Last updated: 16 June 2026
This Privacy Policy explains how PRIVIEW LIMITED collects, uses, stores and protects personal data.
PRIVIEW LIMITED is a company incorporated in England and Wales with company number 16566134 and registered office at 1 Lyric Square, London W6 0NB.
In this Privacy Policy, “PRIVIEW”, “we”, “us” and “our” mean PRIVIEW LIMITED.
If you have any questions about this Privacy Policy or how we handle personal data, please contact us at:
Email: contact@priview.com
PRIVIEW provides a software platform and related services for investors in private funds. Our platform helps customers analyse private fund data, including capital account statements, financial reports, investment schedules, exposure data, performance data and other portfolio information.
We also use aggregated and anonymised data to produce benchmarking, analytics and market-insight features, where customers participate in our Collective Data programme.
This Privacy Policy may apply to you if you are:
Not every section of this Privacy Policy will apply to every person. For example, website visitor data is different from customer platform data.
Depending on the context, we may act as either a controller or processor.
We usually act as a processor where we process customer fund data, portfolio information, uploaded documents or related data on behalf of a customer, investor or other client. In those cases, the customer generally determines the purposes and means of the processing.
We usually act as a controller where we process personal data for our own business purposes, including account administration, website operation, business development, contracts, billing, security, governance, compliance and supplier management.
Where we act as a processor, we process personal data in accordance with our customer’s instructions and any applicable agreement or documented arrangement with that customer.
We may collect and process the following categories of personal data.
This may include:
Customers may provide documents and data relating to private fund investments. These may include:
These documents are primarily commercial and investment-related. They may, however, incidentally contain personal data, such as names, email addresses, signatures, job titles or other personal information included in documents provided to us.
When you visit our website or communicate with us, we may process:
We may process:
We may process security and audit information, including:
We collect personal data from:
We use personal data for the following purposes.
We use customer data to provide portfolio analytics, exposure analytics, performance attribution, benchmarking, monitoring, reporting, document processing and related services.
We use personal data to create accounts, manage access, authenticate users, administer permissions, manage customer folders and provide support.
We may use AI-assisted tools to support document extraction, classification, summarisation, portfolio analysis, customer query responses, enrichment and related platform functionality.
Where we use AI to process customer data, we apply access controls, data minimisation, logging controls and vendor controls. We do not use customer confidential data to train public AI models. We also do not permit staff to input customer confidential data, credentials or secrets into public AI tools.
AI outputs may be reviewed or subject to human oversight depending on the workflow. Users should not treat AI-assisted outputs as a substitute for their own review, professional judgement or verification.
Where a customer participates in our Collective Data programme, we may use contributed data to produce anonymised and aggregated benchmarks, analytics, scores, distributions, market insights or similar outputs.
We design Collective Data outputs so that they do not identify any individual investor, customer, fund, position, mark, holding or underlying data point. We apply aggregation thresholds and anonymisation controls before outputs are displayed or used.
Where the creation of Collective Data involves personal data, we rely on legitimate interests, contractual arrangements, documented customer agreement or another applicable lawful basis depending on the context. Our legitimate interest is to improve the usefulness of our platform and provide benchmarking and analytics features to participating investors, while applying safeguards to reduce privacy risk.
We process personal data to protect our platform, systems and customers, including to monitor access, investigate incidents, manage vulnerabilities, maintain logs and prevent unauthorised access.
We process personal data to manage contracts, order forms, NDAs, billing, accounting, tax, insurance, governance and business administration.
We process personal data to comply with legal obligations, respond to lawful requests, maintain records, manage disputes and demonstrate compliance with security, privacy and contractual obligations.
We may use personal data to respond to enquiries, manage business relationships, send relevant business communications and improve our website and services. We do not sell personal data.
Depending on the activity, we rely on one or more of the following lawful bases:
Our legitimate interests may include providing and improving our services, securing our systems, managing customer relationships, producing anonymised and aggregated insights, preventing misuse, administering contracts and operating our business.
We may use AI-assisted tools as part of our services and internal operations. These tools may help with:
We do not allow customer confidential data to be entered into public AI tools. Where we use AI providers for customer data processing, we use enterprise or controlled service arrangements where customer data is not used to train the provider’s general models.
Some AI processing may take place outside the United Kingdom or European Economic Area, depending on the provider, service and configuration. Where this occurs, we apply appropriate contractual, technical and organisational safeguards.
We do not use AI to make legally binding decisions about individuals.
We may share personal data with:
Our key technology and operational providers may include providers such as Supabase, AWS, Vercel, Google Workspace, GitHub, 1Password, Adobe, Xero, ZeptoMail and selected search or enrichment providers. The exact providers used may change over time.
Adobe Sign stores our documents in Dublin, Ireland.
We maintain vendor and subprocessor records and can provide further information on relevant subprocessors where appropriate.
Some of our service providers may process personal data outside the United Kingdom or European Economic Area.
Where personal data is transferred internationally, we take steps designed to ensure that appropriate safeguards are in place. These may include adequacy regulations, Standard Contractual Clauses, the UK International Data Transfer Addendum, the UK International Data Transfer Agreement or other lawful transfer mechanisms.
Some AI, search, enrichment, email or cloud services may involve processing outside the UK or EEA. We assess these providers and apply appropriate contractual, technical and organisational controls.
We use technical and organisational measures designed to protect personal data and customer confidential data. These include, where appropriate:
No system can be guaranteed to be completely secure, but we take reasonable steps to protect data against unauthorised access, disclosure, alteration or destruction.
We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer period is required by law, contract, accounting, tax, insurance, dispute-resolution or governance requirements.
Customer operational data is retained in accordance with the applicable customer arrangement and our retention procedures. Where a customer requests deletion of customer data, we will handle that request in accordance with the relevant agreement, documented arrangement and applicable law.
Some backup copies, logs or archive records may persist for a limited period after deletion from live systems, until they expire under the relevant backup, logging or retention process.
Contract, accounting, legal, insurance and corporate records may be retained for longer where necessary for legal, tax, audit or legitimate business purposes.
Our website may use cookies or similar technologies to operate the site, understand usage and improve our services.
Cookies may include:
Where required, we will ask for consent before setting non-essential cookies. You can also control cookies through your browser settings.
Depending on the circumstances and applicable law, you may have the right to:
These rights may be subject to legal limits, especially where we process data as a processor on behalf of a customer. If your request relates to personal data contained in customer data, we may need to refer the request to the relevant customer.
To exercise your rights, contact us at contact@priview.com.
If you are unhappy with how we handle your personal data, please contact us first so we can try to resolve the issue.
You also have the right to complain to the UK Information Commissioner’s Office:
Website: www.ico.org.uk
Telephone: 0303 123 1113
If you are based outside the UK, you may also have the right to complain to your local data-protection authority.
Our services are intended for business and professional users. They are not directed at children, and we do not knowingly collect personal data from children.
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, take steps to notify users or customers.
For privacy questions, requests or concerns, contact: