Privacy Policy

This Privacy Policy explains how Ivoro Ventures (“Ivoro”, “we”, “us”) collects, uses, and protects personal data when you use the Ivoro Ventures platform at platform.ivoro.ventures (the “Platform”). The Platform helps research teams and the Ivoro team evaluate deep-tech research projects for possible spin-off creation. Ivoro Ventures is the data controller.

Who the Platform is for

Access is by invitation. The Platform is used by (a) researchers invited to submit and develop a project, and (b) members of the Ivoro team who review those projects. It is not intended for the general public or for anyone under 18.

Information we collect

• Account & profile. Name, email address, preferred language, institution, and areas of expertise.
• Project content. The answers you enter in the evaluation form, documents you upload (e.g. patents, papers, pilot data), project metadata, and messages exchanged with the in-app assistant.
• Meetings & scheduling.When a project advances, information needed to schedule and hold the first meeting, including the meeting time and a calendar event (see “Google user data” below).
• Communications.Decision feedback and messages the Ivoro team sends you, and the emails we send on the platform’s behalf.
• Technical & usage data. Basic logs and activity records (e.g. sign-ins, submissions, decisions) used to operate and secure the service.

Google user data

Connecting a Google Calendar is optional and is used only by Ivoro team members so that the first meeting with a researcher can be scheduled on their own calendar. When a team member connects their Google account, we request:

• Google Calendar events (the https://www.googleapis.com/auth/calendar.events scope) — to create the first-meeting event, add the researcher as a guest, and detect when a meeting has been booked, rescheduled, or cancelled. We do not manage, read, or modify unrelated calendars or events.
• Basic profile(email address) — only to record which Google account was connected.

We access this data solely to provide the scheduling feature described above. We do not use Google user data for advertising, we do not sell it, and we do not use it to train generalized artificial-intelligence or machine-learning models. A team member can disconnect their Google account at any time from their profile, which revokes our access and deletes the stored authorization.

Ivoro Ventures’ use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

How we use information

• To operate the Platform and the project-evaluation workflow.
• To generate an AI-assisted assessment of each submitted project and to power the in-app research assistant.
• To schedule and manage meetings between researchers and Ivoro.
• To send transactional emails (sign-in links, submission confirmations, decisions, and team messages).
• To secure the service, prevent abuse, and meet legal obligations.

AI processing

To produce assessments and assistant responses, project form answers and uploaded-document text are sent to our AI providers (Anthropic and OpenAI) through their business APIs. These providers process the data only to return a result to us and, under their API terms, do not use it to train their models. We may also use web search to ground factual claims; we do not send your personal data to those searches.

Service providers

We rely on a small set of processors to run the Platform, each bound by their own data-protection terms:

• Supabase— database, authentication, and file storage.
• Vercel— application hosting.
• Anthropic and OpenAI— AI assessment and assistant features.
• Resend— transactional email delivery.
• Google— calendar scheduling, for team members who connect their account.
• Attio— the Ivoro team’s internal CRM, which records project and contact details to manage the deal pipeline.

Data retention

We keep personal data for as long as your account and project are active, and thereafter only as needed to comply with legal obligations, resolve disputes, and enforce our agreements. You can request deletion as described below.

International transfers

Some providers may process data outside your country, including in the United States. Where required, such transfers are covered by appropriate safeguards (such as the European Commission’s Standard Contractual Clauses).

Security

Access is restricted by per-account authentication and row-level database security so that users only see the projects they are entitled to. Data is encrypted in transit. No system is perfectly secure, but we take reasonable measures to protect your information.

Your rights

Subject to applicable law (including the EU/UK GDPR), you may request access to, correction of, or deletion of your personal data, object to or restrict certain processing, and request a copy of your data. To exercise any of these rights, contact us at privacy@ivoro.ventures.

Changes to this policy

We may update this policy from time to time. Material changes will be reflected by the “Last updated” date above.

Contact

For any privacy question or request, email privacy@ivoro.ventures.