Privacy Policy

Last Updated: February 2026

This Privacy Policy explains how personal data is collected, processed, and used when you visit our website.

1. Controller and Contact Information

In Short: We are responsible for your data, and you can contact us with any questions.

The website www.quants.vc (the "Website") is operated by:

Spendbase LTD
Cornwall Buildings, 45 Newhall St
Birmingham B3 3QR
United Kingdom
(hereinafter referred to as "Quants.vc," "we," "us," or "our").

We are the controller within the meaning of the EU General Data Protection Regulation (GDPR), UK GDPR, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and other applicable data protection laws.

For questions about this Privacy Policy or your personal data, please contact us:

Email: privacy@quants.vc

2. Information We Collect

In Short: We collect information you provide directly and some technical data automatically.

2.1 Information You Provide

When you use our contact forms or communicate with us, we may collect:

• First and last name
• Business email address
• Company or organization name
• Job title or role
• Phone number (if provided)
• Content of your inquiry or message

Sensitive Information: We do not intentionally collect sensitive personal information such as racial or ethnic origin, political opinions, religious beliefs, health data, or biometric data.

2.2 Information Collected Automatically

When you visit our Website, certain technical information is collected automatically:

• IP address (anonymized where required)
• Browser type and version
• Operating system
• Date and time of access
• Pages visited and referring URL
• Device type and screen resolution

This information is necessary to ensure the functionality, security, and optimization of our Website.

2.3 Categories of Personal Information Collected (California Residents)

We collect the following categories of personal information as defined by the California Consumer Privacy Act (CCPA):

• Identifiers (name, email address, IP address);
• Professional or employment-related information (company name, job title);
• Internet or other electronic network activity (browser type, pages visited).

We do not collect: biometric information, geolocation data, sensory data, or inferences drawn to create a profile about you.

3. How We Use Your Information

In Short: We use your information to respond to inquiries, operate our Website, and comply with legal obligations.

We process your personal information for the following purposes:

• To respond to your inquiries and provide the requested information;
• To operate, maintain, and improve our Website;
• To ensure Website security and prevent fraud;
• To analyze Website usage and optimize user experience;
• To comply with legal obligations and regulatory requirements;
• To send transactional communications related to your inquiries.

4. Legal Bases for Processing

In Short: We only process your data when we have a valid legal basis under applicable law.

Under GDPR and UK GDPR, we rely on the following legal bases:

• Consent (Art. 6(1)(a) GDPR): For optional cookies, if implemented in the future. You may withdraw consent at any time.
• Legitimate Interests (Art. 6(1)(f) GDPR): To operate our Website, respond to inquiries, and ensure security, where these interests do not override your rights.
• Legal Obligations (Art. 6(1)(c) GDPR): To comply with applicable laws and regulatory requirements.

Under CCPA/CPRA, we process personal information for disclosed business purposes and do not sell your personal information.

5. Cookies and Tracking Technologies

In Short: We use only essential cookies required for basic website functionality.

5.1 What Are Cookies

Cookies are small text files stored on your device when you visit websites. They help websites remember your preferences and enable certain functions.

5.2 Types of Cookies We Use

Our Website currently uses only essential and functionality cookies that are strictly necessary for the Website to operate properly. These cookies do not require your consent as they are technically necessary.

We do not use:

• Analytics cookies;
• Marketing or advertising cookies;
• Social media tracking pixels.

5.3 Cookies Currently in Use

Cookie Name	Domain	Type	Duration	Category	Purpose
_cfuvid	.hsforms.com	Third-party	Session	Functionality	Security cookie used by Cloudflare (via HubSpot infrastructure) for bot detection and rate limiting. Helps distinguish legitimate users from automated traffic.

This table is updated periodically as our technology stack evolves.

5.4 Third-Party Services

HubSpot: We use HubSpot for embedded contact forms on our Website. HubSpot sets cookies to track visitor sessions and associate form submissions with browsing activity.

HubSpot Privacy Policy:
https://legal.hubspot.com/privacy-policy

HubSpot Cookie Policy:
https://legal.hubspot.com/cookie-policy

5.5 Managing Cookies

Since we use only essential cookies, a cookie consent banner is not displayed. You can control cookies through your browser settings:

• Google Chrome
• Mozilla Firefox
• Safari
• Microsoft Edge

Please note that blocking essential cookies may prevent some Website features from functioning properly.

