Privacy Policy
Effective date: 14 April 2026
This Privacy Policy explains how Inside Finance collects, uses, stores, and shares your personal data, and what rights you have under UK data protection law. We are committed to protecting your privacy and handling your data transparently.
1. Who We Are
Inside Finance is operated by Inside Finance, the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. For any privacy-related enquiries or to exercise your rights, contact our data protection contact at: info@inside-finance.co.uk
2. What Personal Data We Collect
We collect the following categories of personal data when you use Inside Finance:
2.1 Account and Identity Data
When you register, we collect your name, email address, and authentication credentials. This data is managed by our authentication provider, Clerk. If you sign up via a social provider (such as Google), we receive the name and email associated with that account.
2.2 Onboarding Profile Data
During onboarding, we ask for information about your educational and professional background, including your background, years of relevant experience, your target finance role or career track, sectors of interest, your primary learning goal, estimated weekly study hours, and priority level of your career ambitions. This data is used to personalise your learning experience.
2.3 Learning Progress Data
As you use the platform, we record lessons and case studies you have completed, quiz scores and results, interview practice attempts and scores, flashcard usage and progress, and content you have bookmarked.
2.4 AI Tutor Conversation Data
When you use the AI Tutor feature, the content of your messages and the AI's responses are stored in our database. Your messages are also sent to OpenAI to generate responses. Do not include sensitive personal information in AI tutor conversations.
2.5 Technical and Usage Data
We may collect standard technical data including your IP address, browser type and version, device type, pages visited, and time spent on the platform.
3. Cookies and Local Storage
We use cookies and browser local storage to provide and improve the service. The Clerk session cookie is strictly necessary for the platform to function. We do not use any analytics or advertising cookies at this time.
4. Why We Process Your Data and Our Legal Basis
Under UK GDPR, we must have a lawful basis for processing your personal data. We process data to create and manage your account (contract), personalise your learning experience (contract), track your progress (contract), provide AI tutor responses (contract), send service-related emails (contract), diagnose technical issues (legitimate interests), and comply with legal obligations.
5. How Long We Keep Your Data
We retain your personal data for as long as your account is active or as needed to provide the service. Account data is retained for the duration of your account and deleted within 90 days of account deletion. Technical/usage logs are retained for up to 12 months.
6. Third-Party Processors
We share personal data with the following third-party processors: Clerk (authentication and account management, United States), OpenAI (AI Tutor functionality, United States), Stripe, Inc. (payment processing and subscription management, United States), and Replit, Inc. (application hosting and managed PostgreSQL database infrastructure, United States — Google Cloud Platform, us-east region). We do not sell your personal data to third parties.
7. International Data Transfers
The primary application database and server infrastructure are hosted on US-based servers. All personal data processed by Inside Finance is therefore transferred to and stored in the United States. When we transfer personal data outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR, including the UK–US Data Bridge adequacy decision and Standard Contractual Clauses (SCCs).
8. Your Rights Under UK GDPR
You have the following rights in relation to your personal data: right of access, right to rectification, right to erasure, right to restrict processing, right to data portability, right to object, and right to withdraw consent. To exercise any of these rights, please contact us at info@inside-finance.co.uk. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.
9. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure, including encrypted data transmission (HTTPS) and access controls.
10. Children's Privacy
Inside Finance is not directed at children under 16. We do not knowingly collect personal data from children under 16.
11. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the effective date at the top of this page. For material changes, we will notify you by email or via an in-app notice.
12. Contact Us
If you have any questions about this Privacy Policy, please contact us at info@inside-finance.co.uk.