Affiliate Programme Privacy Policy

1. Introduction

This privacy policy explains how The Prompt ("we", "us", "our") collects, uses, and protects the personal data of participants in the Resolve Affiliate Programme ("you", "your").

We are committed to protecting your privacy and handling your data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller

The Prompt is the data controller responsible for your personal data. You can contact us at:

3. Information We Collect

When you join the Resolve Affiliate Programme, we collect and process the following personal data:

• Identity data: Full name
• Contact data: Email address
• Financial data: Bank account name, sort code, and account number
• Technical data: IP address, browser type, and device information when accessing your dashboard
• Usage data: Information about how you use the affiliate programme, including clicks, conversions, and commission earned
• Marketing data: Your preferences for receiving promotional materials

4. How We Use Your Information

We use your personal data for the following purposes:

• Programme administration: To manage your affiliate account, track your referrals, and calculate commissions
• Payment processing: To process commission payments via bank transfer
• Communication: To send you programme updates, performance reports, and respond to your enquiries
• Compliance: To comply with legal obligations, including tax reporting and anti-fraud measures
• Improvement: To analyse programme performance and improve our services

5. Legal Basis for Processing

We process your personal data under the following legal bases:

• Contractual necessity: Processing is necessary to fulfil our obligations under the affiliate agreement
• Legal obligation: Processing is required to comply with tax and financial regulations
• Legitimate interests: Processing is necessary for our legitimate business interests in operating the affiliate programme, provided this does not override your rights

6. Data Sharing and Disclosure

We may share your personal data with the following categories of recipients:

• Payment processors: To facilitate commission payments
• Cloud service providers: For data storage and hosting
• Analytics providers: To analyse programme performance
• Legal and regulatory authorities: When required by law or to protect our rights

We do not sell your personal data to third parties. All service providers are required to maintain appropriate security measures and use your data only for specified purposes.

7. International Data Transfers

Your data may be transferred to and processed in countries outside the United Kingdom, including the European Economic Area and the United States. When we transfer your data internationally, we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses approved by the UK Information Commissioner's Office
• Adequacy decisions recognising equivalent data protection standards
• Service providers certified under appropriate data protection frameworks

8. Data Retention

We retain your personal data for as long as necessary to fulfil the purposes outlined in this policy:

• Active affiliates: Data is retained for the duration of your participation in the programme
• Inactive affiliates: Data is retained for 7 years after your last activity to comply with financial record-keeping requirements
• Marketing data: Retained until you withdraw consent or for 2 years after your last engagement

9. Your Rights

Under UK data protection law, you have the following rights:

• Right of access: Request a copy of your personal data
• Right to rectification: Correct inaccurate or incomplete data
• Right to erasure: Request deletion of your data in certain circumstances
• Right to restriction: Request limited processing of your data
• Right to data portability: Receive your data in a structured, machine-readable format
• Right to object: Object to processing based on legitimate interests
• Right to withdraw consent: Withdraw consent for processing at any time

To exercise any of these rights, please contact us at hello@theprompt.cloud. We will respond to your request within one month.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and penetration testing
• Access controls limiting data access to authorised personnel
• Regular staff training on data protection
• Incident response procedures for data breaches

11. Cookies and Tracking

We use cookies and similar tracking technologies to:

• Track affiliate referrals and attribute conversions (60-day cookie duration)
• Maintain your dashboard session
• Analyse programme performance and user behaviour

You can control cookie settings through your browser, though this may affect programme functionality.

12. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes via email or through your affiliate dashboard. The "last updated" date at the top of this policy indicates when it was most recently revised.

13. Complaints

If you have concerns about how we handle your personal data, please contact us first at hello@theprompt.cloud. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection:

14. Contact Us

If you have questions about this privacy policy or how we handle your personal data, please contact: