Privacy Policy

Last updated: January 2026

Plain English Summary

  • We collect your account information and the LinkedIn data you upload to generate your Genesis Profile
  • We don't sell your data or share it with advertisers
  • Your data is stored in UK/EU data centres and encrypted
  • You can export or delete your data at any time

1. Who We Are

Genesis is a decision intelligence product that analyses LinkedIn content performance. We are the data controller for the personal data we collect through our service.

Company: Genesis (trading name)
Contact: privacy@genesis.so
Location: United Kingdom

2. What Data We Collect

Account Data

When you create an account, we collect your name, email address, company name (if provided), and password (stored as a secure hash).

LinkedIn Export Data

When you use Genesis, you upload LinkedIn data exports containing your posts and their content, performance metrics, posting dates and times, and post format information.

Intent Declaration Data

We collect information about your stated goals, target audience descriptions, and success criteria you define.

Usage Data

We automatically collect how you interact with Genesis, your device type and browser, your IP address, and timestamps of your activity.

Payment Data

Payment is processed by Stripe. We receive confirmation of payment status but do not store your card number, CVV, or full card details.

3. Why We Collect It

Under UK GDPR, we need a legal basis to process your personal data:

  • Contract Performance: We process your account data and LinkedIn export data to provide the Genesis service.
  • Legitimate Interests: We process usage data to improve Genesis, protect against fraud, and understand how people use our service.
  • Consent: We only send marketing communications if you've opted in.

4. How We Use Your Data

  • To generate your Genesis Profile
  • To identify patterns in your content performance
  • To improve our service (using aggregated, anonymised data)
  • To communicate with you about your account and service updates
  • To comply with legal obligations

5. Who We Share Data With

We don't sell your data. We don't share it with advertisers. We share it only with:

  • Supabase: Cloud infrastructure (EU region)
  • Anthropic: Analysis processing (your data is not used to train their models)
  • Stripe: Payment processing
  • SendGrid: Email delivery

6. How Long We Keep Your Data

  • Active accounts: Data retained while your account is active
  • Cancelled accounts: Data deleted within 30 days of request
  • Inactive accounts: Flagged for deletion after 24 months of no activity
  • Backups: May persist for up to 90 days after deletion

7. Your Rights

Under UK GDPR, you have the right to:

  • Access your data
  • Correct inaccurate data
  • Delete your data
  • Export your data in a portable format
  • Object to processing
  • Restrict processing
  • Withdraw consent
  • Complain to the ICO (ico.org.uk)

Contact us at privacy@genesis.so to exercise your rights.

8. Security

  • All data is encrypted at rest (AES-256) and in transit (TLS 1.3)
  • Access to production data is restricted to essential personnel
  • Multi-factor authentication required for all team access
  • Regular security assessments conducted

9. Cookies

We use minimal cookies:

  • Essential cookies: Session management and security
  • No tracking cookies: We don't use third-party advertising or analytics cookies

10. Contact Us

If you have questions about this Privacy Policy:

Email: privacy@genesis.so