Version 2.2 · Last updated 23 May 2026
Legal
Privacy Policy
This page reflects the current GoPresent Privacy Policy. It governs the collection, use, sharing, retention, and protection of personal data across the website, Free tier, Raise Ready, Scout Portal, and Consulting Services.
1. Who We Are
GoPresent Ltd ("GoPresent", "we", "us", "our") is a company incorporated in England and Wales (Company Number: 16957741), with its registered office at Bartle House, 9 Oxford Court, Manchester, England, M2 3WQ.
GoPresent operates an AI-powered capital intelligence platform that helps founders and startups prepare institutional-grade pitch decks, gap analyses, and investor narratives through our website at https://gopresent.ai, and provides venture scouts with AI-generated investment analysis and deal intelligence through the Scout Portal.
We are the Data Controller for the personal data we collect through our website and Services, as defined under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. In certain circumstances described in Section 13B, we act as a Data Processor on behalf of scouts who upload founder data.
For data protection queries, contact us at: privacy@gopresent.ai or GoPresent Ltd, Bartle House, 9 Oxford Court, Manchester, England, M2 3WQ.
2. What This Policy Covers
This Privacy Policy explains what personal data we collect and why; how we use, store, and protect your data; who we share your data with; your rights under UK GDPR; how long we keep your data; and how to contact us or make a complaint.
This Policy applies to all users of the GoPresent Platform, across the Free Tier, the Paid Tier (currently Raise Ready at £499 launch promo / £749 regular), the Scout Portal, and Consulting Services clients. Consulting Services are a separate category governed by Statement of Work; see Section 6.3. Scout Portal Premium is in pre-launch as at the date of this Policy; clauses referring to it take operative effect on its commercial launch.
This Policy should be read alongside our Data Processing Agreement (DPA), which governs how we handle Customer Data and AI model training, and our Terms and Conditions of Service.
3. What Personal Data We Collect
Account and Identity Data: full name, email address, company name and role/title, account login credentials (password stored in hashed form only), and billing name and address.
Payment Data: payment card details processed and stored by Stripe, Inc. (GoPresent does not store card numbers), billing history and transaction records, and VAT number where applicable.
Usage and Technical Data: IP address and device identifiers, browser type and version, operating system, pages visited, features used, session duration, referral source, log data and error reports, and cookies and similar tracking technologies (see Section 10).
Customer Data: the prompts you submit, the documents you upload (pitch decks, business plans, financial projections, transcripts, and similar), and the AI outputs we generate from them. Customer Data may include company information and market data you provide, and any personal data of third parties contained within your uploaded documents — you are responsible for ensuring you have the right to share this data. Customer Data is defined the same way in Terms of Service clause 4.1; the scope of GoPresent's licence over Customer Data depends on your tier — see Section 6.
Communications Data: emails and messages you send to us, support tickets and enquiry records, and feedback, survey responses, and testimonials.
Scout Profile and Deal Brief Data: for Scout Portal users, we collect scout profile information (full name, bio, investment thesis, sectors, geographies, stage preferences), deal brief content (AI-generated analysis, scoring, and recommendations stored as structured data), scout subscription and billing data, and pitch deck uploads submitted by scouts on behalf of third-party founders (see Section 13B). Deal brief sharing and recipient view tracking data is described separately below — that feature is in pre-launch (see Section 1).
View Tracking Data (Shared Deal Briefs — pre-launch feature): the Deal Brief external-sharing feature with view tracking is in pre-launch as at the date of this Policy and is not currently active in production. When it launches as part of Scout Portal Premium, we will collect server-side the timestamp of the view, the IP address hashed using SHA-256 (one-way cryptographic hash, not reversible), and the user-agent string. Hashed IP addresses constitute pseudonymised personal data under UK GDPR and remain within the scope of data protection law. Until launch, no view tracking data is collected.
We do not intentionally collect special category data (health, biometric, genetic, racial or ethnic origin, political opinions, religious beliefs, sexual orientation, or criminal records). Please do not include such data in your Customer Data.
4. How We Collect Your Data
Direct collection: when you register an account, subscribe to a plan, submit materials, contact us, or complete forms on our Platform.
Automated collection: through cookies, analytics tools, and server logs when you use our Platform.
