← Back to get_sifted

Privacy Policy

Effective date: 1 June 2026

Data controller: Advisory Channels Company For Management Consulting LLC (CR 7043214753), on behalf of Lincolne Ventures

1. Controller and Scope

This policy describes how get_sifted ("the Service"), operated by Advisory Channels Company For Management Consulting LLC, a limited liability company registered in the Kingdom of Saudi Arabia (CR 7043214753), on behalf of Lincolne Ventures ("we", "us"), collects, processes, and protects personal data. It applies to all users of the Service, regardless of location, and is designed to meet the requirements of the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and applicable data protection legislation in the Kingdom of Saudi Arabia.

2. Data We Collect

We process only the data necessary to deliver the Service. The categories are as follows:

We do not collect sensitive personal data as defined under Article 9 GDPR. We do not process data relating to minors.

3. Legal Basis for Processing

We rely on the following legal bases under Article 6(1) GDPR:

4. How We Use Your Data

Your data is processed for the sole purpose of delivering the Service: classifying messages by urgency and relevance, generating draft replies when explicitly requested, sending replies you have reviewed and explicitly approved, and delivering notifications you have opted into. We do not use your data for advertising, profiling, or behavioural targeting. We do not sell, rent, or otherwise commercialise your personal data. We do not use your data to train, fine-tune, or improve any machine learning model.

5. Sub-Processors and International Transfers

We engage the following sub-processors to operate the Service:

Where data is transferred outside the European Economic Area, we rely on the European Commission's adequacy decisions or standard contractual clauses, as applicable.

6. WhatsApp Business Data

When you connect the WhatsApp Business integration, incoming messages are delivered to our server via Meta's Cloud API webhook. We store these messages to provide triage and notification services. Message content is shared with Anthropic solely for the purpose of AI classification within the Service. We do not share WhatsApp message content with any other third party. You may disconnect WhatsApp at any time, which immediately stops further data collection from that channel.

7. Google API Services User Data

get_sifted's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. This section describes how we handle data accessed via Google APIs and applies in addition to the rest of this policy.

The scopes we request and the user-facing features they enable:

Our Limited Use commitments for data accessed via Google APIs:

You can revoke get_sifted's access to your Google account at any time via your Google Account permissions page, or by disconnecting Gmail inside the application. Revocation immediately stops further data collection from Google APIs.

8. AI and Machine Learning

get_sifted relies on artificial intelligence to deliver its core features: classifying your messages by urgency and relevance, and generating draft replies when you explicitly request them. This section describes how your data — including data accessed via Google APIs — is handled when it is processed by AI.

Our full list of sub-processors appears in Section 5, and our specific Limited Use commitments for data accessed via Google APIs appear in Section 7.

9. Data Retention

Message data is retained for the duration of your active account. OAuth tokens are stored only while the corresponding account remains connected. Technical logs are retained for a maximum of 90 days. Upon account deletion, all personal data is permanently erased within 30 days, except where retention is required by law.

10. Security Measures

We implement the following technical and organisational measures: all data in transit is encrypted via TLS 1.2 or higher; the database enforces row-level security for multi-tenant isolation; OAuth tokens are encrypted at rest; access to production systems is restricted to authorised personnel; and we maintain error monitoring to detect and respond to anomalies.

11. Your Rights

Under applicable data protection law, you have the right to: access your data, rectify inaccurate data, erase your data, restrict processing, port your data to another service, object to processing based on legitimate interest, and withdraw consent at any time. To exercise any of these rights, contact rob@lincolne-ventures.com. We will respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority. For EU residents, you may contact your local data protection authority. For UK residents, the Information Commissioner's Office (ICO) at ico.org.uk.

12. Data Deletion

You may request complete deletion of your personal data at any time. For full details of the deletion process and scope, see our Data Deletion Policy.

13. Cookies and Tracking

The Service uses a single session cookie required for authentication. We do not use analytics cookies, advertising trackers, or third-party tracking pixels.

14. Changes to This Policy

We may update this policy to reflect changes in law or to the Service. Material changes will be communicated via the application or by email to your registered address at least 14 days before they take effect. The effective date at the top of this page always reflects the current version.

15. Contact

For any questions, concerns, or data subject requests, contact the data controller:

Advisory Channels Company For Management Consulting LLC
On behalf of Lincolne Ventures
Email: rob@lincolne-ventures.com