MangoFetch logoMangoFetch
TendersAwardsIntelligenceAbout

Privacy Policy

Last updated: [DATE]

⚠️ This is a starting template, not legal advice. Have it reviewed by a qualified professional and fill in the bracketed details before launch.

1. Who we are

MangoFetch (“we”, “us”) operates this tender-aggregation website. For privacy questions, contact us at [privacy@yourdomain]. The data controller is [legal entity name and address].

2. What we collect

When you create an account we store the information you provide:

  • Email address (for login and notifications)
  • Profile details you add: name, company, country, birthday
  • Your saved tenders and saved filters
  • Basic technical/usage data (e.g. log data, device/browser info)

The tender listings themselves come from public procurement portals; they are not personal data about you.

3. How and why we use it

To provide the service (authenticate you, store your saved items and preferences), to keep the service secure and prevent abuse, to communicate with you about your account, and — where applicable — to improve the product. Under the GDPR our legal bases are performance of a contract, our legitimate interests, and your consent (where required, e.g. non-essential cookies).

4. Who we share it with

We use trusted processors to run the service, including Supabase (authentication and database hosting), Vercel (website hosting and privacy-friendly analytics), and PostHog (product analytics, processed in the EU). They process data on our behalf under appropriate agreements. We do not sell your personal data.

5. Cookies & analytics

We use essential cookies for login/session management. For analytics we use privacy-friendly, cookieless measurement (PostHog, hosted in the EU, and Vercel): it does not set tracking cookies, does not store your full IP address, and derives only coarse, country-level location. We use it to understand which pages are popular and how the site is used so we can improve it, on the basis of our legitimate interests. Typed input is masked and never recorded. You can further limit measurement using your browser's tracking protection or an ad-blocker. See our Cookie Policy.

6. Data retention

We keep your account data while your account is active and delete or anonymise it within a reasonable period after you close your account, unless we must retain it to meet legal obligations.

7. Your rights

Depending on your location (e.g. the EU/EEA under GDPR), you may have the right to access, correct, delete, restrict, or port your data, and to object to certain processing. To exercise these, email [privacy@yourdomain]. You may also lodge a complaint with your local data-protection authority.

8. Security

We use access controls (including row-level security) and encryption in transit to protect your data, but no system is perfectly secure.

9. Changes

We may update this policy; we’ll post the new version here and update the “last updated” date.