Server-side collection (Scout Portal Premium, pre-launch): when the Deal Brief external-sharing feature launches, third parties viewing a shared Deal Brief via a public link will have view tracking data (timestamp, hashed IP, user-agent) collected server-side without placing cookies on the recipient's device. This collection is not active until commercial launch of Scout Portal Premium.
Third parties: from payment processors (Stripe), analytics providers, and where you connect third-party integrations.
Publicly available sources: company information from Companies House, LinkedIn, or other public databases where relevant to our Services.
5. How We Use Your Personal Data
We use your personal data under the following lawful bases under UK GDPR Article 6: providing and managing your account (performance of contract); delivering the AI Services (performance of contract); processing payments (performance of contract); sending service communications (performance of contract); AI model training, evaluation, benchmarking, synthetic-data generation, and product development for Free Tier and Scout Free users (consent at signup — see Section 6); collection and use of Aggregate Usage Metrics across all tiers (legitimate interests); use of Resultant Data (derived patterns, trends, statistics) across all tiers (legitimate interests); manual review of Customer Data where reasonably necessary to investigate suspected abuse, security incidents, or breach of the Acceptable Use Policy (legitimate interests); security, fraud prevention, and abuse detection (legitimate interests); legal compliance and record-keeping (legal obligation).
For Scout Portal services: providing AI-generated analysis (performance of contract); processing founder data on behalf of scouts (legitimate interests of the scout, see Section 5A); view tracking on shared deal briefs (legitimate interests, see Section 5A).
Where we rely on legitimate interests, we have balanced our interests against your rights and concluded that our interests do not override your fundamental rights and freedoms. You have the right to object to processing based on legitimate interests at any time.
5A. Legitimate Interest Assessments
View Tracking on Shared Deal Briefs: GoPresent has conducted a legitimate interest assessment for view tracking. Our legitimate interest is providing scouts with attribution and analytics about who has viewed their shared briefs. The tracking is limited to pseudonymised data (hashed IP address) and technical identifiers (user-agent); no cookies are placed on the recipient's device; data is used solely for view counting and aggregate geographic attribution, not individual profiling or marketing; recipients are informed via a clear disclosure statement on each shared brief.
Processing Founder Data on Behalf of Scouts: when a scout uploads a founder's pitch deck, the scout is the Data Controller for founder personal data, having determined the purpose of processing (investment evaluation). GoPresent is the Data Processor, processing only on the scout's documented instructions to deliver the AI analysis service (Article 28, UK GDPR). The scout is responsible for ensuring they have lawful authority to share the founder's data with GoPresent.
6. AI Training and Service Improvement
6.1 Free Tier. By creating or maintaining a Free Tier account (including the Scout Free tier), you grant GoPresent a perpetual, royalty-free, worldwide licence to use the prompts you submit, the documents you upload, and the AI outputs we generate from them ("Customer Data") to: develop, train, fine-tune, evaluate, and improve GoPresent's own AI models, prompts, and Services; build benchmarks, evaluation datasets, and synthetic data; conduct quality and safety review (including by GoPresent staff bound by confidentiality); and inform product, research, and roadmap decisions. This licence is part of the consideration for free access to the Services. You may withdraw consent for future training use at any time by upgrading to a Paid Tier or by contacting privacy@gopresent.ai. Withdrawal applies prospectively; any model snapshot trained before withdrawal remains valid (see clause 6.6).
6.2 Paid Tier. If you are on a Paid Tier (Raise Ready at £499 launch promo / £749 regular, and Scout Portal Premium on commercial launch), GoPresent will not use your prompts, uploaded documents, or AI outputs to train, fine-tune, or improve any AI model — neither our own nor any third party's. This is binding under Terms of Service clause 4.2 and is not subject to an opt-in path.
6.3 Consulting Services. Consulting Services are a separate category from the Free and Paid Tiers above. Customer Data provided under Consulting Services are confidential and will not be used for model training, fine-tuning, or evaluation unless you provide explicit written consent in the applicable Statement of Work. Where SOW consent is given, the scope and terms set out in the SOW prevail over Sections 6.1 and 6.2 for those Consulting Services materials.
