Privacy Notice

Partner intake privacy notice.

This notice applies to the partner intake workflow running on Brooklake-managed intake domains, including `listing.brooklake.group` and Brooklake intake routes that point to this application.

Controller
Brooklake OÜ, registration code 16460138
Sakala tn 7-2, Kesklinna linnaosa, Tallinn, 10141, Estonia
Contact: admin@brooklake.group

What this intake collects

  • Affiliate program, operating company, and payment-company details.
  • Manager and program contact details, including email and optional Telegram, WhatsApp, or Teams handles.
  • Brand, market, product, payment, launch, and bonus information you enter into the form.
  • Technical/session data needed to keep draft progress working, including local browser storage and short-lived session records.

Why we use the data

  • To review and manage partner, affiliate, and listing submissions.
  • To communicate with you about the submission and any follow-up needed.
  • To prepare internal review, launch planning, commercial assessment, and publication decisions.
  • To keep draft progress available on the same browser session and to protect admin-only routes.

Legal basis

  • Pre-contract steps where the submission is part of evaluating a business relationship or listing request.
  • Legitimate interests for internal review, fraud prevention, intake management, and record-keeping.
  • Legal obligations where records must be retained for tax, accounting, or dispute-handling purposes.

Who receives the data

  • Brooklake personnel and contractors who need access for review, operations, or publication planning.
  • Cloudflare, which provides hosting/runtime, D1, and KV infrastructure for this app.
  • Resend, if submission notification emails are enabled.

We do not publish raw intake submissions or contact details to the public site by default.

Retention

We keep personal data only for as long as needed for intake review, partner management, publication operations, and legal/accounting obligations. Session mappings in this app are designed to expire automatically after a short period. Draft data saved in your own browser remains there until you clear it or overwrite it.

International transfers

Some service providers may process personal data outside the EEA or the UK. Where that happens, Brooklake should rely on an appropriate transfer mechanism, such as adequacy decisions or contractual safeguards.

Your rights

  • You can request access to your personal data.
  • You can ask for correction or deletion where applicable.
  • You can object to some processing based on legitimate interests.
  • You can request restriction or portability where applicable.
  • You can complain to the relevant supervisory authority.

Send privacy requests to admin@brooklake.group.

Security

This intake uses access controls, server-side validation, and restricted admin routes, but no online system is perfectly secure. Do not include sensitive personal data that is not necessary for the listing or partner review.

Back to intake