Last Updated: November 1, 2025 | Effective Date: November 1, 2025
SaaSrooms strives for the highest standards. Find key information about terms, privacy, policy and compliance.
This Privacy Policy is issued on behalf of the SaaSrooms Group, which includes the following entities:
SaaSrooms Ltd (UK Holding Company)
SaaSrooms LLC (US Operating Company)
Website: https://saasrooms.com/
Email: info@saasrooms.com | Phone: +1-404-474-7755
This Privacy Policy describes how the SaaSrooms Group (“SaaSrooms,” “we,” “us,” or “our”) collects, uses, shares, and protects your personal information when you use our services, including our website and SaaSrooms platform (collectively, the “Service”).
This Privacy Policy applies to:
We are committed to transparency and protecting your privacy rights under applicable laws, including the UK General Data Protection Regulation (UK GDPR), the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and other US state privacy laws.
For UK/EU Residents: SaaSrooms Ltd acts as the data controller for the personal information we collect.
For US Residents: SaaSrooms LLC acts as the data controller for the personal information we collect. This policy provides specific disclosures required under US state privacy laws, including information about your privacy rights and how to exercise them.
We collect personal information that you provide directly to us, that we collect automatically when you use our Service, and that we receive from third-party sources. Below are the categories of personal information we have collected in the preceding 12 months:
We do not intentionally collect sensitive personal information as defined under CPRA and other state privacy laws, including: Social Security numbers, driver’s license numbers, passport numbers, or other government identifiers; financial account login credentials; precise geolocation data (more specific than city level); racial or ethnic origin, religious or philosophical beliefs, or union membership; genetic data or biometric information for unique identification; health information; and information concerning sex life or sexual orientation.
If we need to collect any sensitive personal information for specific business purposes in the future, we will provide clear notice and obtain any required consent.
Usage Data is collected automatically when you use our Service and may include: device Internet Protocol (IP) address; browser type and version; pages of our Service that you visit; time and date of your visit; time spent on pages; unique device identifiers; operating system; mobile device information (when accessing via mobile device); and diagnostic data and performance metrics.
In addition to processing Your Personal Data as described above, We create Aggregated and Anonymized Data from information collected through Our Services. This includes:
We apply rigorous technical and organizational measures to ensure that Aggregated and Anonymized Data cannot reasonably be used to identify You, Your organization, or any individual user. Our anonymization methodology includes:
Once data has been anonymized in accordance with these standards, it no longer constitutes Personal Data under the UK GDPR, EU GDPR, or other applicable data protection laws.
We use Aggregated and Anonymized Data for the following purposes:
We may share, license, or sell Aggregated and Anonymized Data to the following categories of recipients:
We do not sell or share Aggregated and Anonymized Data with advertising networks, data brokers engaged in targeted advertising, or any party for the purpose of re-identifying individuals or organizations.
The creation of Aggregated and Anonymized Data constitutes processing of Your Personal Data, for which We rely on Our legitimate interest under Article 6(1)(f) of the UK GDPR. Our legitimate interests include:
We have conducted a Legitimate Interest Assessment and determined that these interests are not overridden by Your rights and interests, particularly because:
You have the right to object to the inclusion of Your data in Our anonymization and aggregation processes. To exercise this right:
Please note that opting out:
Where We share Aggregated and Anonymized Data with third parties, We require recipients to:
Because Aggregated and Anonymized Data does not constitute Personal Data, it is not subject to the retention periods applicable to Personal Data. We may retain Aggregated and Anonymized Data indefinitely for analytical, historical, and commercial purposes.
We use cookies, web beacons, pixel tags, and similar tracking technologies to track activity on our Service and store certain information. You can learn more about our use of cookies in our Cookie Policy.
Types of Cookies We Use:
We collect personal information from the following sources:
When you create an account or register for our Service; when you make purchases or subscribe to our services; when you contact us for customer support or inquiries; when you provide information about your company’s technology stack; when you participate in surveys, webinars, or other events; when you sign up for our newsletter or marketing communications; and when you apply for a job with us.
Through cookies, web beacons, and similar tracking technologies; through log files and server data; through your interactions with our platform and features; and through device and browser information transmitted when you access our Service.
Information that other users of our Service provide about your organization (if you are part of the same company account).
