Effective Date: September 1, 2025
This Privacy Policy explains how CenterGauge Inc. (“CenterGauge,” “we,” “us,” or “our”) collects, uses, shares, and protects personal information through our website, applications, and related services (the “Site”).
It applies to all Site users, including visitors, registered account holders, and Authorized Users under a Customer Agreement (as defined in our Terms of Service). If you use the Site on behalf of a business or entity, “you” or “Customer” refers to that entity.
We comply with applicable data protection laws, including the EU/UK GDPR, South Africa’s POPIA, and California’s CCPA/CPRA. This Policy applies to the extent we offer services to or monitor individuals in those jurisdictions.
We have not appointed a Data Protection Officer under Article 37 GDPR, but our privacy team manages all inquiries through the Contact Information section below.
This Policy does not apply to third-party websites or services linked from the Site. For cookies and similar technologies, see our Cookie Policy.
By using the Site, you acknowledge that your personal information will be processed as described here, subject to your rights under applicable law.
We collect personal information directly, automatically, and from third parties:
California disclosure (CCPA/CPRA): in the past 12 months we have collected identifiers (e.g., name, email, IP address), internet activity (e.g., usage data), and professional information (e.g., company, job title). We do not collect sensitive personal information without consent.
We collect only what is necessary for the purposes described in this Privacy Policy.
We use personal information based on contract necessity, consent, legal obligations, or legitimate interests:
| Purpose | Legal Basis |
|---|---|
| Account management (create, secure, verify) | Contract / Legitimate interest |
| Deliver and improve services | Legitimate interest |
| Communicate with you (account notices, support) | Contract |
| Marketing communications | Consent |
| Process/display User Content | Consent / Legitimate interest |
| Legal compliance, security, dispute resolution | Legal obligation / Legitimate interest |
| Third-party integrations (e.g., analytics, hosting) | Contract / Legitimate interest |
AI Transparency: Certain features may use automated tools or machine learning to provide analytics or recommendations, but not in a way that produces legal or similarly significant effects.
We do not engage in automated decision-making under GDPR Article 22.
We share personal information only as necessary and in compliance with applicable law:
Service Providers: With third-party vendors (e.g., hosting, analytics, authentication) under written agreements requiring appropriate security and GDPR Article 28 protections.
Customers: if you are an Authorized User, with the Customer controlling your account. Where we jointly determine processing, we act as joint controllers under GDPR Article 26.
Legal Compliance: when required by law or to protect rights, safety, or property.
Business Transfers: in a merger, acquisition, or sale of assets, subject to safeguards.
We do not sell personal information. For cookie-related sharing (e.g., analytics, advertising), see our Cookie Policy.
We use cookies and similar technologies to operate and improve the Site:
Strictly Necessary Cookies: core functions (authentication, security).
Preferences: store settings and choices.
Analytics: measure usage and performance.
Advertising: support cross-context behavioral ads and campaigns.
We only use non-essential cookies with your prior consent, in line with GDPR, POPIA, and the ePrivacy Directive. Consent must be freely given, informed, and may be withdrawn with equal ease.
For California residents: analytics and advertising cookies may constitute “sharing” of personal information under the CCPA/CPRA. We honor Global Privacy Control (GPC) signals and provide opt-out options in our Cookie Policy.
Your information may be transferred outside your jurisdiction, including to the United States where we are based.
For transfers from the EEA, UK, or South Africa, we use safeguards such as EU Standard Contractual Clauses, the UK International Data Transfer Addendum, or equivalent measures. We assess destination country laws in line with European Data Protection Board (EDPB) Recommendations 01/2020 and apply supplementary measures as needed.
Depending on your location, you may have the right to:
Access, correct, or delete your personal information.
Restrict or object to certain processing.
Receive your data in portable format.
Withdraw consent (e.g., for marketing or cookies).
Object to automated decision-making.
File a complaint with a data protection authority.
California residents may also opt out of “sharing” for targeted advertising as described in our Cookie Policy.
To exercise rights, use account settings or contact us via the Contact Information section. We may request additional information to verify your identity. Requests are handled without undue delay, and within one month when legally required.
We retain personal information only as long as necessary or as required by law:
Account data: while active, then typically deleted within 6 months of closure (unless needed for compliance).
User Content: while displayed, then typically up to 12 months after removal or account closure.
Automatically collected data: per Cookie Policy (session to ~24 months).
Legal/compliance records: retained as required, usually not more than 7 years.
On termination or request, data is deleted within ~30 days unless retention is legally required.
We use technical and organizational safeguards (e.g., encryption, access controls, authentication). No system is fully secure; you are responsible for protecting your account credentials.
If a data breach occurs, we will notify affected users and authorities as required by law (e.g., GDPR, POPIA, CCPA/CPRA).
The Site is intended for users 18 and older as stated in our Terms of Service. We do not knowingly collect data from users under 18. Where required (e.g., GDPR in the EEA), we do not collect from users under 16 without verified parental consent.
If we learn we have collected such data, we will delete it. Please contact us through the Contact Information section if you believe this has occurred.
We send account-related communications necessary for account management.
With your consent where required, we may send marketing communications. You can opt out via account settings, unsubscribe links, or the Contact Information section.
We may update this Policy as practices, technology, or laws change.
If changes are material, we will update the “Effective Date” and, where legally required, provide additional notice ( e.g., posting or emailing).
Continued use of the Site after updates means you accept the revised Policy.
For questions, concerns, or to exercise your rights, contact us at:
Email: [INSERT EMAIL]
Mailing Address: [INSERT ADDRESS]
Our privacy team manages all inquiries. We are not required to appoint a GDPR Article 27 representative or POPIA Information Officer for current operations.
You may also contact: