Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Terms of Service
January 2023
April 2022
February 2021
June 2020
January 2026
January 2026
(Version 1.1)
Privacy Policy
Privacy Policy
About This Agreement
This Terms of Service agreement ("Agreement") is effective as of the date of acceptance during the Stripe checkout process. It governs the relationship between GoGorilla.com and the Client or Reseller. By completing a purchase, you agree to be bound by this Agreement.
BETWEEN:
GoGorilla.com (a trading name of GoGorilla Media and Technologies Group Ltd), a company registered in England and Wales under company number 15885866, whose registered office is at 167-169 Great Portland Street, 5th Floor, London, W1W 5PF ("GoGorilla.com"); and
The Client or Reseller who accepts these terms by completing a purchase or payment through Stripe (the "Client").
Definitions and Interpretation
In this Agreement, unless the context otherwise requires, the following words and expressions shall have the following meanings:
Legal Basis
When It Applies
Agreement
This Terms of Service.
Services
The performance marketing and related services to be provided by GoGorilla.com, as detailed in the separate Service Level Agreement (SLA).
Commitment Period
The initial minimum term (e.g., 3, 6, or 12 months) selected by the Client during the checkout process, during which the Client commits to receiving the Services.
Monthly Rolling Contract
A subscription arrangement that automatically renews each calendar month following the end of the initial Commitment Period.
Fees
The fees payable by the Client for the Services, as presented during the Stripe checkout process and detailed in the SLA.
Confidential Information
Any information disclosed by one party to the other that is marked as confidential or would reasonably be considered confidential.
Intellectual Property Rights
Patents, rights to inventions, copyright, trademarks, and all other intellectual property rights, whether registered or unregistered.
Deliverables
The final work product and materials created by GoGorilla.com specifically for the Client as part of the Services, such as final ad copy, campaign reports, and creative assets.
GoGorilla IP
All pre-existing intellectual property owned by or licensed to GoGorilla.com, including its methodologies, software, tools, and the GorillaMatrix® platform.
Term and Termination
This Agreement shall commence upon acceptance and shall continue for the duration of the initial Commitment Period selected by the Client.
Upon completion of the initial Commitment Period, this Agreement shall automatically renew on a Monthly Rolling Contract basis, unless terminated by either party in accordance with this Agreement.
Either party may terminate this Agreement with immediate effect by giving written notice to the other party if:
the other party commits a material breach of any term of this Agreement and (if such a breach is remediable) fails to remedy that breach within 14 days of being notified in writing to do so;
the other party takes any step or action in connection with its entering administration, provisional liquidation, or any composition or arrangement with its creditors.
Upon termination, the Client shall remain liable for all Fees accrued up to the date of termination, including any discount adjustments as described in Section 10.
Fees and Payment
In consideration of the provision of the Services, the Client shall pay GoGorilla.com the Fees as presented during the Stripe checkout process.
All amounts payable by the Client under this Agreement are exclusive of amounts in respect of value added tax chargeable for the time being (VAT).
The Client authorises GoGorilla.com to charge the provided payment method via Stripe for all setup fees, recurring monthly fees, and project-based fees as they become due.
Late Payment: If the Client fails to pay any invoice by the due date, GoGorilla.com reserves the right to suspend Services until payment is received, without prejudice to any other rights or remedies.
Intellectual Property Rights
Ownership of Deliverables: Upon full payment of all associated Fees, ownership of all Intellectual Property Rights in the Deliverables shall transfer to the Client.
Ownership of GoGorilla IP: GoGorilla.com shall at all times retain ownership of all GoGorilla IP. GoGorilla.com grants the Client a non-exclusive, non-transferable, royalty-free licence to use the GoGorilla IP to the extent necessary to make use of the Services and the Deliverables for the duration of this Agreement.
Client Materials: The Client shall retain ownership of all intellectual property provided to GoGorilla.com for use in connection with the Services.
Confidentiality
Each party undertakes that it shall not at any time disclose to any person any Confidential Information concerning the business, affairs, customers, clients, or suppliers of the other party, except as permitted below.
Each party may disclose the other party's Confidential Information:
to its employees, officers, representatives, or advisers who need to know such information for the purposes of carrying out the party's obligations under this Agreement;
as may be required by law, a court of competent jurisdiction, or any governmental or regulatory authority;
to the extent the information becomes publicly available through no breach of this Agreement.
