Privacy Policy
Last updated: 4 July 2026
This Privacy Policy describes how GovTenderIQ("we", "us") collects, uses and protects your personal information when you use our service, in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and the Privacy and Electronic Communications Regulations (PECR).
1. Information we collect
- Account information: your name and email address (via Google sign-in) and your profile picture, if provided by Google.
- Alert profile: your company name, Company Number, CPV sectors, keywords, SME suitability preferences and regions of interest that you provide to configure alerts.
- Usage data: navigation and subscription events we use to operate and improve the service.
- Payment information: card payments are processed by Stripe; we never store your full card number.
Information about tenders, contract awards and suppliers displayed on the service is public information sourced from official UK procurement notices, primarily the Find a Tender service (the official portal under the Procurement Act 2023). We process it to provide market intelligence about public procurement. Where those notices contain business contact details, we process them on the basis of our legitimate interests in providing procurement intelligence, and you may object at any time (see section 6).
2. How we use your information
We use your information to: provide the service (send tender alerts, display tenders and contract award history), manage your subscription and billing, send service communications, and comply with legal obligations. Our lawful bases are the performance of our contract with you, our legitimate interests in operating and improving the service, and your consent where required.
3. Cookies
We use a minimal set of cookies: session cookies needed to keep you signed in, and a first-touch attribution cookie that records how you first arrived at the site so we can measure which channels work. We do not use third-party advertising cookies.
4. Service providers
We share data with processors that help us operate the platform, solely for that purpose: Google (authentication/sign-in), Stripe (payments), Resend (email delivery), Vercel and Railway (hosting and infrastructure). Some providers process data outside the UK; where they do, transfers are protected by appropriate safeguards such as the UK International Data Transfer Agreement or Addendum. We do not sell your personal information.
5. Marketing communications
We may send you emails about the service and, where permitted under PECR, marketing communications. Every marketing email includes an unsubscribe link; if you opt out, we will stop sending you those communications.
6. Your rights
Under UK GDPR you have the right to request access to the personal data we hold about you, its rectification or erasure, the restriction of processing, data portability, and the right to object to processing based on legitimate interests — including the display of your business contact details sourced from public procurement notices. To exercise any of these rights, email hello@govtenderiq.co.uk and we will respond within one month. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
7. Security and retention
We apply reasonable technical and organisational measures to protect your information. We retain your data while your account is active or as needed for the purposes described in this policy and to comply with legal obligations. You can request deletion of your account and associated personal data at any time.
8. Changes to this policy
We may update this policy from time to time. If we make material changes, we will notify you through the service or by email.
9. Contact
GovTenderIQ · hello@govtenderiq.co.uk