Regulatory Disclosures
December 2025
December 2025
(Version 1.1)
Introduction
This document provides a comprehensive disclosure of the regulatory status, business model, and compliance framework of GoGorilla Media and Technologies Group Ltd. It is intended to provide transparency regarding the Company’s operations, partner relationships, and the regulatory protections applicable to its services.
Our Business Model and Regulatory Status
Core Business Classification
GoGorilla Media and Technologies Group Ltd is a technology platform registered in England and Wales, specialising in the provision of performance marketing services. The Company is not a bank or a financial institution and is not directly authorised by the Financial Conduct Authority (FCA) for the provision of financial services. The business model is focused on technology platform development and innovation, with specialised, regulated services delivered through authorised partners.
What We Are:
Primary Activity: Technology platform providing performance marketing services.
Business Type: Digital services company with data processing capabilities.
Registration: England and Wales company registration.
Operational Scope: United Kingdom and European Union.
What We're Not:
Not a Bank: We don't provide banking services directly.
Not a Financial Institution: We're not directly regulated by the FCA for financial services.
Not a Payment Processor: We don't process payments directly.
Not a Lender: We don't provide credit or lending services.
Our Strategic Approach
Technology-First Model:
Innovation Focus: We concentrate on technology platform development and innovation.
Core Competencies: Performance marketing, platform development, customer experience.
Partner Integration: We integrate with regulated partners for specialised services.
Regulatory Efficiency: This model ensures appropriate expertise and regulation for each service.
Why This Model Works:
Specialisation: Each partner focuses on their area of expertise.
Regulation: Appropriate regulatory oversight for each service type.
Innovation: Freedom to innovate in technology and marketing.
Protection: Full regulatory protection for all services through authorised partners.
Financial Services Partner Disclosures
All financial services, including those offered under the GorillaCapital brand, are provided through fully authorised and regulated financial institutions. This partnership structure ensures that all such services are subject to the appropriate regulatory oversight and consumer protections.
Jurisdiction
Partner Institution
Authorisation Body
FCA Firm Reference No.
Services Provided
United Kingdom
Stripe Payments UK Limited
Financial Conduct Authority (FCA)
900461
Payment processing and Banking as a Service
European Union
Stripe Technology Europe, Limited
Central Bank of Ireland
C187865
Payment processing for EU clients
Clients receiving financial services through the Company’s platform are afforded the full consumer protection of the relevant regulatory body, including access to the Financial Ombudsman Service for eligible complaints in the UK.
UK Financial Services
Our UK Partner: Stripe Payments UK Limited
Company Status: Fully authorised UK financial institution.
FCA Authorisation: Firm Reference Number 900461.
Services Provided: Payment processing and Banking as a Service under GorillaCapital.
Regulatory Protection: Full FCA consumer protection applies to all services.
Relationship Type: Technology integration partner (not a subsidiary).
What This Means for You:
Full Protection: You receive full FCA regulatory protection
Authorised Services: All financial services are provided by an FCA-authorised institution
Consumer Rights: Full access to FCA consumer protection measures
Dispute Resolution: Access to Financial Ombudsman Service for eligible complaints
EU Financial Services
Our EU Partner: Stripe Technology Europe Limited
Company Status: Fully authorised EU financial institution.
Authorisation: Central Bank of Ireland (Firm Reference C187865).
Services Provided: Payment processing for EU clients.
Regulatory Protection: Full EU regulatory protection applies.
Relationship Type: Technology integration partner (not a subsidiary).
What This Means for You:
EU Protection: Full EU regulatory protection for all financial services.
Authorised Provider: Services provided by Central Bank of Ireland authorised institution.
Consumer Rights: Full EU consumer protection rights.
Regulatory Oversight: Ongoing supervision by Central Bank of Ireland.
Partnership Structure
How Our Partnerships Work:
Technology Integration: We provide the technology platform and user experience.
Service Delivery: Partners provide the actual regulated financial services.
Seamless Experience: Integrated experience while maintaining clear service provider identification.
Regulatory Compliance: Each partner maintains their own regulatory compliance.
Clear Separation:
Marketing Services: Provided directly by GoGorilla.
Financial Services: Provided by our regulated partners.
Technology Platform: Developed and maintained by GoGorilla.
Regulatory Oversight: Each service type has appropriate regulatory oversight.
Data Protection and Privacy Compliance
The Company operates in full compliance with the UK General Data Protection Regulation (UK GDPR) and the Privacy and Electronic Communications Regulations (PECR). A Data Protection Officer has been appointed (privacy@gogorilla.com), and a comprehensive lawful basis framework is maintained for all processing activities. All international data transfers are protected by Standard Contractual Clauses.
UK GDPR Compliance
Our Data Protection Status:
Data Controller Registration: Not required (below registration threshold).
Data Protection Officer: Appointed and contactable at privacy@gogorilla.com.
Lawful Basis Framework: Comprehensive assessment completed for all processing activities.
International Transfers: Standard Contractual Clauses implemented for all transfers.
Data Subject Rights: Full UK GDPR rights framework implemented.
What This Means:
Full Compliance: Complete compliance with UK data protection law.
Your Rights: Full access to all UK GDPR rights.
Professional Oversight: Dedicated Data Protection Officer managing compliance.
Secure Transfers: Appropriate safeguards for any international data transfers.
PECR Compliance
Electronic Marketing Compliance:
Email Marketing: Full PECR compliance for all marketing communications.
Consent Management: Comprehensive consent management systems.
Cookie Compliance: Full cookie consent management implemented.
Opt-Out Rights: Clear and easy opt-out mechanisms for all communications.
Telecommunications:
No Telecom Services: We don't provide telecommunications services.
