Privacy policy


We are WEBITE Pte Ltd, registered at 105 Cecil Street, The Octagon #16-05, Singapore 069534. WEBITE commits to protect its customers’ and partners’ personal data as carefully as possible. This privacy policy is intended for achieving transparency about the way personal data are processed and stored for (direct) marketing purposes. WEBITE will adhere to and respects the requirements of the General Data Protection Regulation 2016/679 and as well the Privacy and Electronic Communications Regulations (PECR). WEBITE handles everyone’s privacy carefully. In order to do so, WEBITE adheres to privacy legislation, as stipulated in this section, in addition to legal standards which are dictated by approved codes of conduct. WEBITE complies with the requirements of the current UK Data Protection Act 2018 and other applicable privacy legislation for an accurate processing of personal data. The party responsible for data processing (Controller) is WEBITE, with ICO registration number ZA529754.

We are careful and do not use consent light-hearted as a legitimate ground for processing personal data as a one-size-fits-all solution. We adopted all the measures that are legally required for its work in commercial intermediation in digital marketing and, more specifically, in the field of protection of personal data.


In accordance with our data processing operations we have checked if your consent is the most appropriate basis for processing. We ask our customers and respondents to positively opt-in prior to any start of the processing. The request for consent to you is made prominent and separate from any conditions that may apply to the promotions you have participated. Your consent is (also) used to administer the campaigns you are interested in. If you withdraw consent you contact data is blocked until you have given your consent again. Any given consent is never made on a default mode. We keep a record of when and how we received your consent on an individual identifiable basis. We also keep a record of exactly what you were shown or told at the time of participating to the campaign.

Should you have questions about the campaign to which you participated in, then please contact our Data Protection Officer at  who can reply to you directly for any question or concern you may have.

We would like to specify to you why we process data and what we’re going to do with it, for which purposes data are going to be used and further processed.

Consent or withdraw

We give individual options to consent or positively opt-in to different purposes and types of processing. We name our organisation and any third party controllers who will be relying on the consent at the moment of collecting your data. We inform our customers and respondents that they can withdraw or refuse their consent without detriment. We perform on withdrawals of consent as soon as we can and direct our customers and respondents how to do so. In offering online communication directly to our customers and respondents we seek consent in accordance with and necessary for the purposes of our data processing operations and our relation with you. We have age-verification measures (and parental-consent measures for younger children) in place to avoid that children (below 12) and youngsters (12-18) can participate to our services.


Under the Directive 95/46/EC we already worked with the principles for processing.

These principles continue to be in effect, and relate to:

• Lawfulness, fairness and transparency;

• Purpose limitation and compatible use;

• Data minimisation;

• Accuracy;

• Storage limitation;

• Integrity and confidentiality; and

• Accountability (the controller shall be responsible for, and be able to demonstrate


Categories of data

The categories of personal data which are necessary to provide the services are:

● the customer’s and respondent’s first and surname, title, gender, date of birth, address, postcode, place of residence and similar data required for communication by the person concerned.

● contact data such as (mobile) telephone number and email address.

● consent data including name, surname, e-mail address, IP adres and copy of campaign materials.

● preferences or (confirmed) opt-in requests how to be contacted via email, mobile phone number and sms or mms.

● opt-out request not to be contacted for marketing purposes at all.

● preferences for different kinds of promotions, goods or services.

● prize winner data, including photo of the prize winner when disclosed.

● further information requests and/or contact history.


The sectors, in which data are processed in the UK, and accordingly in line with this privacy policy, are:

Charity, Media, Telecoms, Telecommunication, Utilities, Mobility, Home Improvements, Broadcaster, TV, Wills, Funeral Plan, Retail, Automotive, Shopping, Beauty and health, Cosmetics, Insurance products, Financial services (only contact data), Travel, Leisure, Sports, Games, Trivia, SMS and mobile service providers, and partners such as Aura Media, Solar, Air Source Heat Pumps.

These categories of personal data and partners are processed for purposes which are based on your consent.

We may also share your details with identity verification organisations which help other organizations verify your identity and prevent others from misusing your details.

We may share your contact information with our partner WINR Data Pty Ltd. (WINR) and their global partners for the purpose of:

ID Protection – preventing others from misusing your details. This may include ID validation for anti-money laundering, anti-fraud, preventing crime, asset recovery, debt collection and reuniting people with unclaimed assets.

