SupplierGuard AISupplier Guard AI

Privacy Policy

Last updated: 24 June 2026

This Privacy Policy explains how Supplier Guard AI ("we", "us") collects, uses and protects information when you use our website and platform.

1. Who we are

Supplier Guard AI is a UK-based software service that analyses supplier invoices for finance, procurement and operations teams. For privacy enquiries contact support@supplierguardai.com.

2. Information we collect

  • Account data: name, email, company, role, password (hashed).
  • Uploaded documents: supplier invoices, statements and pricing files you submit.
  • Usage data: log information, IP address, browser type, pages visited.
  • Billing data: handled by our payment processor (Stripe). We do not store card details.
  • Demo enquiries: name, company, email, phone, monthly spend and message you submit via our demo form.

3. How we use your data

  • To provide, secure and improve the platform.
  • To process invoices and produce discrepancy and savings reports for you.
  • To communicate with you about your account, demos you request, and service updates.
  • To comply with legal obligations.

4. AI processing

Your invoices and supplier data are never used to train AI models, ours or any third party's. They are processed only to produce results for your account.

5. Storage and security

Data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Documents are held in private storage buckets accessible only via short-lived, signed URLs. Database row-level security enforces tenant isolation on every read and write.

6. Sharing

We only share data with vetted processors required to run the service (cloud hosting, payment processing, AI extraction, transactional email). We do not sell your data.

7. Your rights (UK GDPR)

  • Access, rectification and erasure of your personal data.
  • Restriction or objection to certain processing.
  • Data portability.
  • Withdraw consent at any time.
  • Lodge a complaint with the ICO (ico.org.uk).

8. Retention

Account and invoice data is kept for as long as you have an active account, then deleted within 90 days of account closure unless we have a legal obligation to retain it.

9. International transfers

Where data is processed outside the UK/EEA, we rely on Standard Contractual Clauses and equivalent safeguards.

10. Changes

We may update this policy from time to time. Material changes will be notified by email or in-app.

Questions? Email support@supplierguardai.com.