6.4 Scout Portal. Scout Free users grant the Free Tier licence in clause 6.1 in respect of their use of the Scout Portal. Scout Premium (in pre-launch as at the date of this Policy) is a Paid Tier and is subject to clause 6.2 on commercial launch. Founder personal data uploaded by a scout is processed under the cross-party processing terms in Section 13B; founder personal data is never used for model training without the scout's instruction and an appropriate legal basis.
6.5 Aggregate Usage Metrics. Regardless of tier, GoPresent collects and uses aggregated usage statistics — feature-adoption rates, session durations, error rates, aggregate cost data, and similar operational signals that do not include the content of your prompts, uploaded documents, or AI outputs. The legal basis is legitimate interests.
6.6 Resultant Data. GoPresent retains and may use Resultant Data — patterns, trends, statistics, and aggregate insights derived from use of the Services — across all tiers. Resultant Data is GoPresent's property and survives termination of your account. Resultant Data does not include, and cannot be reverse-engineered back to, identifiable Customer Data.
6.7 Safety and abuse review. Across all tiers, GoPresent may manually review Customer Data where reasonably necessary to investigate suspected abuse, security incidents, or breach of the Acceptable Use Policy. Reviewers are bound by confidentiality. Each such access is logged to an internal audit trail. GoPresent will notify the affected customer in writing within 30 days of the access, except where (a) prohibited by law (e.g. a confidentiality order from a regulator or law-enforcement authority) or (b) notification would compromise an active investigation into the customer or a third party, in which case notification is deferred until the legal restriction lifts or the investigation concludes. This is the only circumstance in which GoPresent personnel access Paid Tier Customer Data.
6.8 Withdrawal and erasure. You may withdraw consent (Free Tier) or request deletion (all tiers) at any time by contacting privacy@gopresent.ai. Source data is deleted from our systems within 30 days of a valid request. Model snapshots that have already been trained on data are not retrained — untraining is not technically feasible, and the ICO has accepted this as the standard regulator position for AI training data.
7. Who We Share Your Data With
We do not sell your personal data.
Sub-Processors. We use the following third-party services to deliver the Platform. Each provider handles personal data under its own published terms, which we link to below. The canonical, live list (including data category, region, and links to each provider's current DPA) is maintained at /legal/sub-processors and updated when sub-processors change; the list below is accurate as at the date of this Policy.
Infrastructure & hosting: Vercel Inc. (USA, application hosting + edge + builds), Supabase Inc. (USA — hosted EU-west-1, primary database + storage + auth + realtime), Cloudflare Inc. (USA, DDoS + CDN + Turnstile bot detection), Railway Corp. (USA, background-job worker compute).
Authentication: Clerk Inc. (USA, user authentication, sessions, organisations).
Billing: Stripe Inc. and Stripe Payments UK Ltd (USA / UK, payment processing, subscriptions, invoicing, tax calculation). GoPresent does not store full card details. Stripe is PCI-DSS compliant.
AI / model providers: Anthropic PBC (USA, primary LLM provider for gap analysis, deck generation, conversational AI, fact-check, presenter-script generation), Together Computer Inc. (USA, secondary / failover LLM provider when Anthropic returns 429 / 5xx), OpenAI Inc. (USA, embeddings only for the founder-portal retrieval-augmented conversation feature — never used for chat completion or generative output), Deepgram Inc. (USA, voice-note transcription), Firecrawl Ltd (USA / UK, public website extraction for competitive-intelligence enrichment).
Email: Resend Inc. (USA, transactional email delivery).
Analytics & error tracking: PostHog Inc. (USA, hosted with EU residency option, product analytics + feature flags + error tracking), Vercel Analytics + Speed Insights (cookie-free first-party telemetry), Instantly Inc. / leadsy.ai (USA, marketing visitor identification on the public site only, US-IP only, consent-gated — receives the visiting company, not the individual visitor).
Consultant operations (not exposed to founders or scouts): HubSpot Inc. (USA / EU, internal CRM for the GoPresent consultant team's lead and deal pipeline), Apify (Czech Republic) and Icypeas (France) for public-data enrichment for outbound consultant prospecting.