Advertising – providing offers that are relevant to you. This may involve data analysis, matching, profiling and predicting behaviours so you may receive advertising that is more relevant to you.

WINR and their partners will retain your information for as long as necessary to perform these functions. You can opt-out of all WINR activity by contacting their Privacy Officer

Monetise Media Ltd and their clients.
Links are:

Legitimate interests

Legitimate interests are used as a ground for data processing in accordance with the laws, regulations and the preferences of the partners we work with. The legitimate interests are our own interests and the (commercial, legitimate) interests to provide you with own offers or offers of this parties which you would like to receive (common, legitimate interests). The promotions contain not only offers which benefit our customers’ and respondents’ contact preferences (see above) but also apply to educate you about discount offers and for that purpose sending the correct email and sms on the right moment. In order to balance the commercial interests with your privacy preferences we never collect or ask for more data than is necessary for a proper operational performance of our online communication.

Data processing ratio

We process data data when such is necessary for:

● the responsible management of WEBITE’ online communication.

● providing the option to register or unregister for specific user interests.

● processing interest(s) in product or service categories which are offered.

● operation of customer services, such as answering questions and block personal data on the first request of the data subject.

● processing of traffic data (inbound clicks, testing, log files where needed) and analyse these to detect fraud and redemption.

● offering the option to use mobile device as a form of identification to obtain or purchase services from other organisations and address the benefit of the data subject therein.

● if applicable, the conclusion or performance of a contract concluded in the interest of the data subject between the controller and partners.

● the (further) performance of another legal obligation.

Information is not automatically used for all these objectives simultaneously.

Online (direct) communication

Data required for online (direct) communication are processed in accordance with the following requirements.

The processing is intended for communication with data subjects, sending information about the products and services of partners, keeping an overview of the information sent and maintaining the contact with the data subjects.

No other personal data will be processed than:

a. surname, first names, initials, title, gender, date of birth, address, postcode, place of residence, telephone number and similar data required for communication by the person concerned;

b. data relating to the information to be sent and transmitted;

c. other additional data that are necessary with a view to maintaining contact with the involved data subjects.

No special categories of data as referred to in the General Data Protection Regulation 2016/679 will result from the processing.

The personal data are only provided to those Sponsors, who are in charge of or direct communication with the data subject or who are thereby necessarily involved, such as as sponsor via telephone.

The personal data will be deleted at the request of the data subject or no later than two years after the relationship with the data subject has terminated, unless the personal data are necessary for compliance with a legal obligation to retain data.


Data required for security reasons are processed in accordance with the following requirements. This policy only treats a selection of items. Of course, it shall be clear to secure the entire data processing process, including the secured communication lines, we maintain physical, electronic and procedural safeguards designed to protect personal information. We limit access to personal information to authorized personnel who need access to perform their job and are contractually required to keep your information secure. Due to the nature of the online connections, we cannot guarantee that transmission errors may occur.

The processing is intended for the control and security of the systems or programs, the support of the proper functioning of the systems or programs, sorting and recovering files, creating backup copies of files, the management of the systems or programs.

No other personal data will be processed than:

a. data relating to the use of the software,

b. technical and control data,

c. data to promote proper functioning,

d. historical data,

e. user data.

The personal data are only provided to those, including third parties, who are in charge of or direct the system, data management or application management or who are necessarily involved and others, as the case may be, to the (further) performance of another legal obligation.

The personal data will be deleted at the latest 6 months after they have been obtained, unless the personal data are necessary to comply with a legal data retention obligation.

Prize winner(s)

Data required for processing operations concerning prize winners are processed in accordance with the following requirements.

Processing is only for company purposes to inform who were the prize winners.

No other personal data will be processed than

a. initials and surname of the prize winner.

b. photos and video images with or without sound.

The personal data will be deleted after termination of the website or will be immediately deleted at the request of the data subject (prize winner).