We use the personal information we collect for the following purposes:
To provide, maintain, and improve our Service; to create and manage your account; to authenticate users and prevent unauthorized access; to enable you to access and use the features of our Service; to provide customer support and respond to your inquiries; and to troubleshoot technical issues.
To process your payments and manage subscriptions; to fulfill orders and deliver services you have requested; to send transaction confirmations, receipts, and administrative information; and to manage billing and invoicing.
To contact you by email, phone, SMS, or other electronic communication regarding our Service; to send you service updates, security alerts, and administrative messages; to respond to your comments, questions, and customer service requests; and to provide technical support and assistance.
To send you marketing communications about our products, services, offers, and promotions (with your consent where required); to provide you with information about similar services we offer; and to analyze the effectiveness of our marketing campaigns.
Note: We do not share your personal information with advertising networks or third-party analytics providers for advertising purposes.
To understand how users interact with our Service; to analyze usage patterns and trends; to conduct research and development to improve our Service; to develop new features, products, and services; to personalize your experience and provide recommendations; and to create aggregated, de-identified, or anonymized data for analytics and benchmarking.
To detect, prevent, and respond to security incidents, fraud, and illegal activities; to protect the rights, property, and safety of SaaSrooms, our users, and the public; to verify user identity and prevent unauthorized access; and to enforce our Terms of Service and other policies.
To comply with applicable laws, regulations, and legal processes; to respond to lawful requests from public authorities; to enforce our legal rights and defend against legal claims; and to comply with accounting, tax, and regulatory requirements.
For users in the UK and EEA, we process your personal information based on the following lawful bases:
We may share your personal information with the following categories of third parties:
We share information with third-party service providers who perform services on our behalf, including:
These service providers are contractually obligated to use your personal information only as necessary to provide services to us and to maintain appropriate security measures.
Important: We do not share personal information with advertising networks or third-party analytics providers for advertising or cross-context behavioral advertising purposes.
We may share your personal information between SaaSrooms Ltd and SaaSrooms LLC for internal business purposes, including providing our Services, customer support, account management, and complying with legal obligations. Data sharing between group entities is governed by appropriate data transfer mechanisms as described in Section 12.
Potential or actual acquirers, investors, or merger partners in the event of a business transaction (merger, acquisition, asset sale, reorganization, or bankruptcy).
Any other third parties with your explicit consent or at your direction.
We do not sell your personal information.
SaaSrooms does not sell personal information to third parties for monetary or other valuable consideration. We do not engage in the sale of personal information as defined under CCPA, CPRA, or any other applicable state privacy law.
We do not share your personal information for cross-context behavioral advertising purposes.
SaaSrooms does not disclose personal information to third parties for cross-context behavioral advertising (targeted advertising) purposes. We do not share your personal information with advertising networks or third-party analytics providers.
Category | Sold? | Shared? | Third Parties |
Identifiers and Contact Information | No | No | Service Providers only |
Financial Information | No | No | Payment Processors only |
Internet/Network Activity | No | No | Service Providers only |
Professional/Employment Info | No | No | Service Providers only |
Inferences and Analytics | No | No | N/A |
Contents of Communications | No | No | Service Providers only |
Note: We have not sold or shared the personal information of consumers under 16 years of age.
We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
Category | Retention Period | Rationale |
Account Information | Active account + 24 months | Service provision, legal obligations |
Financial Information | Per payment processor + 7 years | Financial recordkeeping |
Communication Records | Active account + 3 years | Customer service, disputes |
Marketing Data | Until unsubscribe + 30 days | Marketing, consent compliance |
Usage Data/Analytics | 36 months from collection | Service improvement |
Cookies/Tracking Data | Session to 24 months | Service functionality |
When personal information is no longer needed, we securely delete or anonymize it. Deletion methods include permanent deletion from active systems, secure overwriting of storage media, physical destruction of physical storage media, and anonymization that renders data no longer personal information. We may retain information beyond the stated periods if required by law, necessary for legal proceedings, to establish or defend legal claims, or to comply with regulatory requirements.
Your privacy rights vary depending on your location. Below we outline the rights available under different privacy laws.
If you are located in the UK or EEA, you have the following rights under the UK GDPR:
If you are a California resident, you have the following rights:
Note: Because we do not sell or share personal information for cross-context behavioral advertising, the “Right to Opt-Out” does not apply to our data practices.
