← Back to Invaei

Privacy Policy

Last updated: March 15, 2025

1. Who We Are

Invaei ("we", "our", "us") operates the website at invaei.com — an AI-powered investor matching service for Israeli founders. We are committed to protecting your personal data and complying with applicable privacy laws, including the Israeli Privacy Protection Law (5741-1981) and, where applicable, the EU General Data Protection Regulation (GDPR).

For privacy-related questions, contact us at: privacy@invaei.com

2. What Data We Collect

We collect the following categories of personal data:

  • Identity data: first name, last name
  • Contact data: email address, phone number
  • Startup data: company name, startup stage, what you've built, investment rationale, target raise amount
  • Technical data: IP address, browser type, device identifiers, pages visited, session duration (collected via PostHog analytics)
  • Usage data: how you interact with our website (clicks, scroll depth, form steps completed)

3. How We Use Your Data

We use your data for the following purposes:

  • To match you with relevant investors and provide our core service
  • To contact you about your early access request and our product updates
  • To improve our platform based on usage analytics
  • To comply with legal obligations

We will never sell your personal data to third parties.

4. Analytics & Cookies

We use PostHog (posthog.com) for product analytics. PostHog collects anonymized behavioral data including pageviews, clicks, and session recordings. Data is stored on PostHog's EU servers.

We use the following types of cookies:

  • Essential cookies: Required for the site to function
  • Analytics cookies: PostHog session and user identification (can be declined via the cookie banner)

You can withdraw consent at any time by clearing your browser cookies or contacting us.

5. Data Storage & Security

Form submissions are stored in a secure Supabase PostgreSQL database protected by Row-Level Security (RLS). We use industry-standard encryption in transit (HTTPS/TLS) and at rest. Access to your data is restricted to authorized personnel only.

6. Data Retention

We retain early access form submissions for up to 2 years from the date of submission, or until you request deletion. Analytics data is retained for 1 year. You may request deletion at any time by emailing privacy@invaei.com.

7. Your Rights

Under applicable law, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data ("right to be forgotten")
  • Object to or restrict processing
  • Data portability (receive your data in a machine-readable format)
  • Withdraw consent at any time (where processing is based on consent)

To exercise any of these rights, contact us at privacy@invaei.com. We will respond within 30 days.

8. Third-Party Services

We use the following sub-processors:

  • Supabase — database (EU region)
  • PostHog — analytics (EU region)
  • Vercel — hosting and CDN

Each provider maintains their own privacy policy and appropriate data processing agreements.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by posting the updated policy on this page with a new "Last updated" date. Your continued use of our service after changes constitutes acceptance of the updated policy.

10. Contact

For any privacy-related questions or requests, contact us at privacy@invaei.com.

Terms of ServiceHome