Data traffic with countries outside the UK

The controller of the data WEBITE does not intend to transfer personal data to a third country, with the exception of the European Union, which is covered by the EU-UK adequacy decision (2021/1772), unless it is necessary to store your data there, such as in the United States, see also Should data be transferred to a country outside the UK or the European Union then (in that event):

● the existence or absence of an adequacy decision by the will be reviewed, such as the UK extension to the EU-US Data Privacy Framework (C(2023) 4745), and,

● reference will be made to the appropriate or suitable safeguards and the means by which to obtain a copy of such safeguards are made available on first request, and if all such is absent,

● the data subject will be explicitly asked for consent to a proposed transfer, after having been informed of the possible risks of such transfers for the data subject due to the absence of an adequacy decision and appropriate safeguards, or the transfer is necessary for the performance of a contract between the data subject and the controller or the implementation of pre-contractual measures taken at the data subject’s request, or the transfer is necessary for the conclusion or performance of a contract concluded in the interest of the data subject between the controller and Sponsor.

Combinations of processing operations

This privacy policy does not apply to processing operations by the Sponsors. Please read the privacy policy of the involved Sponsor, provided prior to each entry to the promotion and meeting the requirements stated in the relevant privacy policies. Each organization in his capacity as Controller ensures adequate access security of the website, as well as adequate protection of personal data for further processing by search engines.

Your individual rights

What are the rights relating to the processing of my personal data?

You have the following rights:

• Information and access: We tell you about the personal data being stored and for what purposes.

• Rectification: If you want to have your personal data corrected or updated because they are incorrect and/or incomplete. We will change them accordingly.

• Deletion: You can also submit a request for us to delete your data. We cannot delete data when the law requires us to retain the personal data in question. We may also have to be able to process the data for other purposes (administrative).

• Limitation: You can impose limits on processing of your data if you feel that your data are processed unlawfully or incorrectly.

• Objection: You can submit an objection against processing of your data. If this relates to processing for direct marketing purposes, we will terminate the processing as quickly as possible.

If you no longer wish to receive direct mail, you can:

– Unsubscribe via any marketing mail

– Change your account settings

• Transferability: If you want us to transmit your data to a third party, please contact us at  [email protected].

• Lodge your complaint at the supervisory authority. You have the right to complain to the ICO by visiting their website at

In order to exert your aforementioned rights and, where applicable, please contact us at [email protected].

Data retention

Please see above reading the indicated data retention periods as decribed there.

Browsing session and IP-address

We also make use of the IP-address of your computer. This IP-address is a number which automatically assigned to your computer when you have a browsing session on the internet, such as when you visit one of our sites or landing pages. They can be used to see which use has been made of the website and for drafting analyses and reports with non-identifiable information.

Website and cookies

WEBITE uses cookies and similar technologies on its websites. Cookies are small text files that are saved on your device (computer, telephone, tablet) when you visit a website. Cookies such as ‘functional session cookies’ are used to provide services or to store your preferred settings for purposes such as:

● remembering and communicating information that you fill in during the entry process or that you enter when indicating your interests in the various web pages, so that you don’t have to re-enter the same information every time or see the same promotions twice,

● saving of preferred settings, and

● tracking the unauthorised use of our landing pages.

Analytical cookies

‘Analytical’ cookies are used to analyse your visit to our websites. We analyse the number of visitors to our websites, the duration of the visits, the order of pages visited and whether any changes need to be made to the website. Using the information collected, we can make our websites even more user-friendly. These cookies are also used to solve possible technical problems on the websites.

Other technologies

In addition to cookies, WEBITE also uses technologies such as JavaScript. Using JavaScript in your browser allows us to make our sites interactive and to develop web applications in a consumer friendly tailor made manner. For the provision of our service we keep database records in order to have a robust control in place on our services (and our service providers). The purpose of this is to optimize the reliability of the service. The information derived from these data is used to prevent misuse of data and if necessary to comply with more detailed information queries from third parties on the basis of (self)regulation.

Questions, complaints or disputes

If you wish to ask a question, make a complaint or provide any comments on our privacy policy or sites please contact us on:  
[email protected].
We will contact you to discuss any concerns within 48 hours of receiving your email.

UK Data Protection Officer:

GDPRLOCAL LTD, 1st Floor Front Suite, 27-29 North Street, Brighton, England 


We reserve the right to make adjustments to this privacy policy. Important adjustments are made known on this site in the privacy policy.

You can contact us by writing us at the address below:

[email protected]

January 2024