Privacy Policy

Privacy policies of myReach

Last Update on January 27, 2025

myReach is committed to protecting the privacy of its users and the security of their personal data. Information is hereby provided on how myReach collects, processes, and protects the personal data that its users provide via its website https://myreach.io/ (the “Website“) or by using the desktop or mobile application, as the case may be (in both cases, the “App” or “Platform“) and more generally, use any of Our services (the “Services“), which include the Website extension and the App).

We take Our users’ privacy very seriously. In this privacy notice, We seek to explain to You in the clearest way possible what information We collect, how We use it and what rights You have in relation to it. You are requested to read this privacy policy carefully and to freely decide whether You wish to provide your personal data to myReach.

Further, You warrant You are of legal age and that the data You provide is correct, accurate, complete, and updated. Furthermore, You shall be liable for any direct or indirect damage arising from non-compliance of this obligation.

Please read this privacy notice carefully to understand the data processing We undertake with the information We collect.

  1. Who is the Data controller and representative

The entity acting as the Data Controller is MYREACH, S.A., and its representative in the European Union is MYREACH, S.A., SPANISH BRANCH.

MYREACH, S.A. (hereinafter referred to as “myReach”, “We”, “Us”, “Our”), with registered office at Route de la Glâne 107, 1752 Villars-sur-Glâne (Switzerland), and registered with number CHE-113.324.607 in the registry of commerce of the Canton of Vaud (Switzerland), is the entity acting as controller of your personal data, for the purposes specified below.

MYREACH, S.A., SUCURSAL EN ESPAÑA, with registered office at Avenida Diagonal 520, 1e 1B, 08006 Barcelona (Spain), and identification number W0395102G, is acting as myReach’s representative in the European Union.

  1. What information do we collect?

We collect personal information You provide Us, information automatically collected when You visit or use Our services, information regarding your mobile device, and push notifications when You use Our App.

Personal information provided by you

We collect personal information that You voluntarily provide to Us when You register on the Services, express an interest in obtaining information about Us or Our products and Services when You participate in activities on the Services (such as by participating in surveys and studies), when You contact Us or otherwise to comply with Our legal obligations.

The personal information We collect depends on the context of your interactions with Us and the Services, your choices, and the products and features You use. The personal information We collect may include the following:

  • Identification data: We collect identifying data from users that use the Services via Website or App such as their names, surnames, usernames, self-descriptions, or your gender if You decide to provide it voluntarily.

  • Contact details: We also collect contact information that allows Us to communicate with users, such as the users’ email addresses, telephone numbers, postcodes, or country.

  • Professional Information: Information related to your profession if You voluntarily decide to provide it.

  • Access credentials and registration dates: Information regarding user credentials to register for Our Services.

  • Language of preference.

  • Personal interests. We collect information on your personal background and information on your interests and activities if You voluntarily decide to provide it.

  • Additional Data: Data relating to You which is generated or created statistically from your use of the Platform, as well as any feedback that You provide to Us or the characteristics of the documentation that You upload on the Platform. Please note that We will not, under any circumstances, process the information contained in the documentation You upload to the Platform.

Information automatically collected

We automatically collect certain information when You visit or use the Services. This information does not reveal your specific identity (like your name or contact information) but may reveal it if combined with the information provided by You:

  • Navigation data: Data is automatically collected regarding the registered IP, browsing habits, and operating system used when using Our services.

  • System usage data: Details of unexpected application closures, system or program failures, and other issues.

  • Statistical information about myReach activity: Usage information, such as your use of myReach software and services.

  • Analytics data: Data about your computer’s hardware and software specifications, including information about the operating system and type of information run in myReach software. Personal data is not recorded in myReach-generated reports, as it is removed from reports before they are sent to myReach.

