Skip to main content
At Mention Me, protecting customer data and privacy is essential. As your referral platform, we comply with GDPR. You act as the Data Controller and Mention Me acts as the Data Processor, collaborating to safeguard customer data through our Data Processing Agreement (DPA).

Types of data requests

Right to be forgotten

Your customer wants to delete all information held on them. Here’s how to do it.

Unsubscribe

Your customer wants to unsubscribe from receiving any communication relating to the referral programme. This prevents them from receiving reward notifications going forward but does not stop direct communications from you. Here’s how to do it.

Subject Access Request (SAR)

Your customer wants a file with the information we hold on them. Raise a support request with the customer details (name and email address). Here is how to find them. We will upload the data in PDF format to the secure file transfer area of the platform, where it will be stored for a maximum of 2 weeks, and confirm so you can download it and send it to your customer.

What happens when we receive a data request directly from one of your customers

Our customer journey and all emails contain prominent links to our privacy notice. The privacy notice describes all of the rights your customers have in respect of their data and how they may exercise those rights. Customers are directed to our privacy contact form, where they can unsubscribe or make a data request. If a customer requests to unsubscribe, they will automatically be placed on our suppression list for your refer-a-friend programme and/or your marketing programme. The privacy notice makes clear that any unsubscribe applies only to emails sent by Mention Me, not any other marketing emails they may have subscribed to with you. You cannot choose which emails to unsubscribe a customer from — it is all or none.
Last modified on March 23, 2026