Privacy Policy
Last updated June 2025
Access Capital, Inc. ('Access Capital', 'we', 'us', or 'our') is built for principals who value discretion. This Privacy Policy explains what information we collect, how we use and protect it, and the choices you have. It applies to our mobile apps, website, and related services (collectively, the 'Service').
1. Information we collect
We collect the following categories of information to operate and improve the Service:
- Account information — name, email address, company, role, and authentication credentials.
- Content you provide — vision scans, images, documents, voice sessions with Eden, goals, notes, and messages.
- Usage and device data — log data, IP address, device identifiers, browser type, pages viewed, and feature interactions.
- Payment information — processed by our payment provider; we store only limited billing metadata (never full card numbers).
- Integrations — data you authorize us to access from connected third-party tools (e.g., calendar, email, data rooms).
2. How we use your information
We use the information we collect to:
- Provide, maintain, and secure the Service, including valuations, live voice strategy, and intelligence features.
- Personalize your experience and remember your goals, context, and preferences.
- Process payments, manage subscriptions, and prevent fraud.
- Communicate with you about updates, security alerts, and support.
- Analyze aggregate usage to improve performance and reliability.
- Comply with legal obligations and enforce our agreements.
3. AI processing and your content
Vision scans and voice sessions are processed in real time to deliver results and are sent to our AI subprocessors solely to generate your output.
We do not use your private content to train foundation models, and we do not sell your data. Subprocessors are bound by contractual confidentiality and data-protection obligations.
4. Legal bases for processing (EEA/UK)
Where the GDPR applies, we process personal data under one or more of the following legal bases: performance of a contract, our legitimate interests (such as securing and improving the Service), your consent, and compliance with legal obligations.
5. How we share information
We share information only as described below and never sell personal data:
- Service providers — cloud hosting, analytics, payment processing, and AI subprocessors acting on our instructions.
- Legal and safety — when required by law, regulation, legal process, or to protect rights, property, and safety.
- Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this Policy.
- With your direction — when you choose to connect an integration or share output with others.
6. Data retention
We retain personal data for as long as your account is active or as needed to provide the Service. You may delete conversations, scans, and your account at any time; deleted data is purged from active systems within 30 days, subject to legal retention requirements and secure backup cycles.
7. Security
We use encryption in transit and at rest, least-privilege access controls, network isolation, and audit logging (available on Enterprise). No system is perfectly secure, but we treat your intelligence like our own and continuously improve our safeguards.
8. International data transfers
We operate globally and may transfer, store, and process your information in countries other than your own, including the United States. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses to protect your data.
9. Your rights and choices
Depending on your location, you may have the right to:
- Access, correct, or delete your personal data.
- Request a portable copy of your data.
- Object to or restrict certain processing.
- Withdraw consent where processing is based on consent.
- Opt out of marketing communications at any time.
- Lodge a complaint with your local data-protection authority.
10. Cookies and tracking
We use essential cookies to operate the Service and limited analytics cookies to understand usage. You can control cookies through your browser settings; disabling some cookies may affect functionality.
11. Children’s privacy
The Service is not directed to individuals under 18, and we do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.
12. Changes to this Policy
We may update this Policy from time to time. Material changes will be notified through the Service or by email, and the ‘Last updated’ date will reflect the latest revision.
13. Contact us
For privacy questions or to exercise your rights, contact our privacy team at privacy@accesscapital.ai. Access Capital, Inc., Miami, FL, USA and Paris, France.
This document is provided for general informational purposes and is a template that should be reviewed by qualified counsel before relying on it. Questions? Reach us at legal@accesscapital.ai.