Information collected through our App

If You use Our App, We also collect the following information:

  • Mobile Device: We automatically collect device information (such as your mobile device ID, model, and manufacturer), operating system, version information and system configuration information, device and application identification numbers, browser type and version, hardware model, and Internet Protocol (IP) address (or proxy server). If You are using Our App, We may also collect information about your mobile device’s operating system or platform, the type of mobile device You use, your mobile device’s unique device ID, information about the features of Our App You accessed, and We will request, upon your express consent, access to your device camera, your list of contacts, and your approximate location.

  • Push Notifications: We may request push notifications regarding your account or certain App features. If You wish to opt out of receiving these communications, You may turn them off in your device’s settings.

This information is primarily needed to maintain the security and operation of Our App, for troubleshooting and for Our internal analytics and reporting purposes.

  1. How is the processing of personal data legitimized?

The data process is based on legitimate business interests, the execution of Our contractual relation with You, compliance with Our legal obligations, or your express consent. We do not sell your data.

We may process Your data that We hold based on the following legal basis:

  • Consent: We may process your data if You have given Us specific consent to use your personal information for the specific purposes specified in this privacy policy.

  • Legitimate Interests: We may process your data when it is reasonably necessary to achieve Our legitimate business interests. For this purpose, myReach has carried out the analyses required by privacy regulations, confirming that myReach’s interests prevail over the privacy rights of its customers and users. If You wish to access these reports, You may request them at the e-mail addresses indicated in the “What are your privacy rights?” section of this Privacy Policy. Likewise, You may, now or at any other time, express your wish not to be subject to the processing subject to this legal basis by exercising your right to object to it.

  • Performance of a Contract: Where We have entered into a contract with You, We may process your personal information to fulfil the terms of Our contract.

  • Legal Obligations: We may process your personal information when We are legally required to do so to comply with applicable law and specially to comply with governmental requests, ongoing judicial proceedings, court orders, or legal processes, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).

We will process the personal data when We carry out any of the tasks specified below for the purposes identified, as well as the data generated during Our relationship.

  1. What type of data we process, for what purposes, and on which legal grounds?

Provision of services to data subjects registered on the myReach Platform:

We carry out the signing up and maintenance of your user account at myReach, including, if applicable, modifications of the data provided and deletion of the account. This processing of personal data includes the processing of personal data for the purposes of facilitating the account creation and login process, the provision of Our Services to You, send administrative information to You, and manage your user accounts.

The types of data used in this data processing are Identification data, Contact details, Professional information, Access credentials and registration dates, Language of preference, Personal interests, Mobile Device, Push Notifications, and the additional data that You decide to provide Us.

This data processing has its legal ground in the execution of the contractual relationship established with myReach because of the acceptance of the terms and conditions except for those categories of personal data that You decide to provide Us voluntarily as indicated in section 2 of this privacy policy.

If You access your account in the myReach Platform via App You will be able to consent individually to Our access to your camera, list of contacts and approximate location, all of them to provide You with Our Services.

To facilitate the registration process as a myReach user, We offer You the possibility to use your Google social network account or Apple ID login. If You choose one of these options, both accounts will be linked, so You can access reserved areas directly by logging in to your Google account or your Apple account. This voluntary registration option involves using personal data from your Google account to register and access your myReach user account, such as your profile (full name, profile picture) and email address. We inform You that the personal data You have provided to Google or Apple are governed by the privacy policy of said companies.

If You have registered as a myReach user via Google and subsequently unlink it via the user area, You will be asked for a password to be able to continue accessing your user account in the reserved area.

Sending commercial communications:

Sending commercial communications about myReach services, activities, news, offers, and promotions, based on your interests as We inform You in the processing called “Segmentation of users” and in accordance with your marketing preferences.

myReach contracts email marketing services with third party providers to collect information about campaigns, i.e., to track email opens and clicks on content or links included in emails. This information is collected to prepare statistical reports on the behaviour of the recipients to optimize the campaign.

The types of data used in this data processing are Identification data, Contact details, and the data obtained from the Segmentation activities carried out as per indicated below

The processing of your personal data is legitimized by the express consent You give Us. You may withdraw your consent and unsubscribe from these communications at any time.

