Vector

Privacy Policy

Last updated: May 18, 2026

1. Introduction

Vector (“we,” “our,” or “us”) is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our platform.

2. Information We Collect

Information You Provide

  • Account information: name, email address, company name, and job title when you register or request a demo.
  • Conversational data: responses provided during check-in sessions with our AI assistant.
  • Contact information: details you provide when reaching out through our contact form.

Information Collected Automatically

  • Usage data: pages visited, features used, session duration, and interaction patterns.
  • Device information: browser type, operating system, device identifiers, and IP address.
  • Cookies and similar technologies: see our Cookie Policy for details.

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our platform and services.
  • Generate aggregated, anonymized organizational insights for your employer.
  • Communicate with you about your account, updates, and support requests.
  • Ensure the security and integrity of our platform.
  • Comply with legal obligations.

4. Data Anonymization & Confidentiality

Vector is designed with privacy at its core. Individual conversational data is never shared with employers, managers, or any third party in identifiable form. All insights provided to organizational leadership are aggregated and anonymized to protect individual identity.

5. Data Sharing

We do not sell your personal information. We may share information with:

  • Service providers: trusted third parties that help us operate our platform (hosting, email delivery), bound by strict data processing agreements.
  • Google Analytics 4: we use GA4 to analyse website usage. GA4 is configured with IP anonymisation, Google Signals disabled, and ad personalisation disabled. We have a Data Processing Agreement with Google. Analytics data is retained for 2 months and transferred to Google LLC (USA) under the EU–US Data Privacy Framework.
  • Legal requirements: when required by law, regulation, or legal process.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, with prior notice.

6. Data Security

We implement industry-standard security measures including 256-bit encryption in transit and at rest, regular security audits, and SOC 2 Type II compliance. Access to personal data is restricted to authorized personnel on a need-to-know basis.

7. Data Retention

We retain your personal information only for as long as necessary to provide our services and fulfill the purposes described in this policy. You may request deletion of your data at any time by contacting us.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access, correct, or delete your personal information.
  • Object to or restrict certain processing activities.
  • Data portability — receive your data in a structured, machine-readable format.
  • Withdraw consent where processing is based on consent.

9. International Transfers

If your data is transferred outside your country of residence, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by relevant data protection authorities.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last updated” date.

11. Contact Us

If you have any questions about this Privacy Policy, please . contact us.