Case Studies and Marketing: GoGorilla.com shall not use the Client's name, logo, or performance data in any case studies, marketing materials, or publicity without obtaining the Client's explicit prior written consent.
Warranties and Disclaimers
Warranty of Professional Services: GoGorilla.com warrants that it will provide the Services with reasonable care and skill, in accordance with industry best practices.
No Guarantee of Results: The Client acknowledges that GoGorilla.com cannot and does not guarantee any specific results, outcomes, return on investment (ROI), or revenue growth from the provision of the Services.
Cybersecurity Disclaimer: GoGorilla.com shall not be liable for any loss or damage suffered by the Client arising out of or in connection with any cybersecurity breach, virus, malicious attack, or data loss affecting the Client's systems, unless such breach is caused directly by GoGorilla.com's gross negligence or wilful misconduct.
Third-Party Platform Reliance: The Services depend on third-party platforms (e.g., Google, Meta). GoGorilla.com is not responsible for platform outages, policy changes, or other actions taken by third-party platforms beyond its reasonable control.
Limitation of Liability
Nothing in this Agreement shall limit or exclude GoGorilla.com's liability for death or personal injury caused by its negligence, fraud, or fraudulent misrepresentation.
Subject to the above, GoGorilla.com's total liability to the Client, whether in contract, tort (including negligence), for breach of statutory duty, or otherwise, arising under or in connection with this Agreement shall be limited to the total Fees paid by the Client under this Agreement in the 12 months preceding the date on which the claim arose, or £10,000, whichever is greater.
In no event shall either party be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of profits, revenue, data, or business opportunity.
Data Protection and Privacy
Both parties shall comply with all applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR). The specific terms governing data processing are detailed in the Data Processing Addendum (DPA), which forms part of the Service Level Agreement (SLA).
Regulatory Compliance
GoGorilla.com shall comply with all applicable laws and regulations in the provision of its Services.
The Client is responsible for ensuring that all content, claims, and marketing materials provided to GoGorilla.com comply with applicable laws and regulations, including advertising standards and consumer protection laws.
FCA Disclaimer: GoGorilla Media and Technologies Group Ltd is not a regulated entity by the Financial Conduct Authority (FCA). Any financial services, advice, or regulated activities are provided through appropriately authorised and disclosed third-party partners.
Cancellation, Downgrade, and Refund Policy
The Client may request to cancel or downgrade their subscription at any time with a 14-day notice period. Specifically:
Cancellation: The Client may cancel any Service by providing 14 days' written notice. Cancellation will take effect 14 days after notification or at the end of the current billing period, whichever is later.
Downgrade: The Client may downgrade to a lower Service tier or reduce the scope of Services. The new pricing will take effect from the next billing cycle following the 14-day notice period.
Upgrade: The Client may upgrade to a higher Service tier or add additional Services at any time. Upgrades will take effect immediately, with pro-rata billing applied where applicable.
Commitment-Based Discounts and Early Cancellation: Clients who select a Commitment Period (e.g., 6 or 12 months) receive a discounted rate. If the Client cancels before the end of the Commitment Period, the discount will be recalculated to reflect the actual length of service. Any difference between the discounted fees paid and the fees that would have been due at the standard, non-discounted rate for the shorter period will be charged and settled on the final invoice. This is a fair value adjustment, not a penalty.
No Exit Fees: There are no early termination fees or cancellation penalties beyond the discount adjustment described above.
To cancel or downgrade, the Client must provide written notice by sending an email to info@gogorilla.com.
Non-Refundable Items
The following items are non-refundable under all circumstances:
Setup fees
Fees for Services already delivered
Project-based Services once commenced
Reseller Terms
Resellers operate on a month-to-month basis with GoGorilla.com and may adjust service levels at any time with 14-day notice. Resellers are solely responsible for the terms, pricing, and commitments they offer to their own end clients. GoGorilla.com has no direct contractual relationship with reseller end clients.
General Provisions
Force Majeure: Neither party shall be in breach of this Agreement nor liable for delay in performing its obligations if such delay or failure results from events beyond its reasonable control.
Entire Agreement: This Agreement, together with the Service Level Agreement (SLA), constitutes the entire agreement between the parties.
Amendment: This Agreement may only be amended by a written agreement signed by both parties.