Segmentation of users for marketing purposes:

We conduct commercial segmentation based solely on your interests based on analysis of Services provided or in which You have shown interest and inquiries to tailor better Our promotional activities, such as sending commercial communications. We do not use or read the information You use or store, or your interactions and exchanges of information with Us, for profiling purposes.

The types of data used in this processing are Identification data, Contact details, Analytics data, System usage data, Information about myReach activity, and the additional data described above.

This data processing has its legal ground in the legitimate interest of myReach, in accordance with the provisions of the applicable data protection regulation, as it is based on internal sources and is low-grade profiling.

myReach has carried out the analyses required by privacy regulations, confirming that myReach’s interests prevail over the privacy rights of its customers and users. Please refer to section 3 of this Privacy Policy for further information.

Segmentation and customisation via Cookies:

We personalize and segment the Website and App content.

The types of data used in this data processing are technical data, IP addresses, and browsing habits, and the legal ground is the consent You gave Us, where applicable, via the myReach cookie banner.

Feedback: surveys and studies; data usage and statistical studies:

We conduct surveys and research projects to get your feedback on Our products and services and analyse myReach’s performance.

We will collect myReach usage and performance aggregated data from the usage of Our users and the questions We may ask You while You are receiving the Services to conduct these analyses of myReach performance.

We may also contact You to promptly provide feedback on the operation and use of the Services provided, including but not limited to, report any bugs and user experience, so that myReach may solve any existing problems, and/or improve its product and user experience. This may include filling out online reports, participating in telephone interviews, maintaining a record of problems or errors, providing suggestions and ideas, and responding to written surveys. If You agree to provide such information You commit to provide only true and correct information.

The types of data used in this processing are Identification data, Contact details, System usage data, Information about myReach activity, Analytics data, and those data provided by You in the course of the requests formulated from time to time.

This data processing has its legal ground in myReach’s legitimate interest in improving the quality of its services and the performance of its software. You can oppose to this data processing activity at any time.

We have carried out the analyses required by privacy regulations, confirming that myReach’s interests prevail over the privacy rights of its customers and users. Please refer to section 3 of this Privacy Policy for further information.

Legal obligations:

Comply with Our legal obligations while providing Our Services.

The types of data used in this data processing are all that You provide to Us and that are generated during the relationship. The legal ground of the data process is to comply with Our legal obligations.

  1. Do we make automated decisions?

No, myReach does not adopt automated decisions.

myReach does not adopt automated decision-making regarding the profiling activities carried out related to your personal data. All the decision-making processes are performed with human intervention and for the purposes above mentioned.

  1. Will your information be shared with anyone?

We only share information with your consent, to comply with laws, to provide You with services, to protect your rights, or to fulfill business obligations.

Your data can be disclosed to the following third parties, for the following reasons:

  • Public Administrations: for compliance with the legal obligations to which myReach is bound due to its activity, only if requested;

  • Accounting audit companies: for compliance with the legal obligations to which myReach is bound due to its activity;

  • Interested third parties and their advisors in the context of any structural modification operation of myReach, or the contribution or transmission of any business or part of business activity, as well as transmitting the same to said third party in the case of execution of the operation. Said data disclosure will be carried out under the legitimate interest of myReach consisting in the correct governance of the same.

  • Law enforcement agencies: when Our organization is required to provide information in compliance with a legal obligation;

  • Providers that need access to your data to provide the services that myReach has contracted to those providers. The required confidentiality and data processing agreements have been signed between these providers and myReach to protect your privacy. For example, we have a data processing agreement signed with OpenAI with all the guarantees required by the applicable regulations, which acts as a data processor. In order to generate the summaries and answers to your questions made to our Chatbot, we identify the most relevant pieces of text from your documents and send them to OpenAI’s API to generate the written response.

Should myReach disclose your personal data to other parties in the future, it will duly inform You.

