Privacy Policy

1. General provisions

This Privacy Policy sets out the rules for processing personal data by the vendorsnear.com website (the “Service”).
The controller of personal data (the “Controller”) is:
Giraffe Creative LLC, 1309 Coffeen Avenue STE 1200 Sheridan Wyoming 82801.
The Controller processes personal data in accordance with applicable law, including Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).
Using the Service means you accept this Privacy Policy.

2. Scope of processed data

2.1. Data of Users submitting requests

  • name and surname,
  • email address and phone number,
  • location,
  • request content,
  • information about the requested service.

2.2. Vendor (Business) data

  • name and surname,
  • license/certification number (if applicable),
  • business address,
  • email address and phone number,
  • business details (e.g., tax ID / registration details),
  • business description,
  • external links (e.g., website),
  • content voluntarily provided in the profile.

2.3. Technical data (logs)

  • IP address,
  • device and browser data,
  • connection time and date,
  • cookies.

3. Purposes and legal bases for processing

3.1. Providing the Service

  • routing User requests to Vendors.
Legal basis: Article 6(1)(b) GDPR (performance of a contract).

3.2. Vendor account registration and management

  • creating and maintaining a profile,
  • handling paid plans and billing.
Legal basis: Article 6(1)(b) GDPR.

3.3. Content moderation

  • publishing reviews and ratings,
  • detecting fake reviews.
Legal basis: Article 6(1)(f) GDPR (legitimate interests of the Controller).

3.4. Communication with Users and Vendors

  • responding to messages,
  • account-related information or updates to terms,
  • email notifications about new requests, reminders about requests, and operational communications related to running the Service.
Legal basis: Article 6(1)(f) GDPR (legitimate interests of the Controller).

3.5. Analytics, security, statistics

  • improving the Service,
  • analyzing feature performance,
  • protecting against abuse and spam.
Legal basis: Article 6(1)(f) GDPR.

3.6. Service’s own marketing

  • newsletter (only with consent),
  • information about new features.
Legal basis: Article 6(1)(a) GDPR (consent).

3.7. Anonymizing requests before acceptance

  • To protect Users’ privacy, request content shown to Vendors before acceptance is presented in an anonymized form.
  • Anonymization includes, in particular, removing or hiding data that enables direct identification of the User, such as phone number, email address, exact event address/location, or other contact details.
  • Full User contact details are shared with a Vendor only after the request is accepted.
  • Sharing full User contact details with a Vendor occurs after acceptance of the request and meeting the payment/credit terms specified in the Service.

4. Sharing personal data

Data may be shared with:
  • Vendors — only to the extent necessary to fulfill a request, provided that:
  • – before acceptance, data is presented in anonymized form,
  • – after acceptance, the Vendor receives the User’s full contact details.
  • hosting providers,
  • email service providers,
  • payment and invoicing systems,
  • legal and accounting service providers,
  • public authorities — if required by law.
The Controller does not sell personal data to third parties.

5. Transfers to third countries

The Controller may process personal data using infrastructure or providers located outside the European Economic Area. In such cases, the Controller ensures appropriate safeguards under the GDPR, in particular by using standard contractual clauses approved by the European Commission.

6. Data retention period

User and Vendor data is stored for:
  • the period of providing the Service,
  • the period required by tax and accounting laws,
  • the period necessary to establish, pursue, or defend claims,
  • up to 36 months from the last activity — for analytics and statistical purposes.
Review data may be stored indefinitely unless removed in accordance with the review rules/terms.

7. Rights of data subjects

Each person has the right to:
  • access their data,
  • rectify their data,
  • erase data (“right to be forgotten”),
  • restrict processing,
  • data portability,
  • object to processing,
  • withdraw consent (if consent is the legal basis),
  • lodge a complaint with the supervisory authority.
Requests regarding personal data can be submitted via the contact form.

8. Cookies

The Service uses cookies to:
  • ensure the Service works properly,
  • create anonymous statistics,
  • personalize content.
You can change cookie settings at any time in your browser.
The Service may use its own cookies and third-party cookies (e.g., Google Analytics).
Detailed rules are set out in the “Cookie Policy”.

9. Automated decision-making and profiling

Data is not used for fully automated decision-making.
The Service may create statistical profiles to improve functionality — without affecting the rights of Users or Vendors.
Requests may be shown to Vendors on a rotating or selective basis to ensure fair access to requests and proper functioning of the Service.

10. Data security

The Controller applies technical and organizational measures to protect data, including:
  • encrypted connections (SSL),
  • server security measures,
  • access control,
  • data minimization procedures,
  • anti-spam and anti-bot protection.

11. Changes to the Privacy Policy

The Controller may make changes to this Policy.
Users and Vendors will be informed about changes via a notice in the Service.
The current version of the Policy is always available at vendorsnear.com.

12. Contact the Controller

For matters related to personal data, you can contact us via:
  • the contact form