getvenn.agency/Privacy Policy
Privacy Policy
Last updated June 2026
Your privacy matters. This policy explains exactly what data we collect, why we collect it, the legal basis for processing it and the rights you have. It is written to comply with UK GDPR, the Data Protection Act 2018 and PECR — and to be read and understood, not buried in small print.
1. Who we are
Venn is a trading name of Favours Technology Ltd (company number 16265679), registered in England and Wales. We are the data controller for personal data you provide to us and for personal data we process in the course of providing the service.
Contact: hello@getvenn.agency
Website: getvenn.agency
2. What data we collect
Personal data you provide:
- Full name and email address on registration
- Business name and agency details
- Voice profile content — your communication style and business description
- Payment information (processed by Stripe — we never store card details)
- Communications with our support team
- Content you create — outreach templates, notes and contract content
Data we collect automatically:
- IP address and browser information
- Pages visited and features used
- Session duration and interaction data
- Device type and operating system
- Referral source
Lead intelligence data (public sources only):
- Business names, addresses and phone numbers
- Publicly available website content
- Publicly available social media profiles and post data
- Google Maps and Places data
- Companies House public filings
- Trustpilot and review platform data
- Meta Ads Library data (public)
- Google Ads Transparency data (public)
- Marketplace listing data (public)
- All lead intelligence is sourced exclusively from publicly available information
Third party integration data:
- When you connect email providers (Gmail, Microsoft 365), we access only what is necessary to send emails on your behalf
- When you connect calendar providers, we access only calendar event data necessary for scheduling features
- We do not read, store or process your email inbox content beyond reply detection for leads you are actively managing
- OAuth tokens are encrypted using AES-256-GCM encryption
3. How we use your data
To provide the service:
- Creating and managing your account
- Processing searches and generating lead intelligence
- Generating AI-powered outreach content
- Managing your pipeline and client records
- Sending system emails and notifications
- Processing subscription payments
- Providing customer support
To improve the service:
- Analysing usage patterns to improve features
- Identifying and fixing technical issues
- Developing new features based on usage data
Legal bases under UK GDPR:
- Contract performance — processing necessary to provide the service you subscribed to
- Legitimate interests — improving the service, preventing fraud, ensuring security
- Legal obligation — complying with applicable laws
- Consent — where explicitly requested (you may withdraw consent at any time)
4. AI and automated processing
Venn uses the Anthropic Claude API to generate:
- Lead intelligence summaries
- Outreach content and messages
- Proposal and contract content
- Social media content
- Dashboard insights and recommendations
Important: AI-generated content is always presented to you for review before use. No automated decisions with legal or similarly significant effects are made about individuals without human review.
Lead intelligence is generated from publicly available data only. We do not use AI to make credit decisions, employment decisions or any decisions with legal effect about the businesses in your pipeline.
5. Data sharing
We share data with the following third parties only where necessary to provide the service:
Infrastructure and hosting:
- Supabase (database) — EU West, Ireland
- Vercel (hosting) — EU regions available
- Upstash (Redis queue) — EU regions
Authentication:
- Clerk — user authentication and session management
Payments:
- Stripe — subscription billing and payment processing. Stripe's privacy policy: stripe.com/privacy
Email delivery:
- Resend — transactional email delivery
AI processing:
- Anthropic — AI content generation, processed under Anthropic's API terms. We do not send personal data of your leads to Anthropic — only business intelligence data from public sources
Analytics and monitoring:
- Vercel Analytics — anonymous usage statistics
We do not sell your data. We do not share your data with advertisers. We do not use your data to train AI models without your explicit consent.
6. Lead intelligence and third party businesses
When you use Venn to research businesses:
All data gathered about third party businesses is sourced exclusively from publicly available sources including Google Places, company websites, public social media profiles, Companies House and public review platforms.
We do not access private or non-public data about any business or individual.
Business owners whose information appears in Venn's intelligence system can contact us at hello@getvenn.agency to request information about what data we hold and to request removal.
We process this data under legitimate interests — helping businesses find relevant service providers is a legitimate commercial activity that does not override the rights of the businesses being researched.
7. Data retention
- Account data — retained for the duration of your subscription plus 90 days after cancellation to allow for reactivation
- Lead and pipeline data — retained while your account is active; deleted 90 days after account cancellation unless you request earlier deletion
- Payment records — retained for 7 years as required by UK tax law
- Email integration tokens — deleted immediately on disconnection or account deletion
- Backup data — retained for up to 30 days in secure encrypted backups
8. Your rights under UK GDPR
You have the right to:
- Access — request a copy of all data we hold
- Rectification — correct inaccurate data
- Erasure — request deletion of your data
- Restriction — limit how we process your data
- Portability — receive your data in a machine-readable format
- Object — object to processing based on legitimate interests
- Withdraw consent — where processing is based on consent
To exercise any right, contact hello@getvenn.agency. We will respond within 30 days.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO): ico.org.uk | 0303 123 1113
9. International data transfers
Our primary infrastructure is located in the EU. Some third party processors may transfer data outside the UK/EU. Where this occurs we ensure adequate safeguards are in place including:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Other approved transfer mechanisms
10. Cookies
See our full Cookie Policy at getvenn.agency/cookies.
11. Security
We implement appropriate technical and organisational security measures including:
- AES-256-GCM encryption for stored credentials
- TLS encryption for all data in transit
- Clerk authentication with industry-standard session management
- Regular security reviews
- Access controls limiting staff access to personal data
- Secure EU-based database infrastructure
12. Children
Venn is a business tool for adults. We do not knowingly collect data from anyone under 18. If you believe a minor has provided us with personal data please contact hello@getvenn.agency.
13. Changes to this policy
We will notify you by email of material changes to this policy at least 30 days before they take effect. Continued use after that date constitutes acceptance.
14. Contact
Data controller:
Favours Technology Ltd (company number 16265679), trading as Venn
Registered in England and Wales
hello@getvenn.agency
Related policies
Questions about this page? hello@getvenn.agency