Governing Law and Jurisdiction: This Agreement shall be governed by the law of England and Wales, and the courts of England and Wales shall have exclusive jurisdiction.
Notices: Any notice required under this Agreement shall be in writing and delivered personally, by email (with read receipt), or sent by registered post to the address specified by each party.
Investor and Fundraising Services
Investor Portals: Access to and use of any GoGorilla Investor Portal is subject to the specific terms and conditions presented upon portal registration. GoGorilla.com provides the portal as a technology service and is not a party to any investment transaction.
Fundraising Support: GoGorilla.com provides strategic marketing and advisory services to support a Client's fundraising efforts. GoGorilla.com is not a broker-dealer, does not engage in underwriting, and does not receive transaction-based compensation. All fundraising activities are the sole responsibility of the Client.
This Privacy Policy forms part of GoGorilla's commitment to transparency and data protection.
Last Updated: December 2025
Version: 1.1
Core Services
Clients
Company
Phone
info@gogorilla.com
United Kingdom
!
[1] ‘World’s First’
Claim
has been
independently
verified by a
third-party
legal representative.
Learn
more
Core Services
United Kingdom
[1] ‘World’s First’
Claim
has been
independently
verified by a
third-party
legal representative.
Learn
more
Pricing
Core Services
Sprints
Agency & Talent Solution
FinTech Platform
Clients
Capital
Company
Phone
info@gogorilla.com
United Kingdom
[1] ‘World’s First’
Claim
has been
independently
verified by a
third-party
legal representative.
Learn
more
Core Services
Clients
Company
Phone
info@gogorilla.com
United Kingdom
[1] ‘World’s First’
Claim
has been
independently
verified by a
third-party
legal representative.
Learn
more
Pricing
Core Services
Sprints
Agency & Talent Solution
FinTech Platform
Clients
Capital
Company
[1] ‘World’s First’
Claim
has been
independently
verified by a
third-party
legal representative.
Learn
more
Phone
info@gogorilla.com
Privacy Policy
December 2025
December 2025
(Version 1.1)
Introduction
This Privacy Policy explains how GoGorilla Media and Technologies Group Ltd collects, uses, and protects personal data. As the world's first performance marketing company built on a FinTech platform, the Company is committed to upholding the highest standards of data protection and privacy in all its operations.
Data Controller
GoGorilla Media and Technologies Group Ltd is the data controller responsible for yourpersonal data. We're a UK technology company that operates an innovative platformcombining performance marketing with embedded financial technology and specialisedmarketing services.
Company Details
Name:
GoGorilla Media and Technologies Group Ltd
Registration:
England and Wales
Business Model:
Performance marketing with optional FinTech integration
What We Do:
Help businesses grow through smart marketing and optional financial tools
Your Privacy Team
Data Protection Officer:
privacy@gogorilla.com
Privacy Questions:
privacy@gogorilla.com
Response Time:
We aim to respond within 48 hours
Our Unique Approach
We operate through two main business lines:
1. Direct Client Services: SMBs and enterprises across all industries seeking direct performance marketing services
2. Reseller Services (White Label): Agencies and freelancers who resell GoGorilla services under their own brand
Both business lines offer optional enhancements through:
• GorillaCapital: Banking as a Service for business growth acceleration
• Sprints: Specialised marketing services including content creation and 3D animation
Personal Data Collection
Personal data is collected to provide the Company’s innovative performance marketing and strategic advisory services effectively. Here's exactly what we collect and why:
Data category
Data collected
Purpose
Legal basis
Account and profile data
Name, username, title, contact information, authentication credentials
Account management, personalisation, platform access
Contract performance
Financial and transaction data
Payment information, transaction records, financial services application data
Provision of services through our regulated partners
Contract performance
Marketing and communications data
Marketing consent records, email marketing data, campaign performance data
Direct marketing, service improvement
Legitimate interests or consent
Technical and usage data
IP address, browser type, platform usage analytics, log files
Platform functionality, security, service optimisation
Legitimate interests
Legal and compliance data
Regulatory reporting data, audit records, data subject rights requests
Legal compliance, regulatory obligations
Legal obligation
Data Protection Principles
All our data processing activities adhere strictly to the data protection principles under Article 5 of the UK GDPR:
Lawfulness, Fairness, and Transparency: All processing is conducted lawfully and transparently. You always know what we're doing with your data.
