Privacy Policy
Dealdrum ("we", "us", "our") operates a private capital-markets platform for verified Ghana Government contract finance. This Privacy Policy explains what personal data we collect, why we collect it, and how we use and protect it.
1. Who we are
Dealdrum is operated by Dealdrum Ltd. For privacy questions, contact us at support@dealdrum.io.
2. Data we collect
- Account information: full name, email address, phone number, company name, and country when you register or request access.
- KYC data: government-issued ID type and number, date of birth, nationality, residential address, proof of address, source of wealth, and related financial declarations — collected only from verified investors.
- Usage data: pages visited, features used, session timestamps, and device type, collected via PostHog and, where enabled, Google Analytics and Microsoft Clarity.
- Deal and investment data: deal preferences, investment interests, and interaction records on deal rooms.
- Documents: PDF, Word, Excel, and image files uploaded to deal rooms, stored securely in private Supabase Storage.
3. How we use your data
- To verify your identity and comply with anti-money laundering (AML) and know-your-customer (KYC) obligations.
- To operate deal rooms, match investors to verified opportunities, and facilitate capital introductions.
- To communicate with you about your account, deal status, and platform updates.
- To improve the platform through anonymised usage analytics.
4. Legal basis for processing
We process your personal data on the basis of:
- Contract performance: to provide the platform services you requested.
- Legal obligation: KYC and AML compliance under applicable Ghanaian and UK financial regulations.
- Legitimate interests: platform security, fraud prevention, and service improvement.
- Consent: for marketing communications, where applicable.
5. Data sharing
We do not sell your personal data. We share it only with:
- Supabase: our database and storage provider (EU data centre, compliant infrastructure).
- Analytics providers: PostHog and, where enabled, Google Analytics and Microsoft Clarity for anonymised usage analytics and website improvement.
- Deal parties: limited deal-relevant data shared with counterparties under NDAs as part of the deal process, with your knowledge.
- Regulators: when legally required.
6. Data retention
We retain account data for as long as your account is active, and for up to 7 years after closure to comply with financial record-keeping obligations. KYC data is retained for at least 5 years from the end of the business relationship as required by AML regulations.
7. Your rights
Depending on your jurisdiction, you may have rights to access, correct, delete, or port your personal data, or to withdraw consent. To exercise these rights, email support@dealdrum.io. We will respond within 30 days.
8. Security
We use industry-standard encryption in transit (TLS) and at rest. Access to personal data is restricted to authorised Dealdrum staff. KYC documents are stored in private, access-controlled storage and never made publicly accessible.
9. Cookies
We use functional cookies to maintain your session and analytics cookies or similar technologies to understand platform usage. If advertising conversion tags are enabled in future, they will be used only to measure campaign performance and improve relevance. You can clear cookies at any time in your browser settings.
10. Changes to this policy
We may update this policy. Material changes will be communicated by email or an in-platform notice. Continued use of Dealdrum after changes take effect constitutes acceptance.
11. Contact
For any privacy questions or requests: support@dealdrum.io