Legal

Privacy policy

Last updated: July 3, 2026. This page is maintained by Reglo and describes how we process personal data. It is provided for transparency and does not replace a signed Data Processing Agreement (DPA) between Reglo and its customers.

1. Who we are

Reglo ("Reglo", "we", "us") provides a support and quality-management platform for regulated industries. When you visit our marketing site (reglosupport.com), we act as the data controller for the limited personal data described below. When you use the Reglo application as an end-user of one of our customers, Reglo acts as a data processor on behalf of that customer (the controller).

2. What we collect

  • Account data: name, email, role, workspace and authentication metadata provided during signup or invitation.
  • Content data: cases, complaints, CAPAs, attachments, messages and related metadata your workspace creates in Reglo.
  • Usage data: minimal product telemetry (page views, feature use, errors) used to keep the service reliable.
  • Support and sales contact data when you contact us via email or forms.

3. Legal basis

We process personal data under GDPR Art. 6(1)(b) (performance of a contract), 6(1)(c) (legal obligation), and 6(1)(f) (legitimate interest in operating and securing the service). Marketing communication is sent only with your consent or a pre-existing business relationship.

4. Storage and location

Application data is stored in the EU on infrastructure provided by our subprocessors. Data is encrypted in transit (TLS 1.2+) and at rest. Backups are retained for disaster recovery.

5. Subprocessors

A current list of subprocessors (including hosting, database, email delivery and error monitoring) is available on request and forms part of our DPA. We notify customers of material changes in advance.

6. Retention

Customer content is retained for the duration of the subscription. On termination, content is deleted or returned within 30 days unless a longer retention is required by law. Marketing site logs are kept for up to 90 days.

7. Your rights

You have the right to access, rectify, delete, restrict or port your personal data, and to object to processing or lodge a complaint with your supervisory authority. Requests about data held by Reglo as a controller can be sent to privacy@reglosupport.com. Requests about data held on behalf of one of our customers should be directed to that customer.

8. Cookies

Reglo uses strictly necessary cookies for authentication and session management. We do not use advertising cookies. Optional analytics, if enabled, are described in-app.

9. Contact

Reglo — privacy@reglosupport.com