Purpose Limitation: We collect data for specific, clear purposes, and don't use it for anything else without telling you.
Data Minimisation: We only collect and process data that's actually necessary for providing your service.
Accuracy: We keep your data accurate and up to date. You can always update your information.
Storage Limitation: We only keep your data as long as necessary for the purposes we collected it for.
Integrity and Confidentiality: We implement strong security measures to protect your data from unauthorised access.
Accountability: We demonstrate our compliance through comprehensive documentation and regular monitoring.
Use of Personal Data
We use your personal data to deliver our pioneering marketing-fintech platform and create shared success. Every use of your data is designed to benefit you and enhance your experience.
Primary Uses of Your Data
Category
Purpose
Platform Service Delivery
Providing access to our marketing-fintech tools and dashboard
Financial Service Facilitation
Connecting you with regulated financial services through our partners (optional GorillaCapital services)
Performance Analytics
Generating insights to optimise your marketing performance
Customer Support
Providing responsive, helpful support when you need it
Security and Fraud Prevention
Protecting your account and data from unauthorised access
Specialised Marketing Services
Delivering Sprints services, including content and 3D animation
Legal Bases for Processing
Legal Basis
When It Applies
Illustrative Examples
Contract Performance
Data is needed to provide the services agreed upon
Platform access, payment processing, customer support
Legitimate Interests
A legitimate business reason exists that does not override individual rights
Fraud prevention, analytics, direct marketing to existing clients
Legal Obligation
The law requires the processing of data
Regulatory reporting, tax obligations, law-enforcement cooperation
Consent
Specific agreement has been given for the processing
Marketing communications to prospects, optional service features
Data Sharing And Disclosures
Data is shared only when necessary to provide services or when required by law.
Strategic Service Partners
Necessary data is shared with strategic service partners to provide secure, compliant services:
For UK Users: Stripe Payments UK Limited (FCA Authorised: 900461)
For EU Users: Stripe Technology Europe Limited (Central Bank of Ireland: C187865)
Service Integration: Seamless platform experience with clear disclosure of service providers.
Consumer Protection: Full regulatory protection through authorised partners.
Technology Service Providers
Carefully selected technology service providers are engaged to deliver platform services:
• Cloud Infrastructure Providers: Platform hosting and infrastructure
• Analytics and Marketing Platforms: Data analytics and marketing automation
• Security Service Providers: Fraud prevention and security monitoring
All technology partners are bound by strict data processing agreements and security requirements.
Legal and Regulatory Sharing
Personal data may be shared when required by law or to protect legitimate interests:
Regulatory authorities for compliance reporting
Law enforcement agencies when legally required
Legal advisors for professional advice
Auditors for compliance verification
Your Data Security
Multiple layers of protection are implemented to ensure data security.
Technical Measures
• Encryption: Data is encrypted both in transit and at rest
• Access Controls: Only authorised personnel can access personal data
• Secure Transmission: All data transfers use secure protocols
• Regular Security Assessments: Ongoing monitoring and testing
Organisational Measures
• Staff Training: Comprehensive training for all staff who handle personal data
• Confidentiality Agreements: All personnel are bound by strict confidentiality obligations
• Security Policies: Comprehensive security policies and procedures
• Incident Response: Rapid response procedures for any security incidents
Privacy by Design
Privacy protection is built into systems from the ground up:
Default Settings: Maximum privacy protection by default
Regular Reviews: Continuous improvement of privacy measures
Technical Safeguards: Built-in privacy protections in all our systems
Contact Information
We're here to help with any questions about your privacy or data rights.
Privacy Questions
Email:
privacy@gogorilla.com
Response:
Within 48 hours
For:
General privacy inquiries, policy questions
Data Protection Officer
Email:
privacy@gogorilla.com
For:
Data subject rights requests, privacy concerns
General Contact
Email:
info@gogorilla.com
Website:
www.gogorilla.com
Hours:
Monday-Friday, 9:00 AM - 6:00 PM GMT
This Privacy Policy is part of GoGorilla's commitment to transparency and your success. We believe that protecting your privacy is essential to building the trust that drives mutual success.
