Privacy Policy
This Privacy Policy explains how GovTenderIQ (“GovTenderIQ”, “we”, “us”) collects, uses, discloses and protects personal data when you visit our website or use our public-tender intelligence service (the “Service”), in accordance with the EU General Data Protection Regulation (GDPR) and applicable national data protection law.
1. Who is responsible for your data (data controller)
The data controller for the personal data processed through the Service is:
[Company legal entity — to be completed before go-live]
Registered address: [to be completed before go-live]
Registration number: [to be completed before go-live]
Contact for privacy matters: privacy@govtenderiq.com
2. What personal data we collect
- Account data: the email address and (optionally) name you provide when you create an account, sign in with Google, or request a magic sign-in link.
- Preferences: your chosen language, display currency and default country, and the alert profiles you configure (sectors, countries, value ranges, keywords).
- Usage data: product events recorded server-side to understand how the Service is used and to improve it (for example, that a search or an alert was created). We do not use third-party advertising or tracking cookies to collect this data — see our Cookie Policy.
- Payment data: if you subscribe to a paid plan, payments are processed by Stripe. We do not collect or store your card details — Stripe provides us only with confirmation of payment, the plan purchased and billing status.
- Technical data: IP address and browser information processed transiently for security, fraud prevention and to determine your approximate country for localisation (language and currency defaults).
3. Legal basis for processing
- Performance of a contract — to create your account, provide the Service and process subscriptions.
- Legitimate interest — to secure the Service, prevent abuse, and improve our product based on aggregate usage.
- Consent — for any non-essential cookies or optional communications, which you can withdraw at any time.
- Legal obligation — to comply with tax, accounting and other statutory requirements related to billing.
4. How we use your data
We use your personal data to: provide and maintain the Service; match tenders against your alert configuration and send you alert emails; process subscription payments; provide customer support; secure the platform against fraud and abuse; and understand aggregate usage patterns to improve the product. We do not use your personal data for automated decision-making that produces legal effects concerning you.
5. Data retention
We retain account data for as long as your account is active. If you delete your account, we delete or anonymise your personal data within a reasonable period, except where we are required to retain certain billing records for longer to comply with tax and accounting obligations. Usage events are retained in aggregate or pseudonymised form for product analytics.
6. Your rights under GDPR
Subject to applicable law, you have the right to:
- Access the personal data we hold about you.
- Rectification of inaccurate or incomplete data.
- Erasure (“right to be forgotten”) of your personal data.
- Restriction of processing in certain circumstances.
- Data portability — to receive your data in a structured, commonly used format.
- Objection to processing based on our legitimate interest.
- Withdraw consent at any time, without affecting prior lawful processing.
To exercise any of these rights, contact us at privacy@govtenderiq.com. You also have the right to lodge a complaint with your local data protection supervisory authority.
7. Who we share data with
We do not sell your personal data. We share limited personal data with service providers (data processors) strictly to operate the Service, under data processing agreements:
- Vercel — application hosting.
- Railway — database hosting.
- Stripe — payment processing.
- Resend — transactional and alert email delivery.
8. International data transfers
Some of our processors may process data outside the European Economic Area. Where this occurs, we rely on appropriate safeguards recognised under GDPR, such as the European Commission’s Standard Contractual Clauses or an adequacy decision.
9. A note on tender and company data
The tender, contract and award information shown in the Service is sourced from official public procurement publications, primarily Tenders Electronic Daily (TED), the online version of the “Supplement to the Official Journal” of the European Union. Names of contracting authorities and of companies that are awarded public contracts are published by those official sources as public information about the use of public funds; we aggregate, structure and index that public information but are not its original source.
10. Cookies
The Service uses only essential cookies (for authentication and to remember your language, currency and cookie preferences). See our Cookie Policy for details.
11. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be reflected by updating the “Last updated” date above.
12. Contact
Questions about this policy or about your personal data can be sent to privacy@govtenderiq.com.