Privacy Policy

Last updated: May 13, 2026

Last updated: May 12, 2026

FounderTrove ("we", "us", "our") operates the website at https://foundertrove.com/. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and your rights. We comply with the UK GDPR, EU GDPR, and applicable European data protection law.

1. Data We Collect

  • Contact form submissions — name, email address, and message content.
  • Newsletter subscriptions — email address when you subscribe.
  • Advertising enquiries — name, company, email, phone, and enquiry details.
  • Server logs — IP address, browser type, referring URL, pages visited, timestamps. Retained up to 30 days for security.
  • Cookies — described in Section 6.

2. Lawful Basis for Processing

  • Consent — newsletter subscriptions and non-essential cookies (withdraw at any time).
  • Legitimate interests — server security logs, spam prevention, site improvement.
  • Contract performance — responding to enquiries you initiate.

3. How We Use Your Data

  • To respond to your messages.
  • To send the newsletter you subscribed to (unsubscribe any time via the link in any email).
  • To follow up on advertising or partnership enquiries.
  • To maintain website security and prevent abuse.
  • To improve our website through anonymised analytics.

4. Data Sharing

We do not sell your personal data. We do not share your data with third parties for their marketing purposes. We may share data with hosting/infrastructure providers (under DPAs) and law enforcement where required by law.

5. Data Retention

  • Contact messages: up to 24 months.
  • Newsletter subscribers: until you unsubscribe, plus 30 days.
  • Advertising enquiries: up to 36 months.
  • Server logs: 30 days.

6. Cookies

  • Session cookie — temporary security cookie (CSRF). Deleted when you close your browser.
  • Consent preference — stored in localStorage, not a server cookie. Records your accept/reject choice. Expires after 12 months.
  • Analytics cookie — only set if you accept cookies and analytics is enabled. IP anonymised, no cross-site tracking.

You may reject non-essential cookies at any time using the banner at the bottom of our site.

7. Your Rights

Under GDPR you have the right to access, rectify, erase, restrict, port, object to, and withdraw consent for processing of your personal data. To exercise any right, email [email protected]. We will respond within 30 days.

8. International Transfers

Where data is transferred outside the EEA or UK, we ensure appropriate safeguards (Standard Contractual Clauses or adequacy decisions).

9. Children

Our website is not directed at children under 16. We do not knowingly collect data from children.

10. Security

We implement appropriate technical and organisational measures including HTTPS encryption, access controls, and regular security reviews.

11. Changes to This Policy

We may update this policy from time to time. The revised date will be updated above. Continued use of the website constitutes acceptance of the updated policy.

12. Contact

Privacy enquiries: [email protected].