Privacy Policy

Last Updated: October 1, 2025  •  Effective Date: October 1, 2025

DataInx Ventures LLC ("DataInx Ventures," "we," "our," or "us") is committed to protecting the privacy and security of personal information entrusted to us by visitors to our website at dataiinx.com (the "Site"), prospective and current portfolio founders, limited partners, and other individuals with whom we interact in connection with our investment activities. This Privacy Policy explains how we collect, use, disclose, retain, and protect personal information, and describes the rights available to individuals under applicable privacy laws including the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA"), and related state and international privacy regulations.

By accessing or using the Site, submitting information through our contact forms, or otherwise engaging with DataInx Ventures, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the practices described herein, please do not use the Site or submit personal information to us.

1. Who We Are and How to Contact Us

DataInx Ventures LLC is the data controller responsible for the personal information described in this Privacy Policy. We are a venture capital firm incorporated under the laws of the State of Delaware and headquartered in New York, New York.

Registered Address: DataInx Ventures LLC, 140 Broadway, Suite 4600, New York, NY 10005, United States

Privacy Team: privacy@dataiinx.com

Data Protection Officer: dpo@dataiinx.com

EU Representative: eu-rep@dataiinx.com (for individuals in the European Union exercising GDPR rights)

UK Representative: uk-rep@dataiinx.com (for individuals in the United Kingdom exercising UK GDPR rights)

2. Information We Collect

2.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us when you interact with the Site or contact us directly. This includes:

• Contact Information: Your full name, email address, phone number, company name, job title, and mailing address, provided when you complete our contact form, request information about our investment activities, or communicate with our team.
• Pitch and Company Information: Business plans, financial projections, pitch decks, company descriptions, founding team biographies, competitive analyses, and other materials submitted by founders seeking investment from DataInx Ventures.
• Limited Partner Information: Financial information, accredited investor documentation, identity verification documents, and correspondence submitted in connection with fund investments by limited partners.
• Newsletter Subscriptions: Email address and name provided when subscribing to our Insights newsletter.
• Communications: Content of emails, messages, meeting notes, and other communications you send to or receive from DataInx Ventures.

2.2 Information Collected Automatically

When you visit the Site, we and our service providers automatically collect certain technical and usage information, including:

• Log Data: IP address, browser type and version, operating system, referring URLs, pages visited on the Site, date and time of visits, and duration of page views.
• Cookie Data: Information collected through cookies and similar tracking technologies as described in our Cookie Policy. See Section 10 and our standalone Cookie Policy for full details.
• Device Information: Device identifiers, screen resolution, time zone settings, and other technical characteristics of your device and browser.

2.3 Information from Third Parties

We may receive personal information about you from third-party sources, including:

• Publicly available professional profiles, such as LinkedIn, Crunchbase, or AngelList, in connection with our investment research and portfolio monitoring activities.
• Referrals from co-investors, advisors, founders, or other members of the venture ecosystem who introduce us to potential portfolio companies or limited partners.
• Background check and Know-Your-Customer service providers engaged for compliance and anti-money laundering purposes in connection with fund investments.

3. How We Use Personal Information

3.1 Core Investment Activities

We use personal information primarily to conduct our investment activities, including evaluating investment opportunities, managing existing portfolio relationships, and fulfilling our obligations to limited partners. Specific uses include:

• Reviewing and evaluating pitch materials, financial projections, and business plans submitted by founders.
• Conducting due diligence, reference checks, and background screening on prospective portfolio company founders and key personnel.
• Managing ongoing relationships with portfolio company founders and executives, including board participation and operational support.
• Processing and managing limited partner subscriptions, capital calls, distributions, and reporting.
• Complying with anti-money laundering (AML), Know-Your-Customer (KYC), and other regulatory requirements applicable to investment funds and financial entities.

3.2 Site Operations and Communications

• Operating, maintaining, improving, and personalizing the Site and its content.
• Responding to your inquiries, contact form submissions, and communications.
• Sending our Insights newsletter and other publications you have subscribed to receive.
• Analyzing Site usage patterns to understand how visitors use our content and improve user experience.

3.3 Legal and Compliance

• Complying with applicable laws, regulations, court orders, and legal processes.
• Enforcing our agreements and protecting our legal rights and the rights of third parties.
• Preventing, detecting, and investigating fraud, security incidents, and other prohibited activities.

