are you a creator?arrow