Privacy Policy
Last Updated: June 2026

Privacy Overview

This policy explains how we collect, use, and protect your personal data in compliance with GDPR and applicable data protection laws.

Your Privacy Rights

Under GDPR, you have the right to:

  • Access your personal data (Art. 15)
  • Rectify inaccurate data (Art. 16)
  • Erase your data (Art. 17)
  • Restrict processing (Art. 18)
  • Port your data (Art. 20)
  • Object to processing (Art. 21)

Exercise your rights in Privacy Settings → (requires login)

Key Points

  • We process your data based on contract performance, legitimate interests, legal obligations, and consent
  • Your data is protected with access controls, encryption where supported, logging, and supplier security controls
  • We retain data only as long as necessary for the purposes outlined, subject to legal, backup, audit, and security limits
  • International transfers are assessed and protected with appropriate safeguards such as Standard Contractual Clauses where required
  • We respond to data subject requests within the time required by applicable law after identity and authority checks

Cookies and similar technologies

REACTOR uses cookies and similar browser storage to keep you signed in, protect sessions, and remember in-app choices. Our authentication layer (Supabase) sets cookies that are essential for accounts and security.

Where product analytics is enabled for your organisation, we may load PostHog only when your account allows analytics (see in-app privacy / telemetry settings). You can clear cookies and site data in your browser at any time; essential session cookies may be set again when you use the platform.

Privacy & telemetry settings → (requires login)

Contact

For privacy-related inquiries:

Email: privacy@cerb-group.com
Privacy contact: privacy@cerb-group.com