4. Legal Basis for Processing (GDPR)

For individuals in the European Economic Area, the United Kingdom, or Switzerland, we process personal information on the following legal bases under GDPR Article 6:

• Legitimate Interests (Article 6(1)(f)): We process professional contact information, publicly available professional profiles, and pitch materials as necessary for our legitimate interests in conducting investment activities, building our deal pipeline, and managing our portfolio. We have conducted a balancing test and determined that our legitimate interests are not overridden by the rights and interests of data subjects where we process professional information in a commercial investment context.
• Contract Performance (Article 6(1)(b)): We process limited partner information, portfolio company management information, and related financial data as necessary to perform contracts to which you are a party, including fund subscription agreements and portfolio company investment agreements.
• Legal Obligation (Article 6(1)(c)): We process identification and verification information as necessary to comply with AML, KYC, tax reporting, securities regulation, and other legal obligations applicable to investment funds and financial entities.
• Consent (Article 6(1)(a)): For non-essential cookies and newsletter subscriptions, we rely on your freely given, specific, informed, and unambiguous consent. You may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.

5. Information Sharing and Disclosure

We do not sell personal information. We do not share personal information with third parties for their independent marketing or advertising purposes. We may share personal information in the following limited circumstances:

• Service Providers: We share information with vendors and service providers who perform services on our behalf, including cloud hosting providers (data storage), email service providers (communications and newsletters), background check vendors (due diligence), legal and accounting advisors (compliance), and analytics providers (Site usage). All service providers are subject to contractual data protection obligations consistent with applicable law.
• Co-Investors and Fund Partners: In connection with investment syndications or fund management activities, we may share certain founder or portfolio company information with co-investing parties, subject to appropriate confidentiality protections.
• Limited Partners: We may share portfolio company information and performance data with limited partners in our funds as required by our fund agreements and fiduciary obligations.
• Legal Requirements: We may disclose personal information to law enforcement, regulatory authorities, or other government agencies when required by law, court order, or regulatory process, or when we believe disclosure is necessary to protect our legal rights or prevent imminent harm.
• Business Transfers: In connection with a merger, acquisition, reorganization, or sale of all or substantially all of our assets, personal information may be transferred as part of the transaction. We will provide notice before personal information becomes subject to a different privacy policy.

6. International Data Transfers

DataInx Ventures is headquartered in the United States. If you are located in the European Economic Area, the United Kingdom, or another jurisdiction outside the United States with data protection laws, please be aware that your personal information may be transferred to and processed in the United States, which may not provide the same level of data protection as your home jurisdiction.

For transfers of personal information from the EEA, UK, or Switzerland to the United States or other third countries, we rely on the following transfer mechanisms: (i) Standard Contractual Clauses approved by the European Commission (Module Two: Controller to Processor, as applicable), (ii) UK International Data Transfer Agreements (IDTAs) for transfers from the United Kingdom, and (iii) the adequacy decisions of the European Commission where applicable. You may request a copy of the applicable transfer safeguards by contacting our Privacy Team at privacy@dataiinx.com.

7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected and as required by applicable law. Our general retention guidelines are:

• Founder Pitch Materials: Retained for up to 5 years from the date of submission. If an investment is made, retained for the life of the portfolio relationship plus 7 years following exit or fund wind-down for legal, accounting, and regulatory compliance purposes.
• Limited Partner Records: Retained for a minimum of 7 years following the wind-down of the relevant fund, as required by securities regulations and tax law.
• Contact Form Submissions: Retained for 3 years from the date of submission, unless an ongoing business relationship is established.
• Newsletter Subscriptions: Retained until you unsubscribe or request deletion, and for 1 year thereafter for record-keeping purposes.
• Website Analytics: Aggregated analytics data retained for up to 26 months from collection. Individual-level log data retained for 90 days.
• AML/KYC Records: Retained for a minimum of 5 years from the end of the business relationship, as required by financial regulations.

8. Data Security

We implement appropriate technical and organizational security measures designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These measures include encryption of personal information in transit and at rest, access controls and authentication requirements for employees and service providers, regular security assessments and vulnerability testing, and data minimization practices that limit collection to information necessary for specified purposes.

While we take reasonable steps to protect personal information, no security system is impenetrable. In the event of a data breach that is likely to result in high risk to your rights and freedoms, we will notify affected individuals and relevant supervisory authorities as required by applicable law, including within 72 hours of becoming aware of the breach where required by GDPR.