  1. Are international data transfers carried out?

myReach may engage the services of providers located in countries outside the European Economic Area, based on European Commission adequacy decisions. In this case, the country is deemed to have regulations equivalent to those of the European Union or We have taken the correspondent steps to secure the transfer outside the European Economic Area.

In the event that myReach needs to contract services from providers located in countries that do not have equivalent European legislation, its contracting will include all the guarantees and safeguards required by the legislation to preserve your privacy, subject to verification of the legislation of the destination country.

These safeguards may consist of the application of contractual clauses and additional guarantees to them, in accordance with the regulations of each destination country, or of binding corporate rules approved by the data protection authorities. We also inform You that We are permitted by law to send your data to such countries if this is necessary to fulfil Our obligations arising from the service You request from Us.

For further information about the safeguards to your privacy, or the destination countries to which We need to transfer your data to fulfil Our contractual obligations to You, please contact Our Data Protection Officer at the addresses indicated in the “What are your privacy rights?” section of this Privacy Policy.

  1. How long do we keep your information?

We retain your information for the duration of Our relationship and when it ends, for as long as necessary to fulfil the purposes described in this privacy notice unless otherwise required by law.

We will store the Personal Data that You provide to Us while You maintain your relationship with myReach and, upon termination of such relationship, for any cause, for the entire duration of any and all statutory limitation periods that are applicable to the processing, and for the purpose of proving compliance with Our obligations. Once said periods have ended, your data will be deleted or, alternatively, anonymized.

Accordingly, upon your request to terminate your account, We will deactivate or delete your account and information from Our active databases, retaining some information in Our files to prevent fraud, troubleshoot problems, assist with any investigations and/or enforce Our Terms of Use, among other obligations.

  1. Do we use cookies and other tracking technologies?​

We may use cookies and other tracking technologies to collect and store your information.

We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specific information about how We use such technologies and how You can refuse certain cookies is set out in Our Cookie Notice. You can access Our cookie policy at the following Link.

  1. How do we keep your information safe?

We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information We process. However, despite Our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so We cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat Our security, and improperly collect, access, steal, or modify your information. Although We are committed to do Our best to protect your personal information, transmission of personal information to and from Our Services is at your own risk. You should only access the Services within a secure environment.

  1. What are your privacy rights?

You may review, change, or terminate your account at any time.

You may exercise your rights of access, rectification, erasure and portability, limitation and/or right to object to the processing, by contacting myReach at the following addresses:

  • Postal address: Route de la Glâne 107, 1752 Villars-sur-Glâne (Switzerland); or

  • Email address: security@rea.ch

Regarding opting out of email marketing, You can unsubscribe from Our marketing email list at any time by clicking on the unsubscribe link in the emails that We send or by contacting Us using the details provided below. You will then be removed from the marketing email list — however, We may still communicate with You, for example to send You service-related emails that are necessary for the administration and use of your account, to respond to service requests, or for other non-marketing purposes. To otherwise opt-out, You may contact Us using the contact information provided.

  1. Do we make updates to this notice?

Yes, We will update this notice as necessary to stay compliant with relevant laws.

We may update this privacy notice from time to time. If We make material changes to this privacy notice, We may notify You either by prominently posting a notice of such changes or by directly sending You a notification. The updated version will be effective as soon as it is accessible. We encourage You to review this privacy notice frequently to be informed of how We are protecting your information.

  1. Can you complain?

Yes, You may submit a complaint.

Should You consider that the processing infringes the data protection regulation or your rights, You may submit a complaint to our Data Protection Officer at security@rea.ch or to the correspondent Data Protection Authority at its website or postal address.

We value your privacy 🍪

We want to provide the best experience on our website. At myReach we use third-party cookies and similar technologies for analytical purposes. This includes the processing of data technically necessary for the execution of our website and its functionalities.

You can modify your preferences and obtain more information by clicking on the buttons provided below or by accessing our Read our Cookie Policy.