IntelXview

Legal

Privacy Policy

This notice explains how IntelXview Ltd collects, uses, and protects personal data when you visit our websites, request a demo, or use our incident-triggered training platform.

Last updated: 7 May 2026·Effective: 7 May 2026

1. Who we are

IntelXview Ltd (“IntelXview”, “we”, “us”, “our”) is the data controller for the personal data described in this notice. We are registered in England and Wales and operate the websites www.intelxview.com and portal.intelxview.com.

For any privacy enquiry, contact our privacy team at privacy@intelxview.com.

2. Personal data we collect

We collect the following categories of personal data:

  • Identity & contact data — name, business email address, employer, job title, telephone number when you sign up, request a demo, or contact us.
  • Account & learning data — login credentials, course enrolments, completion status, training assessment results, and certificates issued via portal.intelxview.com.
  • Usage & technical data — IP address, device identifiers, browser type, language, pages visited, referrer, and session timestamps. Collected through cookies and server logs.
  • Communications data — the content of emails, sales calls, and support tickets you send us, plus delivery and engagement metadata for any marketing emails we send.
  • Billing data — invoice address and VAT number. Card details are processed directly by Stripe and never reach our systems.

We do not knowingly collect personal data from anyone under 18. IntelXview is a B2B service and is not directed at children.

3. How we use your data and our lawful bases

Under UK GDPR Article 6 we rely on the following lawful bases:

  • Contract (Art. 6(1)(b)) — to provide the IntelXview platform, deliver incident-triggered training, manage your account, issue certificates, and process payments.
  • Legitimate interests (Art. 6(1)(f)) — to operate and secure our infrastructure, prevent fraud, conduct B2B marketing to corporate contacts, analyse aggregate usage, and improve our service. You can object at any time using the contact details above.
  • Consent (Art. 6(1)(a)) — for non-essential cookies and analytics, and for marketing emails to individuals at addresses that are not corporate. You can withdraw consent at any time.
  • Legal obligation (Art. 6(1)(c)) — to retain financial records, respond to lawful requests from regulators, and comply with tax and accounting law.

4. Who we share data with

We do not sell personal data. We share it only with vetted sub-processors who help us run the service under written data processing agreements:

  • Cloud hosting & infrastructure— Vercel (marketing site), DigitalOcean (portal & APIs), Cloudflare (CDN, DNS, edge security), Supabase (application database).
  • Email & communications— Google Workspace (corporate mail), Brevo (transactional & marketing email delivery).
  • Payments — Stripe Payments UK Ltd.
  • Analytics & product — Google Tag Manager, Google Analytics 4 (subject to your consent banner choice).
  • Customer relationship management — Apollo.io for B2B contact data and outreach orchestration.

We may also disclose personal data when required by law, in response to a valid legal process, or to protect the rights, property, or safety of IntelXview, our customers, or others.

5. International transfers

Some sub-processors are based outside the United Kingdom. Where we transfer personal data outside the UK, we rely on the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, or an adequacy decision recognised by the UK government. A copy of the relevant safeguards is available on request.

6. How long we keep your data

We retain personal data for the periods set out below:

  • Active customer accounts — for the lifetime of the account plus 24 months after termination, to allow reinstatement and audit.
  • Training records and certificates — 6 years from issue, to evidence compliance training.
  • Marketing contacts — until you unsubscribe or object, or 3 years of inactivity, whichever is sooner.
  • Server logs — 90 days for security and incident investigation.
  • Financial records — 7 years, as required by UK tax law.

7. Your data subject rights

Under UK GDPR you have the right to:

  • access the personal data we hold about you;
  • have inaccurate data corrected;
  • have your data erased, where applicable;
  • restrict or object to processing;
  • data portability for data you have provided;
  • withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, email privacy@intelxview.com. We respond within one calendar month.

If you are unhappy with how we have handled your data, you have the right to complain to the UK Information Commissioner's Office at ico.org.uk.

8. Cookies

We use a small number of strictly necessary cookies to run the site, and optional analytics cookies that load only after you accept them in the consent banner. You can withdraw consent at any time by clearing cookies for our domains.

9. Security

We protect personal data with TLS in transit, encryption at rest, role-based access controls, audit logging, multi-factor authentication for staff, and regular vulnerability scanning. No system is perfectly secure; if you suspect a breach involving your data, contact security@intelxview.com immediately.

10. Changes to this notice

We may update this notice from time to time. The “Last updated” date at the top of this page reflects the most recent revision. Where changes are material, we will notify active customers by email at least 14 days before they take effect.

IntelXview Ltd · Registered in England & Wales · Privacy enquiries: privacy@intelxview.com