AMPLIFY:GOOD

Privacy & Cookie Policy

Effective date: 3 May 2026

PRIVACY POLICY

1. Introduction

This Privacy Policy explains how Amplify:Good (“we”, “us”, “our”),a service operated by ROSTRA DIGITAL LTD., collects, uses, discloses, and protects personal data when you use the amplifygood.eu platform and associated services.

Amplify:Good provides strategic content creation and influencer campaign services across Europe. This policy applies to all users of our platform, including creators, campaign partners, and clients.

We are committed to protecting your personal data in full compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and all applicable national data protection legislation.

2. Data Controller

The data controller for personal data processed via this platform is:

ROSTRA DIGITAL LTD.

The Black Church, St. Mary's Place, Dublin 7, Ireland

For all privacy-related enquiries, including requests to exercise your data rights, please contact: hello@amplifygood.eu

3. Personal Data We Collect

Depending on how you interact with our platform, we may collect the following categories of personal data:

a) Account and contact data

Full name
Email address
Country of residence and relevant tax jurisdiction

b) Creator and campaign data

Social media profile information (handles, follower counts, engagement metrics)
Campaign participation history and performance data
Content-related data (published or submitted content, captions, formats)
Audience demographic and analytics data

c) Financial and transaction data

Payment details and banking information (processed via secure third-party payment providers)
Billing and invoicing records
Tax identification information where required by law

d) Automatically collected data

IP address and approximate geolocation
Device type, operating system, and browser information
Platform usage data, including pages visited, session duration, and interaction logs

4. How We Use Your Data

We process personal data for the following purposes:

To provide, operate, and maintain the Amplify:Good platform and its features
To manage and execute creator campaigns on behalf of clients
To process payments, issue invoices, and manage billing
To ensure legal, contractual, and regulatory compliance
To communicate with users regarding campaigns, updates, and support
To analyse and improve platform performance, user experience, and campaign effectiveness
To comply with applicable tax obligations and financial reporting requirements

5. Legal Basis for Processing

We process your personal data on the following legal bases under Article6 of the GDPR:

Contract performance (Art. 6(1)(b))

Processing necessary to enter into or perform a contract with you, including managing campaigns, processing payments, and providing platform services.

Legal obligation (Art. 6(1)(c))

Processing required to comply with applicable laws, including tax, financial, and employment legislation.

Legitimate interests (Art. 6(1)(f))

Processing necessary for our legitimate business interests, such as analysing platform performance, preventing fraud, and maintaining network security, where these interests are not overridden by your rights.

Consent (Art. 6(1)(a))

Where we rely on your consent — for example, for optional marketing communications or analytics cookies — you may withdraw that consent at any time without affecting the lawfulness of prior processing.

6. Data Sharing

We do not sell your personal data. We may share your data with thefollowing categories of third parties, strictly for the purposesdescribed in this policy:

Payment processors and financial services providers
Legal, compliance, and regulatory service providers
IT infrastructure, hosting, and cloud service providers
Analytics and platform performance providers
Campaign clients, where sharing is necessary for the delivery of contracted services

All third parties are contractually required to process your data only on our instructions and in accordance with applicable data protection law.

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). Where such transfers occur,we ensure that appropriate safeguards are in place, including:

Standard Contractual Clauses (SCCs) approved by the European Commission
Transfers to countries with an adequacy decision from the European Commission

You may request further information about the specific safeguards applied to any such transfer by contacting hello@amplifygood.eu.

8. Data Retention

We retain personal data only for as long as is necessary to fulfil the purposes set out in this policy, or as required by applicable law. Ingeneral:

Account and campaign data is retained for the duration of the contractual relationship and up to 3 years thereafter
Financial and transactional data is retained for a minimum of 7 years to comply with tax and accounting obligations
Analytics data is retained in anonymised or aggregated form after 24 months

When personal data is no longer required, it is securely deleted or anonymised.

9. Your Rights Under the GDPR

Subjectto applicable law, you have the following rights in relation to yourpersonal data:

Right of access - to obtain a copy of the personal data we hold about you
Right to rectification to correct inaccurate or incomplete dat
Right to erasure - to request deletion of your data in certain circumstances
Right to restriction - to request that we limit how we use your data
Right to data portability - to receive your data in a structured, machine-readable format
Right to object - to object to processing based on legitimate interests
Right to withdraw consent - where processing is based on consent, to withdraw it at any time

To exercise any of these rights, or if you have any concerns about how we use your data, please contact us at hello@amplifygood.eu. You also have the right to lodge a complaint with your local supervisory authority (in Ireland: the Data Protection Commission, dataprotection.ie).

10. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. These include encryption in transit, access controls, regular security reviews, and staff training on data protection obligations.

While we take data security seriously, no system is entirely immune from risk. We encourage you to use strong passwords and to notify usimmediately if you suspect any unauthorised access to your account.

11. Third-Party Services

Our platform may integrate with or link to third-party services and platforms (such as social media networks and payment providers). These third parties operate under their own privacy policies and terms of service. We are not responsible for the data practices of such third parties and encourage you to review their policies before engaging with their services.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changesin our practices, services, or legal obligations. Where we make material changes, we will notify you by email or by displaying a prominent notice on our platform. The date at the top of this document indicates when it was last revised. Continued use of theplatform after an update constitutes acceptance of the revisedpolicy.

13. Contact

For any questions, requests, or concerns relating to this Privacy Policy, please contact:

ROSTR ADIGITAL LTD. (operating as Amplify:Good)

The Black Church, St. Mary's Place, Dublin 7, Ireland

hello@amplifygood.eu

‍

COOKIE POLICY

1. What Are Cookies?

Cookies are small text files that are stored on your device (computer, tablet, or mobile phone) when you visit a website. Cookies allowwebsites to recognise your device, remember your preferences, andcollect information about how you use the site.

In addition to cookies, we may use similar technologies such as pixel tags, web beacons, and local storage objects. This policy refers toall such technologies collectively as 201ccookies201d.

2. Who Places Cookies on Our Site?

Cookieson amplifygood.eu may be placed by:

Amplify:Good / ROSTRA DIGITAL LTD (first-party cookies)
Trusted third-party providers such as analytics and performance services (third-party cookies)

We do not permit third-party advertising networks to place cookies on our site for the purpose of serving behavioural advertisements to our users.

3. Types of Cookies We Use

Strictly Necessary Cookies

These cookies are essential for the website to function correctly and cannot be disabled. They include cookies that enable core functionssuch as security, session management, and accessibility. No consentis required for strictly necessary cookies.

Performance and Analytics Cookies

These cookies help us understand how visitors use our website by collecting anonymous, aggregated data about page views, traffic sources, and user interactions. We use this information to improve siteperformance and user experience. These cookies are only placed withyour consent.

Functional Cookies

These cookies allow the site to remember choices you have made (such as language preferences or login status) to provide a more personalised experience. These cookies are only placed with your consent.

Marketing and Communications Cookies

Where applicable, we may use cookies to track the effectiveness of communications campaigns or to support retargeting on third-party platforms. These cookies are only placed with your explicit consentand can be withdrawn at any time.

4.Third-Party Cookies

We may use services from third-party providers that set cookies on your device. These providers include, but may not be limited to, analytics services. Each third party is governed by its own privacy and cookiepolicy, over which we have no direct control. We encourage you to review these policies independently.

5.Cookie Consent and Management

When you first visit amplifygood.eu, you will be presented with a cookie consent banner allowing you to accept or decline non-essential cookies. Your preferences are stored and respected on subsequentvisits.

You can update or withdraw your consent at any time by:

Using the cookie preference panel accessible via the link in our website footer
Adjusting your browser settings to block or delete cookies (please note this may affect certain website functionality)

For guidance on managing cookies through your browser, visit www.aboutcookies.org or the support pages of your browser provider.

6. Data Protection

Any personal data collected through cookies (such as IP addresses or device identifiers) is processed in accordance with our Privacy Policy and applicable data protection law, including the GDPR and the Privacy Directive (as implemented in national law).

Where cookies involve the processing of personal data, the legal basis is either your consent (for non-essential cookies) or our legitimate interests in maintaining the security and functionality of our services (for strictly necessary cookies).

7. Retention of Cookie Data

The retention period for cookie data varies depending on the type of cookie:

Session cookies are deleted automatically when you close your browser
Persistent cookies remain on your device for a set period (typically between 30 days and 2 years) or until you delete them manually

Analytics and functional cookie data is typically anonymized or deleted within 24 months.

8. Changes to This Policy

We may update this Cookie Policy periodically to reflect changes in technology, regulation, or our business practices. Any updates will be posted on this page with a revised effective date. We encourageyou to review this policy regularly.

9. Contact

If you have any questions about this Cookie Policy or how we use cookies, please contact:

ROSTRA DIGITAL LTD (operating as Amplify:Good)

The Black Church, St. Mary's Place, Dublin 7, Ireland

hello@amplifygood.eu

‍