Privacy Policy
Last updated: March 18, 2026. See also: Terms of Service, Security, Compliance.
GDPR & EU AI Act
We are committed to GDPR and the EU AI Act for data protection and responsible AI.
Transparent Data Use
We clearly explain how we collect, use, and protect your data.
Your Data Rights
You have full control over your personal data and privacy settings.
Privacy Commitment
At Fundup AI, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information.
1. Information We Collect
Personal Information
We collect information you provide directly to us, such as:
- Name and email address when you create an account
- Company information and job title
- Payment information for billing purposes
- Communications with our support team
- Feedback and survey responses
Usage Information
We automatically collect certain information about your use of our services:
- Log data including IP address, browser type, and operating system
- Pages visited and features used within our platform
- API usage patterns and performance metrics
- Device information and unique identifiers
Cookies and Tracking
We use cookies and similar technologies to enhance your experience and analyze usage patterns.
- Essential cookies: Required for the dashboard (authentication, session management, security). These cannot be disabled; use of the dashboard implies acceptance.
- Optional cookies: Used on marketing pages only; controlled via our cookie consent banner (Accept/Reject). If you reject, analytics and advertising cookies are not set.
- Cookie consent: Shown on marketing pages only. The dashboard does not display a separate cookie consent banner; by using the dashboard you accept essential cookies and any prior consent choice stored in your browser.
2. Ask AI: Your Data and Our AI
When you use Ask AI, we apply the following practices:
- We do not use your information to train our AI. We do not use your queries, inputs, conversation content, or any information you provide through Ask AI to train or improve our AI models or engine.
- We do not use your behavior for training. We do not use your behavior, usage patterns, or interactions with Ask AI to train our AI.
- You own your data. All information you provide and outputs generated for you in Ask AI are yours. We do not claim ownership; you retain full ownership of your inputs and the results.
- GDPR and EU AI Act. We are committed to complying with the EU General Data Protection Regulation (GDPR) and the EU Artificial Intelligence Act (EU AI Act) in how we design and operate Ask AI and related AI features.
Processing of Ask AI-related data (e.g. for delivering the service, security, or legal obligations) is limited to what is necessary and is not used for AI training or model improvement.
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our services
- Process transactions and send billing information
- Send technical notices and support messages
- Respond to your comments and questions
- Analyze usage patterns to enhance user experience
- Detect and prevent fraud and abuse
- Comply with legal obligations
- Contact management and product analytics (via our own first-party infrastructure at t.fundup.ai)
4. Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:
- Service Providers: With trusted third-party vendors who assist in operating our platform
- Legal Requirements: When required by law or to protect our rights and safety
- Business Transfers: In connection with mergers, acquisitions, or asset sales
- Consent: With your explicit consent for specific purposes
5. Data Security
We implement comprehensive security measures to protect your information:
- Encryption of data in transit and at rest
- Regular security audits and penetration testing
- Access controls and authentication requirements
- Employee training on data protection practices
- Incident response procedures
We follow industry best practices and are committed to GDPR and the EU AI Act, and to HIPAA where applicable. We are actively working towards achieving full compliance certifications.
6. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
- Access: Request a copy of the personal information we hold about you
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your personal information
- Portability: Request transfer of your data to another service
- Restriction: Request limitation of processing of your information
- Objection: Object to processing of your information for certain purposes
To exercise these rights, please contact us at [email protected] or use our data removal request form.
6b. Rights of Individuals and Companies Whose Data Appears on Our Platform
Fundup AI aggregates publicly available information about recently funded companies and their key contacts. We process this data under legitimate interest (GDPR Art. 6(1)(f)) for the purpose of providing B2B funding intelligence services.
What data we may hold
- Company name, description, website, and logo
- Funding amounts, stages, dates, and investor names
- Industry classification and geographic location
- Key contacts: names and LinkedIn profile links
- Technology stack information
- Publicly listed open roles and career page metadata, used to compute Hiring Signals (department, seniority, work mode); no applicant or candidate data is collected
Your rights
If you are an individual whose personal data (such as name or LinkedIn profile) appears on our platform, or if you represent a company listed on Fundup AI, you have the right to:
- Object to processing (GDPR Art. 21): You may object to our processing of your personal data based on legitimate interest
- Request erasure (GDPR Art. 17): You may request deletion of your personal data from our platform
- Request company delisting: Companies may request removal of their entire listing from Fundup AI
How to request data removal
You can submit a data removal request through our online form or by emailing [email protected]. To verify your identity, we require you to submit the request using a company domain email address. We will process verified requests within 30 days.
7. Data Retention
We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specifically:
- Account information is retained while your account is active
- Usage data is typically retained for 2 years for analytics purposes
- Financial records are retained for 7 years for compliance
- Support communications are retained for 3 years
8. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions for certain countries
- Certification schemes and codes of conduct
9. Children's Privacy
Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.
10. Third-Party Services
We use the following third-party services to operate and improve our platform. We share only the minimum data necessary for each purpose:
- Google Tag Manager (GTM): Tag management and analytics. On marketing pages, optional tracking respects your cookie consent. When you reject cookies, GTM operates in a limited mode without advertising cookies. Google Privacy Policy
- Crisp: Live chat support. We share chat messages and, if you provide it, your email. Crisp Privacy
- PostHog: Product analytics and usage insights. We collect anonymized usage events to improve the product. PostHog Privacy
- Sender.net: Newsletter and email campaigns. We share your email address and subscription preferences when you subscribe. Sender.net Privacy Policy
We do not sell your personal information. Each service processes data according to its privacy policy and our agreements.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Sending an email to your registered email address
- Posting a notice on our website
- Providing an in-app notification
Your continued use of our services after the effective date of the updated policy constitutes acceptance of the changes.
12. Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact us:
Privacy Officer: [email protected]
General Contact: [email protected]
Address: Legal Iuris La Zenia, C. Salzillo, S/n, 03189 Orihuela, Alicante, Spain
13. Compliance Certifications
GDPR Commitment
We are committed to complying with the General Data Protection Regulation (GDPR) for all EU residents and working towards providing full data subject rights.
EU AI Act Commitment
We are committed to complying with the EU Artificial Intelligence Act (EU AI Act) in the design, deployment, and operation of our AI systems, including Ask AI.
HIPAA Commitment
We are committed to meeting HIPAA requirements for handling protected health information when applicable.