Privacy Policy

Your privacy is our priority

Last updated: August 22, 2025

Introduction

Raffled Limited ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our domain name management and dropcatching services.

This policy complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws worldwide. By using our services, you consent to the collection and use of information in accordance with this policy.

1. Information We Collect

We collect several types of information to provide and improve our services:

1.1 Personal Information

  • Full name and contact details (email, phone, address)
  • Company information and business details
  • Payment and billing information
  • Domain registration and management preferences

1.2 Technical Information

  • IP addresses and device information
  • Browser type and version
  • Operating system and platform
  • Usage data and analytics

1.3 Domain-Specific Information

  • Domain names and registration details
  • DNS records and configuration
  • Auction bids and preferences

2. How We Use Your Information

We use your information for the following purposes:

Service Provision

  • Process domain registrations and transfers
  • Manage dropcatching services
  • Facilitate auction processes

Communication

  • Send service notifications
  • Provide customer support
  • Send security alerts

3. Legal Basis for Processing

Under UK GDPR, we process your data based on the following legal grounds:

Contract Performance

Processing necessary to provide our domain services and fulfill contractual obligations.

Legitimate Interest

Processing for business operations, fraud prevention, and service improvement.

Legal Obligation

Processing required by law, including domain registration regulations.

Consent

Processing based on your explicit consent for marketing communications.

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in:

  • • Domain registration and management
  • • Payment processing and billing
  • • Technical support and maintenance
  • • Analytics and performance monitoring

Legal Requirements

We may disclose your information when required by law, court order, or government regulation, including:

  • • Domain registration authorities
  • • Law enforcement agencies
  • • Regulatory bodies

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction.

5. Data Security

We implement comprehensive security measures to protect your personal information:

Technical Measures

  • SSL/TLS encryption for data transmission
  • Secure data centers with physical security
  • Regular security audits and penetration testing

Organizational Measures

  • Employee training on data protection
  • Access controls and authentication
  • Incident response procedures

6. Your Rights Under UK GDPR

You have the following rights regarding your personal information:

Right of Access

Request a copy of your personal data and information about how we process it.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data in certain circumstances.

Right to Restrict Processing

Request limitation of processing in certain circumstances.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month, unless the request is complex or numerous, in which case we may extend this period by up to two months.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your request properly.

7. International Data Transfers

As a global domain services provider, your data may be transferred to and processed in countries outside the UK and European Economic Area (EEA). We ensure appropriate safeguards are in place:

Adequacy Decisions

We only transfer data to countries with adequate data protection laws as determined by the UK government.

Standard Contractual Clauses

We use approved standard contractual clauses for transfers to countries without adequacy decisions.

Certification Schemes

Our service providers are certified under appropriate data protection certification schemes.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy:

Active Service Period

We retain your data while you are an active customer and for a reasonable period thereafter to provide support and comply with legal obligations.

Legal Requirements

We may retain certain information for longer periods to comply with legal obligations, resolve disputes, and enforce agreements.

Domain Registration Records

Domain registration information may be retained for extended periods as required by domain registries and regulatory authorities.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

Essential Cookies

Required for basic website functionality and security.

Functional Cookies

Enhance user experience and remember preferences.

Analytics Cookies

Help us understand how visitors use our website.

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect website functionality.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Data Protection Officer

Email: admin@raffled.uk

Subject: Privacy Policy Inquiry

Postal Address

Raffled Limited

Popeshead Court Offices, Peter Lane, York, YO1 8SU

United Kingdom

Response Time

We aim to respond to all privacy-related inquiries within 30 days. For urgent matters, please include "URGENT" in your email subject line.

11. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending email notifications to registered users
  • Updating the "Last updated" date at the top of this policy

Continued Use

Your continued use of our services after any changes to this policy constitutes acceptance of the updated terms.

Cookie Preferences

We use cookies to enhance your browsing experience, analyze site traffic, and personalize content. By clicking "Accept All", you consent to our use of cookies. You can customize your preferences below.