Government Market Manager
Sign inStart free

Legal

Privacy Policy

Last updated: 21 April 2026

1. Who we are

Government Market Manager is operated by Strategic Edge Consulting, a defence and national security consultancy based in the United Kingdom (“we”, “us”, “our”).

Contact: contact@governmentmarketmanager.co.uk

This policy explains how we collect, use, and protect personal data when you use Government Market Manager at sec-market-intelligence.vercel.app(the “Platform”). It applies to all users and is governed by the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data we collect

Account data

Full name, email address, organisation name, and role — provided by you during registration and profile setup.

Usage data

Search queries, saved searches, watchlist entries, pipeline activity, AI Copilot inputs, and notification preferences — generated as you use the Platform.

Billing data

If you subscribe to a paid plan, payment is handled by Stripe. We store only a Stripe customer ID and subscription status; we never see or store full card details.

Technical data

IP address, browser type, and session tokens — collected automatically by our infrastructure to operate and secure the Platform.

3. How we use your data

  • Providing, operating, and improving the Platform
  • Sending email alerts when saved searches match new procurement opportunities
  • Processing subscription payments and managing your account
  • Responding to support enquiries
  • Complying with legal obligations

We do not sell, rent, or share your personal data with third parties for marketing purposes.

4. Legal basis for processing

  • Contract performance — processing necessary to provide the service you have signed up for
  • Legitimate interests — security monitoring, fraud prevention, and platform improvement
  • Legal obligation — where we are required to retain data by law
  • Consent — for any optional marketing communications (you may withdraw at any time)

5. Third-party processors

We use the following sub-processors to deliver the Platform. All are engaged under appropriate data processing agreements.

ProviderPurposeLocation
SupabaseDatabase, authentication, and file storageEU / US (AWS)
VercelWeb hosting and edge deliveryGlobal (EU + US)
StripePayment processingUS (SCCs applied)
ResendTransactional email deliveryUS (SCCs applied)
AnthropicAI Copilot (query analysis only)US (SCCs applied)

Where data is transferred outside the UK/EEA, we rely on Standard Contractual Clauses (SCCs) or adequacy decisions as the legal transfer mechanism.

6. Data retention

We retain your account data for as long as your account is active. If you delete your account, personal data is removed within 30 days, except where we are required to retain it for legal or financial compliance purposes (e.g. billing records are retained for 7 years under UK tax law).

7. Cookies

We use only strictly necessary cookies: a session token issued by Supabase to maintain your authenticated session. We do not use analytics, advertising, or tracking cookies.

8. Your rights

Under UK GDPR you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — ask us to correct inaccurate data
  • Erasure — request deletion of your data (subject to legal retention requirements)
  • Restriction — ask us to limit processing in certain circumstances
  • Portability — receive your data in a structured, machine-readable format
  • Objection — object to processing based on legitimate interests

To exercise any of these rights, email contact@governmentmarketmanager.co.uk. We will respond within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

9. Security

We implement technical and organisational measures to protect your data, including encrypted connections (TLS), row-level security in our database, and access controls limited to authorised personnel. No system is completely secure; if you suspect a breach, contact us immediately.

10. Changes to this policy

We may update this policy from time to time. Material changes will be notified by email or an in-app notice at least 14 days before they take effect. Continued use of the Platform after that date constitutes acceptance of the updated policy.