Shared Deal Brief Recipients (Scout Portal Premium, pre-launch): the Deal Brief external-sharing feature is not active until Scout Portal Premium launches. When live, scouts will be able to share a Deal Brief via a public link displaying the AI-generated analysis and scoring (never the original pitch deck or raw founder data). View tracking data (view count, timestamps, aggregated geographic data) will be shared with the scout who created the brief. Until launch, no Deal Brief is externally shareable and no view tracking occurs.
Professional Advisors: we may share data with legal, accounting, or insurance advisors under obligations of confidentiality.
Legal Disclosure: we may disclose data to law enforcement, regulators, or courts where required by law.
Business Transfer: if GoPresent is acquired or merges, your personal data may transfer to the successor entity. We will notify you in advance.
8. International Data Transfers
Some of our Third-Party AI Providers are based in or process data in the United States, outside the UK. We ensure all international transfers comply with UK GDPR Chapter V using UK International Data Transfer Agreements (IDTAs), UK Adequacy Regulations where applicable, or Binding Corporate Rules where applicable.
You can obtain copies of the relevant transfer mechanisms by contacting privacy@gopresent.ai.
9. Your Rights Under UK GDPR
You have the following rights regarding your personal data. To exercise any right, contact privacy@gopresent.ai. We will respond within one month (extendable by two further months for complex requests, with notice).
Right of Access (Art. 15): request a copy of the personal data we hold about you.
Right of Rectification (Art. 16): request correction of inaccurate or incomplete personal data.
Right of Erasure (Art. 17): request deletion of your personal data, subject to legal retention obligations and anonymised data in model weights.
Right of Restriction (Art. 18): request that we limit how we use your data while a dispute is resolved.
Right of Data Portability (Art. 20): request your personal data in a structured, machine-readable format.
Right to Object (Art. 21): object to processing based on legitimate interests, including for model training or direct marketing at any time.
Right to Withdraw Consent (Art. 7(3)): withdraw consent at any time where processing is based on consent. For STARTER, withdrawal results in termination of service.
Right to complain: you may lodge a complaint with the UK Information Commissioner's Office (ICO) at https://ico.org.uk, 0303 123 1113, or Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. We would always prefer to resolve concerns directly — please contact us first at privacy@gopresent.ai.
10. Cookies and Tracking Technologies
Cookies are small text files stored on your device when you visit our Platform. We use cookies and similar technologies to make our Platform work, improve your experience, and understand how users engage with our Services.
We use four types of cookies: Essential / Strictly Necessary (required for the Platform to function; cannot be opted out of without opting out of the service); Performance / Analytics (understand user interaction; can be declined via cookie settings); Functional (remember your preferences; can be declined); and Marketing / Targeting (deliver relevant communications; can be declined).
You can manage or disable cookies through your browser settings or our cookie consent manager on the Platform. Disabling essential cookies may impair your ability to use the Services. See our Cookie Policy for full details.
View Tracking on Shared Deal Briefs (PECR): view tracking on shared Deal Brief pages operates server-side and does not place cookies on the recipient's device. This tracking does not engage PECR consent requirements (Regulations 6 and 7) because no cookies are placed. Following amendments to PECR by the Data (Use and Access) Act 2025 (effective February 2026), analytics tracking collecting only aggregate statistics is exempt from prior consent requirements. GoPresent's view tracking qualifies for this exemption.
11. Data Retention
We retain personal data only for as long as necessary for the purposes set out in this Policy, unless a longer retention period is required by law.
Account and identity data: duration of account plus 6 years after closure (legal and tax purposes). Payment and billing records: 7 years (HMRC requirements).
Customer Data — Paid Tier: 90 days after the customer's access window expires (matching the 90-day Raise Ready access term), then deleted from primary storage. Backups age out under our backup-rotation policy. Customer Data — Free Tier: retained for as long as your account is active, subject to the licence granted in Section 6.1; identifiable Customer Data is deleted within 30 days of a valid erasure request, with the model-snapshot caveat in Section 6.8. Customer Data — Consulting: 30 days after SOW completion, then deleted.
Founder data uploaded via scouts: subject to the scout's instructions as Data Controller. Where the scout has not granted training rights (Scout Premium default), founder personal data is deleted from primary storage 30 days after brief generation. Where the scout is Scout Free and the founder data forms part of the Free Tier training corpus, retention follows the Free Tier rule above.
