AI Startup Insights ASI Request access

Legal

Privacy Policy

Last updated 15 April 2026

Short version: we collect the minimum we need to run the product, we don't sell it, we don't share it with advertisers, and you can ask us to delete it anytime.

1. What we collect about you

If you create an account: your email, the name you gave us, and the plan you chose. If you pay: your billing details are handled by Stripe, we never see your card number. If you use the dashboard: server logs with IP and timestamp, kept 60 days. That's it.

2. What we don't collect

We don't have a third-party analytics script that follows you around. We don't have Facebook Pixel. We don't sell anything to data brokers. We don't use session replay tools. Vercel web analytics is enabled and it's privacy-preserving (no cookies, no fingerprinting).

3. What we do with your email

We send you plan-related emails (invoices, password resets, service notices). If you subscribed to the Monday brief, we send that. We don't put you in a drip sequence. We don't "nurture" leads. If you cancel, you're removed from all lists within 24 hours.

4. Cookies

We set one cookie for signed-in sessions. That's the entirety of the cookie situation. See the Cookie Policy for details.

5. Data about the companies we track

This is worth saying clearly: we aggregate public information about AI companies. We don't aggregate personal data about employees beyond what's already public on LinkedIn or a company careers page. If you work at one of the companies we track and you want to see or remove specific mentions, write to us via the contact form and we'll handle it.

6. Where your data lives

Our app runs on Vercel (United States). Our database is Postgres hosted in the US. Our email transactional service is Resend (US). If you're in the EU, your data leaves the EU by necessity. We rely on standard contractual clauses for the transfer.

7. Your rights

Under GDPR, CCPA, or similar: you can ask us what we hold about you, correct it, export it, or delete it. We reply within 30 days, usually same week. Use the contact form with "data request" in the first line.

8. Breaches

If we have a security incident that exposes user data, we'll email every affected user within 72 hours with what we know, what we're doing, and what you should do. We won't wait for the PR team to workshop a statement first.

9. Children

The product isn't for anyone under 16. We don't knowingly collect data from minors. If you think a minor created an account, tell us and we'll remove it.

10. Changes

If this policy changes, we'll email active accounts before the change takes effect. The date at the top of this page is the current version.

11. Contact

Questions or data requests: use the contact form.