9. Your Privacy Rights

9.1 GDPR Rights (EEA, UK, and Switzerland)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have the following rights under GDPR:

• Right of Access (Article 15): You have the right to obtain confirmation of whether we process personal information about you and, if so, to receive a copy of that information along with information about how it is processed.
• Right to Rectification (Article 16): You have the right to request correction of inaccurate personal information and completion of incomplete personal information.
• Right to Erasure (Article 17): You have the right to request deletion of personal information in certain circumstances, including where the information is no longer necessary for the purposes for which it was collected, where you withdraw consent (and no other legal basis applies), or where you object to processing based on legitimate interests.
• Right to Restriction of Processing (Article 18): You have the right to request that we restrict processing of your personal information in certain circumstances, including while the accuracy of the information is contested or while an objection is being assessed.
• Right to Data Portability (Article 20): Where processing is based on consent or contract, and carried out by automated means, you have the right to receive your personal information in a structured, commonly used, machine-readable format and to request that we transmit it to another controller.
• Right to Object (Article 21): You have the right to object at any time to processing of personal information based on legitimate interests or for direct marketing purposes. Where you object to processing for direct marketing, we will cease such processing immediately.
• Rights Related to Automated Decision-Making (Article 22): You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal or similarly significant effects.
• Right to Withdraw Consent: Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.

9.2 CCPA Rights (California Residents)

California residents have the following rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

• Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which the information was collected, the business or commercial purpose for collecting the information, and the categories of third parties with whom we share the information.
• Right to Delete: You have the right to request deletion of personal information we have collected about you, subject to certain exceptions.
• Right to Correct: You have the right to request correction of inaccurate personal information.
• Right to Opt Out of Sale or Sharing: We do not sell or share personal information for cross-context behavioral advertising. You have the right to opt out of any future sale or sharing.
• Right to Limit Use of Sensitive Personal Information: You have the right to limit the use and disclosure of sensitive personal information to uses necessary to provide services.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. We will not deny goods or services, charge different prices, provide different quality of service, or suggest different treatment based on your exercise of privacy rights.

To exercise your California privacy rights, please contact us at privacy@dataiinx.com with the subject line "California Privacy Request." We will verify your identity before processing your request and respond within 45 days (with a possible extension of an additional 45 days where reasonably necessary).

9.3 Exercising Your Rights

To exercise any of the rights described above, please contact us at privacy@dataiinx.com. We will respond to verified requests within 30 days (for GDPR requests) or 45 days (for CCPA requests). Where we are unable to fulfill a request, we will explain the reason. If you are unsatisfied with our response, you have the right to lodge a complaint with a supervisory authority in your jurisdiction.

10. Cookies and Similar Technologies

We use cookies and similar tracking technologies on the Site. Essential cookies are necessary for the Site to function and are placed automatically. Other cookie categories are placed only with your consent. For detailed information about the cookies we use, their purposes, and how to manage them, please refer to our Cookie Policy.

11. Children's Privacy

The Site is intended for professional and business use and is not directed to individuals under the age of 18. We do not knowingly collect personal information from individuals under 18. If you believe we have inadvertently collected personal information from a minor, please contact us at privacy@dataiinx.com and we will promptly delete such information.

12. Third-Party Links

The Site may contain links to third-party websites, portals, or services that are not operated by DataInx Ventures. This Privacy Policy does not apply to those third-party sites, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party sites you visit.

13. Do Not Track Signals

Some browsers transmit "Do Not Track" signals to websites. Because there is no universally accepted standard for responding to Do Not Track signals, we do not alter our data collection practices in response to such signals. However, you may manage cookie preferences through our cookie consent mechanism or your browser settings as described in our Cookie Policy.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, applicable law, or operational requirements. When we make material changes, we will update the "Last Updated" date at the top of this policy and, where required by law or where we deem it appropriate, provide notice through the Site or direct communication. Your continued use of the Site following any changes constitutes acceptance of the updated policy.

15. Contact Information

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us:

Privacy Team: privacy@dataiinx.com

Data Protection Officer: dpo@dataiinx.com

Mailing Address: DataInx Ventures LLC, Attn: Privacy, 140 Broadway, Suite 4600, New York, NY 10005, United States

Phone: +1 (212) 400-7800

EU Representative: eu-rep@dataiinx.com

UK Representative: uk-rep@dataiinx.com

EEA and UK residents also have the right to lodge a complaint with their local data protection supervisory authority. A list of EEA supervisory authorities is available at edpb.europa.eu. The UK supervisory authority is the Information Commissioner's Office (ICO) at ico.org.uk.

© 2025 DataInx Ventures LLC. All rights reserved.

Decline Accept