5.6 Do Not Track and Global Privacy Control

Do Not Track (DNT): As no uniform standard exists, we do not currently respond to DNT browser signals.

Global Privacy Control (GPC): We honor GPC signals as valid opt-out requests for the sharing of personal information, as required under CCPA/CPRA. To enable GPC, visit: https://globalprivacycontrol.org

6. Disclosure of Information

In Short: We share your information only with trusted service providers and when required by law.

We may share your personal information with:

Service Providers:
HubSpot, Inc. (Customer Relationship Management - processing contact form submissions)

All service providers are contractually bound to protect your data and process it only according to our instructions.

HubSpot Privacy Information: HubSpot, Inc. is located in the United States and processes data in accordance with its privacy policy (hubspot.com/legal/privacy-policy).

HubSpot is certified under the EU-U.S. Data Privacy Framework.

Legal Requirements: We may disclose your information when required by law, court order, or to protect our legal rights.

Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

We do not sell your personal information.

7. International Data Transfers

In Short: Your data may be transferred internationally with appropriate safeguards.

Our service providers may be located in countries outside the European Economic Area (EEA) or the United Kingdom, including the United States.

For transfers outside the EEA/UK, we implement appropriate safeguards, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• UK International Data Transfer Agreement (IDTA) or UK Addendum to EU SCCs
• EU-U.S. Data Privacy Framework for certified recipients
• Your explicit consent, where appropriate

Specifically, data submitted through contact forms is processed by HubSpot, Inc. in the United States. HubSpot participates in the EU-U.S. Data Privacy Framework and maintains Standard Contractual Clauses for international transfers.

For more information about international transfers and safeguards, please contact us.

8. Data Retention

In Short: We retain your data only as long as necessary for the purposes described.

• Contact form submissions: 3 years from last interaction
• Website log data: 90 days (anonymized thereafter)
• Cookie consent records: 3 years

We may retain data longer if required by law or for the establishment, exercise, or defense of legal claims. When data is no longer needed, it is securely deleted or anonymized.

9. Data Security

In Short: We implement appropriate technical and organizational measures to protect your data.

• Encryption of data in transit using TLS/SSL
• Secure hosting infrastructure
• Access controls limiting data access to authorized personnel
• Regular security assessments

While we strive to protect your personal information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security but commit to addressing any potential data breaches promptly in accordance with applicable laws.

10. Your Privacy Rights

In Short: You have rights over your personal data, including access, correction, and deletion.

For EEA and UK Residents:

• Right of Access: Obtain a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data
• Right to Restriction: Limit how we process your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to processing based on legitimate interests or for direct marketing
• Right to Withdraw Consent: Withdraw consent at any time without affecting prior processing

You may lodge a complaint with your local supervisory authority. For the UK: Information Commissioner's Office (ico.org.uk). For EEA: Your local Data Protection Authority.

For California Residents (CCPA/CPRA):

• Right to Know: Request information about data collection and use
• Right to Delete: Request deletion of your personal information
• Right to Correct: Request correction of inaccurate information
• Right to Opt-Out: Opt out of the sale or sharing of personal information
• Right to Non-Discrimination: Equal service regardless of exercising privacy rights

We do not sell or share your personal information for cross-context behavioral advertising.

11. Children's Privacy

In Short: Our Website is not intended for children under 18.

Our Website is designed for businesses and is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete such information promptly. If you believe we may have collected data from a minor, please contact us at privacy@quants.vc.

12. Links to Third-Party Websites

Our Website may contain links to external websites. We have no control over the content or privacy practices of these third-party sites. We encourage you to review their privacy policies before providing any personal information.

13. Updates to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by a revised "Last Updated" date. We encourage you to review this policy periodically. Material changes may be communicated through a notice on our Website.

14. How to Exercise Your Rights

To exercise any of your privacy rights, please contact us at:

Email: privacy@quants.vc
Mail: Spendbase LTD
Cornwall Buildings, 45 Newhall St, Birmingham B3 3QR, United Kingdom

When you submit a request, we will:

• Acknowledge receipt within 3 business days
• Verify your identity before processing
• Respond substantively within 30 days (45 days for CCPA requests)
• Provide our response in writing via email

If you are not satisfied with our response, you have the right to complain to your local data protection authority.