Last Updated: December 2025
Version: 1.1
Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Privacy Policy
January 2023
April 2022
February 2021
June 2020
December 2025
December 2025
(Version 1.1)
Privacy Policy
Privacy Policy
Introduction
This Privacy Policy explains how GoGorilla Media and Technologies Group Ltd collects, uses, and protects personal data. As the world's first performance marketing company built on a FinTech platform, the Company is committed to upholding the highest standards of data protection and privacy in all its operations.
Personal Data Collection
Personal data is collected to provide the Company’s innovative performance marketing and strategic advisory services effectively.Here's exactly what we collect and why:
Company Details
Name:
GoGorilla Media and Technologies Group Ltd
Registration:
England and Wales
Business Model:
Performance marketing with optional FinTech integration
What We Do:
Help businesses grow through smart marketing and optional financial tools
Your Privacy Team
Data Protection Officer:
privacy@gogorilla.com
Privacy Questions:
privacy@gogorilla.com
Response Time:
We aim to respond within 48 hours
Our Unique Approach
We operate through two main business lines:
1. Direct Client Services: SMBs and enterprises across all industries seeking direct performance marketing services
2. Reseller Services (White Label): Agencies and freelancers who resell GoGorilla services under their own brand
Both business lines offer optional enhancements through:
GorillaCapital: Banking as a Service for business growth acceleration
Sprints: Specialised marketing services including content creation and 3D animation
Personal Data Collection
Personal data is collected to provide the Company’s innovative performance marketing and strategic advisory services effectively.Here's exactly what we collect and why:
Data category
Data collected
Purpose
Legal basis
Account and profile data
Name, username, title, contact information, authentication credentials
Account management, personalisation, platform access
Contract performance
Financial and transaction data
Payment information, transaction records, financial services application data
Provision of services through our regulated partners
Contract performance
Marketing and communications data
Marketing consent records, email marketing data, campaign performance data
Direct marketing, service improvement
Legitimate interests or consent
Technical and usage data
IP address, browser type, platform usage analytics, log files
Platform functionality, security, service optimisation
Legitimate interests
Legal and compliance data
Regulatory reporting data, audit records, data subject rights requests
Legal compliance, regulatory obligations
Legal obligation
Data Protection Principles
All our data processing activities adhere strictly to the data protection principles under Article 5 of the UK GDPR:
Lawfulness, Fairness, and Transparency: All processing is conducted lawfully and transparently. You always know what we're doing with your data.
Purpose Limitation: We collect data for specific, clear purposes, and don't use it for anything else without telling you.
Data Minimisation: We only collect and process data that's actually necessary for providing your service.
Accuracy: We keep your data accurate and up to date. You can always update your information.
Storage Limitation: We only keep your data as long as necessary for the purposes we collected it for.
Integrity and Confidentiality: We implement strong security measures to protect your data from unauthorised access.
Accountability: We demonstrate our compliance through comprehensive documentation and regular monitoring.
Use of Personal Data
We use your personal data to deliver our pioneering marketing-fintech platform and create shared success. Every use of your data is designed to benefit you and enhance your experience.
Primary Uses of Your Data
Category
Purpose
Platform Service Delivery
Providing access to our marketing-fintech tools and dashboard
Financial Service Facilitation
Connecting you with regulated financial services through our partners (optional GorillaCapital services)
Performance Analytics
Generating insights to optimise your marketing performance
Customer Support
Providing responsive, helpful support when you need it
Security and Fraud Prevention
Protecting your account and data from unauthorised access
Specialised Marketing Services
Delivering Sprints services, including content creation and 3D animation
Legal Bases for Processing
Legal Basis
When It Applies
Illustrative Examples
Contract Performance
Data is needed to provide the services agreed upon
Platform access, payment processing, customer support
Legitimate Interests
A legitimate business reason exist that does not override individual rights
Fraud prevention, analytics, direct marketing to existing clients
Legal Obligation
The law requires the processing of data
Regulatory reporting, tax obligations, law-enforcement cooperation
Consent
Specific agreement has been given for the processing
Marketing communications to prospects, optional service features
Data Sharing And Disclosures
Data is shared only when necessary to provide services or when required by law.
Strategic Service Partners
Necessary data is shared with strategic service partners to provide secure, compliant services:
For UK Users: Stripe Payments UK Limited (FCA Authorised: 900461)
For EU Users: Stripe Technology Europe Limited (Central Bank of Ireland: C187865)
Service Integration: Seamless platform experience with clear disclosure of service providers.
Consumer Protection: Full regulatory protection through authorised partners.