Partner Services: Any telecom-related services provided by appropriate partners.
Compliance Coordination: Coordination with partners for any telecom compliance needs.
Advertising and Marketing Compliance
All advertising and marketing activities comply with the UK Code of Non-broadcast Advertising and Direct & Promotional Marketing (CAP Code) and Meta’s Advertising Policies. The Company is an authorised Meta Business Partner and adheres to strict content and targeting standards, including 18+ age restrictions for all financial service promotions. All marketing claims are substantiated by a comprehensive evidence framework.
Meta Advertising Partnership
Our Meta Status:
Partner Status: Authorised Meta Business Partner.
Compliance Framework: Full compliance with Meta advertising policies.
Age Targeting: Strict 18+ age targeting for all financial service promotions.
Content Standards: All advertising content meets Meta community standards.
What This Ensures:
Policy Compliance: All our Meta advertising meets platform requirements.
Appropriate Targeting: Age-appropriate targeting for all service types.
Quality Content: High-quality, compliant advertising content.
Consumer Protection: Additional layer of consumer protection through platform policies.
UK Advertising Standards
ASA Compliance:
Code Compliance: All marketing materials comply with ASA codes.
Financial Promotions: No direct financial promotions (partner services only).
Evidence Standards: All claims (including "world's first") substantiated by market research.
Complaint Handling: Comprehensive advertising complaint procedures.
Standards We Meet:
Truthful Advertising: All advertising claims are accurate and substantiated.
Clear Disclosures: Clear disclosure of service providers and relationships.
Consumer Protection: Advertising designed to protect consumer interests.
Professional Standards: High professional standards in all marketing communications.
Consumer Protection Measures
Service Transparency
Clear Information:
Pricing Transparency: All service pricing clearly disclosed upfront.
Service Descriptions: Comprehensive descriptions of all services provided.
Partner Disclosures: Clear disclosure of all partner relationships.
Performance Claims: All performance claims substantiated by evidence.
Full Disclosure:
Upfront Costs: All costs disclosed before you commit.
Service Limitations: Clear explanation of any service limitations.
Partner Roles: Clear explanation of who provides what services.
Terms and Conditions: Comprehensive and clearly written terms.
Customer Protection Framework
Complaint Resolution:
4-Step Process: Comprehensive 4-step complaint resolution process.
Multiple Channels: Various ways to raise complaints and concerns.
Timely Response: Defined response times for all complaint types.
Escalation Rights: Clear escalation paths including regulatory escalation.
Regulatory Protection:
FCA Protection: Full FCA protection for financial services.
Data Protection Rights: Full UK GDPR rights and protections.
Consumer Rights: Full UK consumer protection rights.
Ombudsman Access: Access to relevant ombudsman services.
Service Standards
Continuous Monitoring:
Service Level Agreements: Defined service levels for all services.
Performance Standards: Clear performance standards and metrics.
Quality Assurance: Regular quality assurance and improvement processes.
Customer Feedback: Regular collection and action on customer feedback.
Regulatory Relationship Management
Proactive Regulatory Engagement
Our Regulatory Relationships:
FCA Relationship: Regular communication regarding partner services and compliance.
ICO Relationship: Ongoing dialogue on data protection compliance.
ASA Relationship: Proactive engagement on advertising standards compliance.
Industry Bodies: Active participation in relevant industry associations.
Why This Matters:
Proactive Compliance: We stay ahead of regulatory requirements.
Industry Leadership: We contribute to industry best practices.
Regulatory Awareness: We're aware of regulatory developments before they affect you.
Compliance Excellence: We maintain the highest standards of regulatory compliance.
Compliance Monitoring
Regular Reviews:
Quarterly Reviews: Comprehensive compliance reviews across all regulatory areas.
External Audits: Annual external compliance audits by qualified professionals.
Staff Training: Comprehensive regulatory compliance training programmes.
Documentation: Comprehensive compliance documentation and evidence.
Continuous Improvement:
Monitoring Systems: Ongoing monitoring of compliance across all areas.
Best Practice Adoption: Regular adoption of new best practices.
Regulatory Updates: Prompt implementation of regulatory changes.
Performance Metrics: Regular measurement and improvement of compliance performance.
Consumer Protection
Multiple Layers of Protection
Regulatory Protection:
Financial Services: Full FCA/Central Bank of Ireland protection for financial services
Data Protection: Full UK GDPR protection for your personal data
Consumer Rights: Full UK consumer protection rights
Advertising Standards: Protection through advertising standards compliance
Operational Protection:
Service Standards: Defined service standards and performance metrics.
Complaint Resolution: Comprehensive complaint resolution procedures.
Quality Assurance: Regular quality assurance and improvement.
Transparency: Complete transparency about services and relationships.
Contact Us About Regulatory Matters
Compliance Questions
Email:
compliance@gogorilla.com
Subject:
Regulatory Compliance Question
Response Time:
Within 24 hours
For:
General compliance questions
Regulatory Concerns
Email:
legal@gogorilla.com
For:
Regulatory concerns, compliance issues, legal questions
Response Time:
Within 48 hours
Escalation:
Available to relevant regulators
General Information
Email:
info@gogorilla.com
For:
General questions about our regulatory status and compliance
Response Time:
Within 24 hours
Support:
Comprehensive information available
Emergency Contact
Available:
24/7 for urgent regulatory matters
Use For:
Urgent compliance issues, data breaches, regulatory emergencies
Response:
Immediate acknowledgment
Escalation:
Direct to senior management
Transparency builds trust. By providing complete disclosure of our regulatory status, partner relationships, and compliance measures, we ensure you have all the information you need to make informed decisions about our services.
Last Updated: December 2025
Version: 1.1
