Grantifier
Sign inGet started
§ P/ Legal · Privacy

Privacy Policy.

Last updated: 30 April 2026. We keep this page short, plain and current.

01

Who we are

Grantifier (“we”, “us”) is an AI-powered grant discovery and application drafting platform for NGOs, operated from the United Kingdom. The service is hosted at grantifier.co.uk. For any privacy questions, write to hello@grantifier.co.uk.
02

The data we collect

  • Account data, name, work email, password hash. Provided by you at signup.
  • Organisation data, your NGO’s name, mission, country, sectors, budget, beneficiaries, past projects and impact metrics. You enter these to improve grant matching.
  • Application drafts, the AI-drafted text generated from your profile and a grant. Stored against your account.
  • Operational data, log lines, request timestamps, error traces. We do not log application content in operational logs.
  • Cookies, strictly necessary cookies for authentication only. No tracking or advertising cookies.
03

How we use it

  • To run and maintain your account.
  • To rank live grants against your NGO profile.
  • To generate AI drafts when you click Generate.
  • To support you when you contact us.
  • To investigate security issues and fix bugs.
We do not sell your data, share it with advertisers, or use it to train AI models.
04

AI sub-processors

We use Anthropic’s Claude API to generate grant summaries and application drafts. Anthropic does not train its models on data you submit through their API. Your prompts and the model’s output are processed in transit but not retained by Anthropic for training purposes. See Anthropic’s Privacy Policy.
05

Other sub-processors

  • Supabase (database & authentication), EU regions by default.
  • Vercel (web hosting), global edge with EU primary region.
  • Anthropic (AI), Claude API.
These processors operate under data-processing agreements that comply with UK GDPR and EU GDPR.
06

Where data is stored

Primary storage is in EU regions. Grant data ingested from public sources (Grants.gov, EU Funding & Tenders Portal, UKRI) is stored alongside your data but is not personal data, it is publicly published funding information.
07

How long we keep it

We retain your account and organisation data for as long as your account is active. If you cancel, we retain your data for 30 days in case you reinstate the account, then permanently delete it from primary storage. Backups are purged within 90 days of deletion.
08

Your rights (UK & EU GDPR)

You have the right to:
  • Access the personal data we hold about you.
  • Correct or update inaccurate data.
  • Delete your account and associated data.
  • Export your data in a portable format (PDF, JSON).
  • Object to processing or restrict it.
  • Lodge a complaint with the UK ICO or your local supervisory authority.
To exercise any right, email hello@grantifier.co.uk. We respond within 30 days.
09

Security

We use row-level security on every table, encrypted secrets at rest, TLS in transit, short-lived authentication tokens, and the principle of least privilege for staff access. Despite this, no system is perfectly secure, if you spot something, please email security@grantifier.co.uk.
10

Children

Grantifier is for organisations and the adults who work in them. We do not knowingly collect data about children under 16.
11

Cookies

We set the minimum number of cookies required for the site to work:
  • sb-access-token & sb-refresh-token, Supabase authentication. Strictly necessary.
We do not use Google Analytics, Facebook Pixel, advertising cookies, or any cross-site trackers.
12

Changes to this policy

If we make material changes, we’ll post a notice on the site and email account holders. The “last updated” date at the top reflects the most recent revision.
13

Contact

Privacy queries: hello@grantifier.co.uk

Security issues: security@grantifier.co.uk