Technology Service Providers
Carefully selected technology service providers are engaged to deliver platform services:
Cloud Infrastructure Providers: Platform hosting and infrastructure
Analytics and Marketing Platforms: Data analytics and marketing automation
Security Service Providers: Fraud prevention and security monitoring
All technology partners are bound by strict data processing agreements and security requirements.
Legal and Regulatory Sharing
Personal data may be shared when required by law or to protect legitimate interests:
Regulatory authorities for compliance reporting
Law enforcement agencies when legally required
Legal advisors for professional advice
Auditors for compliance verification
Your Data Security
Multiple layers of protection are implemented to ensure data security.
Technical Measures
Encryption: Data is encrypted both in transit and at rest
Access Controls: Only authorised personnel can access personal data
Secure Transmission: All data transfers use secure protocols
Regular Security Assessments: Ongoing monitoring and testing
Organisational Measures
Staff Training: Comprehensive training for all staff who handle personal data
Confidentiality Agreements: All personnel are bound by strict confidentiality obligations
Security Policies: Comprehensive security policies and procedures
Incident Response: Rapid response procedures for any security incidents
Privacy by Design
Privacy protection is built into systems from the ground up:
Default Settings: Maximum privacy protection by default
Regular Reviews: Continuous improvement of privacy measures
Technical Safeguards: Built-in privacy protections in all our systems
Contact Information
We're here to help with any questions about your privacy or data rights.
Privacy Questions
Email:
privacy@gogorilla.com
Response:
Within 48 hours
For:
General privacy inquiries, policy questions
Data Protection Officer
Email:
privacy@gogorilla.com
For:
Data subject rights requests, privacy concerns
General Contact
Email:
info@gogorilla.com
Website:
www.gogorilla.com
Hours:
Monday-Friday, 9:00 AM - 6:00 PM GMT
This Privacy Policy is part of GoGorilla's commitment to transparency and your success. We believe that protecting your privacy is essential to building the trust that drives mutual success.
Last Updated: December 2025
Version: 1.1
Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Privacy & Data Protection
Marketing And Advertising Compliance
Business And Legal
Contact And Support
Privacy Policy
January 2023
April 2022
February 2021
June 2020
December 2025
December 2025
(Version 1.1)
Privacy Policy
Privacy Policy
Introduction
This Privacy Policy explains how GoGorilla Media and Technologies Group Ltd collects, uses, and protects personal data. As the world's first performance marketing company built on a FinTech platform, the Company is committed to upholding the highest standards of data protection and privacy in all its operations.
Personal Data Collection
Personal data is collected to provide the Company’s innovative performance marketing and strategic advisory services effectively.Here's exactly what we collect and why:
Company Details
Name:
GoGorilla Media and Technologies Group Ltd
Registration:
England and Wales
Business Model:
Performance marketing with optional FinTech integration
What We Do:
Help businesses grow through smart marketing and optional financial tools
Your Privacy Team
Data Protection Officer:
privacy@gogorilla.com
Privacy Questions:
privacy@gogorilla.com
Response Time:
We aim to respond within 48 hours
Our Unique Approach
We operate through two main business lines:
1. Direct Client Services: SMBs and enterprises across all industries seeking direct performance marketing services
2. Reseller Services (White Label): Agencies and freelancers who resell GoGorilla services under their own brand
Both business lines offer optional enhancements through:
GorillaCapital: Banking as a Service for business growth acceleration
Sprints: Specialised marketing services including content creation and 3D animation
Personal Data Collection
Personal data is collected to provide the Company’s innovative performance marketing and strategic advisory services effectively.Here's exactly what we collect and why:
Data category
Data collected
Purpose
Legal basis
Account and profile data
Name, username, title, contact information, authentication credentials
Account management, personalisation, platform access
Contract performance
Financial and transaction data
Payment information, transaction records, financial services application data
Provision of services through our regulated partners
Contract performance
Marketing and communications data
Marketing consent records, email marketing data, campaign performance data
Direct marketing, service improvement
Legitimate interests or consent
Technical and usage data
IP address, browser type, platform usage analytics, log files
Platform functionality, security, service optimisation
Legitimate interests
Legal and compliance data
Regulatory reporting data, audit records, data subject rights requests
Legal compliance, regulatory obligations
Legal obligation
Data Protection Principles
All our data processing activities adhere strictly to the data protection principles under Article 5 of the UK GDPR:
Lawfulness, Fairness, and Transparency: All processing is conducted lawfully and transparently. You always know what we're doing with your data.
