Prospectr

Privacy Policy

Last updated 3 June 2026

This Privacy Policy explains how Prospectr (“Prospectr”, “we”, “us”) collects, uses, and protects personal data when you use our sponsor-prospecting application and website (the “Service”). We are the data controller for your account data and a data processor for the content you generate through the Service.

1. Information we collect

  • Account & organisation data — your name, email, workspace, and role, managed through our authentication provider.
  • Billing data — handled by Stripe. We store your plan and a Stripe customer reference; we do not store full card details.
  • Content you create — prospect lists, shortlists, notes, and outreach records you add in the Service.
  • Brand & contact intelligence — company and decision-maker information the Service compiles from public sources and third-party providers to support your prospecting.
  • Usage & technical data — log data, device/browser information, and error diagnostics used to operate and secure the Service.

2. How we use your data

To provide and improve the Service, generate prospect intelligence, process payments, provide support, maintain security, and comply with legal obligations. We do not sell your personal data.

3. AI processing

Generating prospect lists and brand intelligence sends your query and relevant context to our AI provider (Anthropic) to produce results. Outputs are AI-generated and may be incomplete or inaccurate — see our Terms. Our AI provider does not use data submitted through its API to train its models.

4. Sub-processors

We share data with vetted providers only as needed to run the Service:

  • Anthropic — AI generation
  • Supabase — authentication & database
  • Vercel — application hosting
  • Stripe — payment processing
  • Apollo — B2B contact enrichment
  • Resend — transactional email
  • Upstash — rate limiting
  • Sentry — error monitoring

5. Legal bases (UK GDPR / GDPR)

We process personal data to perform our contract with you, for our legitimate interests in operating and improving the Service, to comply with legal obligations, and with your consent where required.

6. Contact data & public sources

Decision-maker details surfaced in the Service are compiled from publicly available sources and enrichment providers. You are responsible for using this information lawfully in your own outreach (see our Terms).

7. International transfers

Some providers process data outside the UK/EEA. Where they do, transfers are covered by appropriate safeguards such as Standard Contractual Clauses.

8. Data retention

We retain account data for the life of your account and for a reasonable period afterwards as required for legal, accounting, or security purposes. Cached brand intelligence expires automatically on a rolling basis.

9. Security

We protect data with encryption in transit, tenant isolation at the database level, and access controls. No method of transmission or storage is completely secure, but we work to protect your data.

10. Your rights

Subject to applicable law, you may request access, correction, deletion, portability, restriction, or objection regarding your personal data. Contact us to exercise these rights. UK users may also complain to the Information Commissioner’s Office (ICO).

11. Cookies

We use essential cookies required for authentication and session management. We do not use them for advertising.

12. Children

The Service is a business tool not intended for, or directed to, children.

13. Changes

We may update this policy from time to time and will revise the “last updated” date above.

14. Contact

Questions about this policy: privacy@prospectr.uk.