Grantbridge UK

    Privacy Policy

    Last updated: 30/03/2026

    1. Introduction

    Grant Bridge UK ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our grant matching platform and services.

    By using Grant Bridge UK, you consent to the data practices described in this policy.

    2. Information We Collect

    Personal Information

    • Name and contact information (email, phone number)
    • Business information (company name, address, postcode)
    • Financial information (annual turnover, employee count)
    • Business profile data (industry sector, challenges, growth areas)
    • Payment information (processed securely through Stripe)

    Usage Data

    • Log files and usage patterns
    • Device information and IP addresses
    • Cookies and similar tracking technologies
    • Grant preferences and search history

    3. How We Use Your Information

    • Provide and maintain our grant matching services
    • Personalise grant recommendations using AI technology
    • Process payments and manage subscriptions
    • Send important service updates and notifications
    • Improve our platform and develop new features
    • Comply with legal obligations and prevent fraud

    4. Legal Basis for Processing (UK GDPR)

    We process your personal data based on:

    • Contract: To provide our services and fulfill our agreement with you
    • Legitimate Interest: To improve our services and prevent fraud
    • Consent: For marketing communications (with your explicit consent)
    • Legal Obligation: To comply with UK laws and regulations

    5. Data Sharing and Disclosure

    We may share your information with:

    • Service Providers: Stripe for payments, Supabase for data hosting
    • AI Services: OpenAI for grant matching (data anonymized where possible)
    • Legal Requirements: When required by law or to protect our rights
    • Business Transfers: In case of merger, acquisition, or sale

    We do not sell your personal data to third parties.

    6. Data Security

    We implement appropriate technical and organisational measures to protect your personal data, including encryption, secure hosting, and regular security assessments. However, no method of transmission over the internet is 100% secure.

    7. Your Rights (UK GDPR)

    You have the right to:

    • Access your personal data
    • Rectify inaccurate data
    • Erase your data ("right to be forgotten")
    • Restrict processing of your data
    • Data portability
    • Object to processing
    • Withdraw consent at any time

    To exercise these rights, please use our contact form and select "Privacy & Legal" as your inquiry type.

    8. Data Retention

    We retain your personal data only as long as necessary for the purposes outlined in this policy, typically for the duration of your account plus 7 years for financial records as required by UK law.

    9. International Transfers

    Your data may be transferred to and processed in countries outside the UK. We ensure appropriate safeguards are in place, including adequacy decisions and standard contractual clauses.

    10. Contact Information

    For privacy-related questions or to exercise your rights, please use our contact form and select "Privacy & Legal" as your inquiry type. All privacy requests are reviewed and responded to promptly by our team.

    You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk

    11. Changes to This Policy

    We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

    We use cookies to improve your experience.