Start for Free

Privacy Policy

Last updated: January 2026

Northpeak Labs Ltd ("we", "our", "us") is committed to protecting your privacy. This privacy policy explains how we collect, use, disclose, and safeguard your personal data when you use our website and services.

1. Data Controller

The data controller for your personal data is:

  • Northpeak Labs Ltd
  • 128 City Road, London EC1V 2NX, United Kingdom
  • Company No.: 17014362

2. Data We Collect

We collect and process the following categories of personal data:

  • Account information: Email address, password (encrypted), account preferences
  • Usage data: Pages visited, features used, analysis history
  • Technical data: IP address, browser type, device information, operating system
  • Payment data: Processed securely by Stripe (we do not store your payment card details)

3. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and maintain our services
  • To manage your account and subscription
  • To improve and personalize your experience
  • To communicate with you about your account, updates, and promotions
  • To comply with legal obligations
  • To ensure the security of our platform

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contract performance: To provide services you have requested
  • Consent: For marketing communications and optional cookies
  • Legitimate interests: To improve our services and ensure security
  • Legal obligation: To comply with applicable laws

5. Data Storage and Security

Your data is stored securely using industry-standard measures:

  • Data is stored with Supabase (PostgreSQL database) with encryption at rest and in transit
  • Servers are located in the European Union
  • We retain your data for as long as your account is active or as needed to provide services
  • Upon account deletion, your data is permanently removed within 30 days

6. Data Sharing

We may share your data with the following third parties:

  • Vercel Inc.: Website hosting and deployment
  • Supabase Inc.: Database and authentication services
  • Stripe Inc.: Payment processing
  • Analytics providers: To understand usage patterns (anonymized data)

We may also disclose data when required by law or to protect our rights

7. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

  • Right of access: Request a copy of your personal data
  • Right to rectification: Correct inaccurate personal data
  • Right to erasure: Request deletion of your personal data
  • Right to restriction: Limit how we use your data
  • Right to data portability: Receive your data in a structured format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent at any time

To exercise these rights, contact us at: hello@northpeaklabs.co.uk

8. International Data Transfers

Some of our service providers are located outside the European Economic Area (EEA). When transferring data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

9. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this privacy policy or wish to exercise your rights, please contact us at:

  • Email: hello@northpeaklabs.co.uk
  • Address: Northpeak Labs Ltd, 128 City Road, London EC1V 2NX, United Kingdom