Purpose Limitation: We collect data for specific, clear purposes, and don't use it for anything else without telling you.
Data Minimisation: We only collect and process data that's actually necessary for providing your service.
Accuracy: We keep your data accurate and up to date. You can always update your information.
Storage Limitation: We only keep your data as long as necessary for the purposes we collected it for.
Integrity and Confidentiality: We implement strong security measures to protect your data from unauthorised access.
Accountability: We demonstrate our compliance through comprehensive documentation and regular monitoring.
Use of Personal Data
We use your personal data to deliver our pioneering marketing-fintech platform and create shared success. Every use of your data is designed to benefit you and enhance your experience.
Primary Uses of Your Data
Category
Purpose
Platform Service Delivery
Providing access to our marketing-fintech tools and dashboard
Financial Service Facilitation
Connecting you with regulated financial services through our partners (optional GorillaCapital services)
Performance Analytics
Generating insights to optimise your marketing performance
Customer Support
Providing responsive, helpful support when you need it
Security and Fraud Prevention
Protecting your account and data from unauthorised access
Specialised Marketing Services
Delivering Sprints services, including content creation and 3D animation
Legal Bases for Processing
Legal Basis
When It Applies
Illustrative Examples
Contract Performance
Data is needed to provide the services agreed upon
Platform access, payment processing, customer support
Legitimate Interests
A legitimate business reason exist that does not override individual rights
Fraud prevention, analytics, direct marketing to existing clients
Legal Obligation
The law requires the processing of data
Regulatory reporting, tax obligations, law-enforcement cooperation
Consent
Specific agreement has been given for the processing
Marketing communications to prospects, optional service features
Data Sharing And Disclosures
Data is shared only when necessary to provide services or when required by law.
Strategic Service Partners
Necessary data is shared with strategic service partners to provide secure, compliant services:
For UK Users: Stripe Payments UK Limited (FCA Authorised: 900461)
For EU Users: Stripe Technology Europe Limited (Central Bank of Ireland: C187865)
Service Integration: Seamless platform experience with clear disclosure of service providers.
Consumer Protection: Full regulatory protection through authorised partners.
Technology Service Providers
Carefully selected technology service providers are engaged to deliver platform services:
Cloud Infrastructure Providers: Platform hosting and infrastructure
Analytics and Marketing Platforms: Data analytics and marketing automation
Security Service Providers: Fraud prevention and security monitoring
All technology partners are bound by strict data processing agreements and security requirements.
Legal and Regulatory Sharing
Personal data may be shared when required by law or to protect legitimate interests:
Regulatory authorities for compliance reporting
Law enforcement agencies when legally required
Legal advisors for professional advice
Auditors for compliance verification
Your Data Security
Multiple layers of protection are implemented to ensure data security.
Technical Measures
Encryption: Data is encrypted both in transit and at rest
Access Controls: Only authorised personnel can access personal data
Secure Transmission: All data transfers use secure protocols
Regular Security Assessments: Ongoing monitoring and testing
Organisational Measures
Staff Training: Comprehensive training for all staff who handle personal data
Confidentiality Agreements: All personnel are bound by strict confidentiality obligations
Security Policies: Comprehensive security policies and procedures
Incident Response: Rapid response procedures for any security incidents
Privacy by Design
Privacy protection is built into systems from the ground up:
Default Settings: Maximum privacy protection by default
Regular Reviews: Continuous improvement of privacy measures
Technical Safeguards: Built-in privacy protections in all our systems
Contact Information
We're here to help with any questions about your privacy or data rights.
Privacy Questions
Email:
privacy@gogorilla.com
Response:
Within 48 hours
For:
General privacy inquiries, policy questions
Data Protection Officer
Email:
privacy@gogorilla.com
For:
Data subject rights requests, privacy concerns
General Contact
Email:
info@gogorilla.com
Website:
www.gogorilla.com
Hours:
Monday-Friday, 9:00 AM - 6:00 PM GMT
This Privacy Policy is part of GoGorilla's commitment to transparency and your success. We believe that protecting your privacy is essential to building the trust that drives mutual success.
Last Updated: December 2025
Version: 1.1