Bidvanetenders

Privacy Policy

Last updated: June 2026

Your privacy matters to us. This policy explains what personal data we collect through the Bidvane service (operated by YatedLabs, "we", "us", the "Company"), how we use it and your rights, in accordance with the UK GDPR and the Data Protection Act 2018. For the purposes of this policy, the Company is the data controller.

1. What we collect

  • Account details — your email address and a password (stored hashed) to create and secure your account, and your name and company name.
  • Business profile — the details you enter so we can match tenders: sector, classifications and accreditations, regions of operation and financial scale.
  • Usage information — basic usage data and operational logs (such as tenders you save or hide) to run and improve the service.

2. Cookies and analytics

We use a single essential session cookie to keep you signed in. Where traffic analytics is enabled it runs in a cookieless mode, so we do not store a per-visitor tracking identifier. We do not use third-party advertising or tracking cookies.

3. Lawful bases for processing

We process your personal data on one or more of the following lawful bases under Article 6 of the UK GDPR: performance of a contract (to provide the service you have signed up for); legitimate interests (to operate, secure and improve the service, balanced against your rights); consent (for example, optional email digests, which you can withdraw at any time); and legal obligation where applicable.

4. How we use your data

We use it to provide the service and match tenders to your profile; to send the daily digest and service messages; to verify and secure your account; and to improve match quality and the service.

5. Sharing with third parties (processors)

We do not sell your personal data. We share it only with service providers acting on our behalf as data processors — for example hosting and email delivery, and our payments provider Paddle — under contracts requiring confidentiality, security and use only for the purposes of the service. We may disclose data where required by law.

6. International transfers

Where personal data is transferred outside the UK, we ensure an appropriate safeguard is in place — such as a UK "adequacy" decision or the International Data Transfer Agreement (IDTA) / Addendum to the EU Standard Contractual Clauses.

7. Data security

We take reasonable technical and organisational measures to protect your data (including password hashing and encryption in transit). No system is completely secure, however, and we cannot guarantee absolute security.

8. Retention

We keep your data for as long as your account is active and for a reasonable period afterwards, or as required by law. You can ask us to delete your account and data — see your rights below.

9. Your rights

Under UK data protection law you have the right to access, rectify, erase or port your personal data, to restrict or object to processing, and to withdraw consent. To exercise any of these, email admin@yatedlabs.com.

10. Complaints — the ICO

If you have a concern about how we handle your data, please contact us first. You also have the right to lodge a complaint with the UK supervisory authority, the Information Commissioner's Office (ICO), at ico.org.uk.

11. Contact

For any privacy question or request, contact us at admin@yatedlabs.com.

› Back to home