Scout deal brief data: duration of scout account plus 6 years. View tracking data on shared briefs: 12 months. Communications and support records: 3 years from last interaction. Usage and technical data (logs): 12 months. Aggregate Usage Metrics and Resultant Data (Section 6): retained indefinitely as set out in those clauses. Marketing preferences: until consent is withdrawn plus 1 year.
12. Data Security
We implement appropriate technical and organisational measures to protect your personal data, including: TLS 1.3+ encryption in transit; AES-256 encryption at rest; role-based access control (RBAC) and multi-factor authentication (MFA) for all administrative access; authenticated, rate-limited API connections to all Third-Party AI Providers; data minimisation; regular staff data protection and security awareness training; and documented breach response procedures.
We will notify affected users and the ICO within 72 hours of becoming aware of a breach where required by UK GDPR Article 33. No method of transmission over the internet is 100% secure; while we take robust measures, we cannot guarantee absolute security.
13. Children's Privacy
Our Services are not directed at children under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact privacy@gopresent.ai and we will delete it promptly.
13A. AI-Generated Content Transparency
GoPresent uses artificial intelligence (including large language models provided by Anthropic PBC and other Third-Party AI Providers) to generate investment analysis, scores, recommendations, and related content across all service tiers and products.
AI-generated content is used across: STARTER (Free Review) — pitch deck analysis, gap analysis, and founder narrative recommendations; GROWTH and SCALE — all analytical outputs, scoring, and recommendations; Scout Portal (all tiers) — all Deal Brief content, investment analysis, and recommendations; Consulting Services — supporting analysis and research materials where clearly identified in the Statement of Work.
AI-generated content may contain errors, inaccuracies, omissions, or hallucinations. GoPresent does not warrant the accuracy, completeness, or suitability of any AI-generated output for any particular purpose. Independent human review is always recommended. Recipients of shared Deal Briefs and other shared outputs are informed that content is AI-generated via a clear disclosure statement. This reflects alignment with EU AI Act Article 50 transparency requirements (applicable from August 2026).
13B. Cross-Party Data Processing (Scout Portal)
Scout as Data Controller: when a scout uploads a founder's pitch deck or investment opportunity to GoPresent, the scout determines the purpose of processing (investment evaluation) and is the Data Controller for founder personal data contained in uploaded materials.
GoPresent as Data Processor (for Founder Data): GoPresent processes founder personal data on the scout's behalf to provide the AI analysis service, only on documented instructions, implementing appropriate security measures, ensuring sub-processors comply with data protection obligations, and not using founder data for purposes beyond providing the AI analysis service. Founder personal data uploaded by a Scout Free user is covered by the Free Tier training licence in Section 6.1 only to the extent the scout had authority to grant that licence; founder personal data uploaded by a Scout Premium user is never used for model training (Section 6.2).
GoPresent as Independent Controller (for Scout Data): GoPresent is an independent Data Controller for scout account and profile data, view tracking data on shared deal briefs, Aggregate Usage Metrics (Section 6.5), and Resultant Data (Section 6.6). Scout Free users grant the Free Tier training licence (Section 6.1) over their own Customer Data on signup; Scout Premium users (on commercial launch) are subject to the Paid Tier no-training rule in Section 6.2 — there is no opt-in path for Scout Premium training.
Founder Rights: founders whose data is in pitch decks uploaded by scouts retain all rights under UK GDPR Articles 15–22. Founder data subject rights requests should be directed to privacy@gopresent.ai. GoPresent will coordinate with the relevant scout and respond within one month.
14–16. Links, Changes, and Contact
Our Platform may contain links to third-party websites. We are not responsible for the privacy practices of those websites. We encourage you to review their privacy policies before providing any personal data.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated Policy with a new effective date and sending an email notification to registered users at least 14 days before material changes take effect. Continued use of the Services after the effective date constitutes acceptance. If you do not agree, you must stop using the Services and may request account deletion.
For any privacy-related queries, rights requests, or concerns: privacy@gopresent.ai | GoPresent Ltd, Bartle House, 9 Oxford Court, Manchester, England, M2 3WQ. We aim to respond to all queries within 5 business days and to all formal rights requests within one month as required by UK GDPR.