Privacy Policy

1. Information We Collect Account Information: Name, email address, phone, company, role, sector and cadence preferences, authentication data (including SSO identifiers where enabled). Usage Information: Device identifiers, IP address, browser type, operating system, timestamps, listening analytics (plays, completion, skips, shares), in-app actions, referral URLs. Content Configuration: Selected sectors, keywords, delivery cadence, voice preferences, feedback submissions, ratings, and comments. Support & Communications: Help desk tickets, chat transcripts, call recordings, email correspondence, webinar participation, survey responses. Marketing & Events: Newsletter sign-ups, event registrations, landing page interactions, cookies or similar technologies (see Cookie Policy). Enterprise & Optional Data: Customer-uploaded sources (e.g., research notes, CRM data, internal briefings) ingested under a separate agreement; metadata necessary to align Services with contractual requirements. 2. How We Use Information - Deliver, personalise, and maintain the Services, including producing briefings, transcripts, analytics, and notifications. - Operate, secure, and troubleshoot the platform; detect, prevent, and respond to fraud or abuse. - Provide onboarding, customer success, and technical support. - Analyse engagement to enhance product performance, develop new features, and improve recommendation quality. - Communicate product updates, promotions, event invitations, and surveys (with the ability to opt out at any time). - Comply with legal obligations, enforce agreements, and protect the rights and safety of SectorVoice, customers, and third parties. 3. Legal Bases (GDPR/UK GDPR) Performance of a Contract: When processing is necessary to provide the Services. Legitimate Interests: To secure our platform, improve user experience, and conduct limited direct marketing to existing customers. Consent: For optional marketing communications, cookies, and when we rely on user-uploaded data that requires explicit authorisation. Legal Obligation: To satisfy record-keeping, compliance, tax, or regulatory requirements. 4. Sharing & Disclosure Service Providers: Cloud hosting, analytics, communications, payment processors, security, and customer success vendors operating under confidentiality and data processing agreements. Partners & Co-Branded Programmes: With your consent when participating in partner offerings, creator programmes, or joint marketing initiatives. Professional Advisors & Authorities: When required by law, regulation, subpoena, or to protect legal claims and enforce agreements. Corporate Transactions: In connection with a merger, acquisition, financing, or sale of assets, subject to contractual protections and notice where required. We do not sell personal information. 5. Retention We retain personal information only for as long as necessary to fulfil the purposes described in this Policy or as required by law. - Default retention for listening analytics is 24 months; enterprise customers can configure shorter or longer periods subject to contract. - Support records are retained for a minimum of 24 months to satisfy audit and compliance needs. - Upon termination or request, we delete or anonymise personal information unless retention is required by law or contractual obligation. 6. Your Rights & Choices Subject to applicable law, you may have the right to: - Access, correct, update, or delete personal information. - Restrict or object to processing, and request data portability. - Opt out of marketing communications via unsubscribe links or by contacting us. - Configure privacy settings for cookies and similar technologies through our Cookie Preferences manager. Submit requests by emailing privacy@sectorvoice.ai or via `/legal/data-processing-agreement` for DPA-related inquiries. We respond within 30 days (or sooner where required). 7. California and U.S. State Disclosures Residents of California and other applicable U.S. states (e.g., Virginia, Colorado, Connecticut, Utah) have the rights described above plus the right to opt out of: (a) the sale of personal information; and (b) sharing for cross-context behavioural advertising. SectorVoice does not sell personal information or engage in cross-context behavioural advertising. We honour authorised agent requests consistent with state law. 8. International Transfers SectorVoice primarily stores data in the United States using Amazon Web Services (AWS). When transferring personal data from the European Economic Area, United Kingdom, or Switzerland, we rely on Standard Contractual Clauses and implement supplementary technical and organisational measures. Regional hosting options are available for Enterprise customers under separate agreement. 9. Security Measures - Encryption in transit (TLS 1.2+) and at rest (AES-256). - Role-based access controls with SSO/SCIM support and MFA for administrative accounts. - Logging, monitoring, vulnerability management, and incident response aligned with ISO 27001 roadmap. - Human-in-the-loop review to validate AI-generated content and protect against misuse. Refer to the [Trust Center](/trust-center) for additional documentation, certifications, subprocessors, and status updates. 10. Children’s Data The Services are not directed to individuals under 16. We do not knowingly collect personal information from children. If we learn that information about a child has been collected, we will delete it. 11. Changes to This Policy We may update this Privacy Policy periodically. When we do, we will revise the "Last updated" date and provide additional notice for material changes (e.g., email or in-product alert). Continued use after such notice constitutes acceptance. 12. Contact Us Email: privacy@sectorvoice.ai