If you reside in one of the US states with comprehensive privacy laws (including Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Michigan, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, Virginia, and others), you may have similar rights including: right to confirm processing, right to access, right to correct, right to delete, right to data portability, and right to non-discrimination.
You can control cookies through your browser settings. Most browsers allow you to refuse cookies or delete cookies.
Global Privacy Control (GPC): We recognize and honor Global Privacy Control signals as a valid privacy preference signal.
To exercise any of the privacy rights described above, you may contact us using any of the following methods:
To protect your privacy and security, we must verify your identity before fulfilling your request.
The security of your personal information is important to us. We implement appropriate technical and organizational measures designed to protect your personal information from unauthorized access, use, disclosure, alteration, and destruction.
Technical Safeguards: Encryption of data in transit and at rest; Secure Socket Layer (SSL) technology; firewalls and intrusion detection systems; regular security vulnerability assessments; access controls and authentication mechanisms; and secure hosting environment (AWS with industry-standard security).
Organizational Safeguards: Employee training on data protection; confidentiality agreements; access limited to need-to-know basis; incident response procedures; and regular review of security practices.
Security Limitations: While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. If you believe your interaction with us is no longer secure, please contact us immediately at info@saasrooms.com.
Your personal information is securely stored based on your location:
Personal information may be transferred between SaaSrooms Ltd (UK) and SaaSrooms LLC (US) for internal business purposes. Such transfers are governed by:
UK and EEA residents can contact us to obtain information about the safeguards we have implemented for international transfers, copies of relevant transfer mechanisms, and the countries to which we transfer personal information.
Our Service is not directed to children under the age of 13 (or under 16 in the EEA), and we do not knowingly collect personal information from children under these ages. If you are a parent or guardian and become aware that your child has provided us with personal information without your consent, please contact us at Info@saasrooms.com. If we become aware that we have collected personal information from a child under the applicable age without verification of parental consent, we will take steps to delete that information promptly.
CCPA Rights for Minors: We do not sell or share the personal information of consumers we know are under 16 years of age.
Our Service may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy policies or practices of third-party websites or services. We strongly advise you to review the privacy policy of every website or service you visit. When we integrate third-party services into our Service (such as payment processors or customer support tools), we require these providers to implement appropriate privacy and security measures.
We may update this Privacy Policy from time to time to reflect changes in our data practices, applicable laws, new features or services, or organizational changes. When we make changes, we will update the “Last Updated” date and post the revised Privacy Policy on our website. For material changes, we will provide prominent notice and/or send you an email notification prior to the changes becoming effective.
Your continued use of our Service after the effective date of any changes constitutes your acceptance of the revised Privacy Policy. If you do not agree to the revised Privacy Policy, you must stop using our Service and may request deletion of your account and personal information.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
For UK/EU Residents:
SaaSrooms Ltd – Privacy Team
308 High Street,Croydon, Surrey. CR0 1NG
Email: Info@saasrooms.com | Phone: +44 7766 070164
For US Residents:
SaaSrooms LLC – Privacy Team
8 The Green, Suite #5702, Dover, DE 19901, USA
Email: Info@saasrooms.com | Phone: +1-404-474-7755
For UK and EEA Residents: You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO):
Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Helpline: 0303 123 1113 | Website: https://www.ico.org.uk
For California Residents: You may contact the California Attorney General’s office at https://oag.ca.gov/privacy. For residents of other US states, you may contact your state’s Attorney General office or consumer protection agency.
California “Shine the Light” Law: We do not share personal information with third parties for their direct marketing purposes without your explicit consent.
CalOPPA Compliance: Users can visit our site anonymously; this Privacy Policy is easily accessible on our homepage; users will be notified of changes; and users can change their personal information by logging into their account or emailing us.
Nevada residents have the right to opt out of the sale of certain covered information. We do not sell your covered information as defined under Nevada law.
If you use our Service as part of a business account, your organization’s administrator may have access to your account and information, your use may be subject to your organization’s policies, and your organization may be the controller of the information processed through your use of our Service.
This Privacy Policy reflects the following key commitments:
Thank you for trusting SaaSrooms with your information.
We are committed to protecting your privacy and being transparent about our data practices.
The SaaSrooms Audit Tool helps you cut costs, optimize licenses, and negotiate better contracts—with AI-powered insights.
