Privacy Policy

Plain-language summary

This Privacy Policy explains what data Intervyo collects, why we collect it, and what we do with it. It applies to everyone who uses our platform at intervyo.co.uk, useintervyo.com, or the app at app.intervyo.co.uk.

The short version:

We collect the things you give us (your CV, your interview answers, the text you paste in, your email and password) and the things you produce by using the platform (recordings of your practice interviews, audio of your responses, transcripts, scores, generative outputs). We use that data to run the service, give you feedback, train the AI that powers the feedback, and, once it has been anonymised, to build aggregated insights and datasets that may be shared, sold, or licensed.

Recordings. HireVue practice, live mock interviews, and Assessment Centre simulations are recorded by your microphone and camera so we can deliver feedback, train our AI, and improve the product. Consent is the checkbox you tick at signup, not per session. We do not run facial-recognition or voice-identification on recordings, so they are not processed as special-category biometric data. You can run any session without recording, and you can delete any recording at any time.

The licence we ask for is broad. When you upload content or create a recording, you give us, and any company that later acquires Intervyo, the right to use that content to operate, improve, and build new products from the platform, including for AI training and aggregated dataset creation. You can withdraw the licence on a specific recording by deleting it.

You always have the right to: see what we have on you, correct it, delete it, take it with you to another service, object to certain processing, and complain to a regulator.

1. Who we are

Intervyo is operated by Promote Innovation. Promote Innovation is currently the operating identity behind Intervyo; the business is not yet registered as a UK limited company. We will update this section with the registered company number and registered office once that changes. We are the data controller for personal data processed in connection with intervyo.co.uk, useintervyo.com, and the app at app.intervyo.co.uk.

Our privacy contact is admin@intervyo.co.uk. Use this address for any questions about this policy, to exercise your rights under data protection law, or to lodge a privacy concern.

We are working through ICO registration as a data controller. We are not yet registered. Our registration number will be added here once issued.

This Privacy Policy is governed by the laws of England and Wales for users in the UK and the EEA. Users in the United States are also covered by the state-specific addendums in §11.

2. What this policy covers

This policy covers personal data we collect through:

• The marketing websites at intervyo.co.uk and useintervyo.com
• The app at app.intervyo.co.uk
• Email correspondence with us
• Phone or SMS communications (when SMS verification is enabled)
• Any other channel we operate

It does not cover third-party sites we link to. Those have their own privacy policies.

3. What we collect

3.1 Account information

• Email address
• Password (stored only as a salted, hashed value, we cannot read your password)
• Name (where provided)
• University, course, year of study, target sector, target role (where provided in onboarding)
• Phone number (when SMS verification is enabled)
• Marketing-communication preferences

3.2 Content you provide

• Your CV (uploaded as a file or pasted as text)
• Job descriptions and programme descriptions you paste in
• Cover letters, written application answers, free-text inputs
• Interviewer personas and other tailoring inputs
• Coaching messages you send to Vyo, our AI coach

3.3 Session data

• Practice interview answers (audio and video where you opt to record, see §3.4)
• Practice interview transcripts (text)
• Psychometric assessment responses and scores
• Assessment Centre simulation responses
• Interview feedback and scores generated by our AI
• Pipeline tracking entries (firms you are targeting, stages you have completed, deadlines)
• Outcome data (offers, rejections, application status)

3.4 Recordings

Audio and video captured by your device's microphone and camera while you are in a HireVue practice session, a live mock interview, or an Assessment Centre simulation. (We do not record psychometric tests, CV upload steps, or Vyo coaching sessions at launch; if we add recording to other surfaces later we will say so in this policy and in the relevant feature.)

Recordings contain your voice and your face. We do not run facial-recognition or voice-identification on recordings, and we do not extract face-geometry scans, voiceprints, or any other biometric identifier from them. They are processed as personal data under UK GDPR Article 6, not as special-category biometric data under Article 9. The same position applies under US state biometric laws (BIPA in Illinois, the Texas biometric statute, the Washington biometric statute), see §11.

We process recordings under Article 6(1)(b) (performance of the contract you entered into when you accepted our Terms, the contract being to provide AI feedback on your responses) and Article 6(1)(f) (legitimate interests in improving the service, training models, and building aggregated insight datasets, see §5.2). Consent for the contractual processing is the checkbox you tick at signup when you accept our Terms; there is no separate per-session consent step. You can take any session without recording it (the "Take without recording" option, available in every recording flow). You can delete any recording at any time (see §6.4). Closing your account stops any future recording immediately.

3.5 Generative outputs

Cover letters, outreach drafts, application question drafts, LinkedIn audits, firm research outputs, JD predictions, planned-question banks, and any other AI-generated artefact you create on the platform.

3.6 Behavioural and engagement data

• Page views, click events, time on screen, feature usage events
• Session telemetry: pause/resume, tab switches, copy/paste, scroll depth
• Where the platform's UX includes them: typing patterns, mouse movement, ambient audio level, lighting consistency
• Performance metrics: response time per psychometric item, hesitation patterns

3.7 Device and connection data

• IP address
• Browser type and version
• Operating system
• Device type, screen resolution
• Hashed device fingerprint (used for fraud detection, not for cross-site tracking)
• Approximate location derived from IP (city level)

3.8 Payment and billing data

Payment processing is handled by Stripe. We do not store full credit card numbers. Stripe stores card details, billing addresses, and transaction history under its own privacy policy. We retain a record of your subscription status, plan, and the last four digits of your payment card.

3.9 Voluntary survey and outcome data

Where you choose to provide it:

• Outcome of an application cycle (offer received, rejected, withdrew, still waiting)
• Compensation, signing bonus, start date, accepted firm
• Self-reported satisfaction at 3 months and 12 months after a role start
• Demographic information (ethnicity, gender identity, sexual orientation, religion, disability status, neurodiversity status, socioeconomic background, first-generation university status, school type, household income band)

Demographic information is special-category data under Article 9. We process it only with your explicit consent, captured at the moment you complete the optional demographic survey. You may decline the survey entirely.

3.10 Communications data

• Emails and support tickets you send to us
• Account audit log entries (sign-ins, password changes, plan changes, deletions)

3.11 Referral data

When you use our referral programme:

• Your unique referral code (auto-generated)
• Records of referrals you have sent and accepted
• Bonus alert slots earned

3.12 What we do NOT collect

• We do not run third-party advertising trackers (no Meta Pixel, no Google Ads tags) on the marketing site beyond what is documented in our Cookie Policy.
• We do not collect biometric identifiers for the purpose of identifying you to third parties.
• We do not run facial-recognition or voice-identification systems on recordings. If we ever introduce features that require either, we will seek separate explicit consent.

4. Where the data comes from

Most data comes directly from you, either:

• When you sign up and complete onboarding
• When you use a feature (record a practice session, upload a CV, paste a JD, complete a psychometric test)
• When you contact our support team

A small amount comes from third parties:

• Stripe (payment confirmation events)
• Email service providers (delivery, bounce, and unsubscribe events)
• Twilio (SMS delivery confirmations, when SMS verification is enabled)

If you sign in via a single sign-on provider (Google, Apple, Microsoft) we receive your email address and basic profile information from that provider per their terms.

5. Lawful basis, why we are allowed to process your data

Under UK GDPR (and equivalent EU GDPR for users in the EEA) we must have a lawful basis for every processing activity. We rely on a stack of bases, different bases for different purposes, so that withdrawal of consent for one purpose does not extinguish processing under another.

5.1 Performance of a contract, Article 6(1)(b)

Used for the core service: delivering practice sessions, generating feedback, processing payments, providing the platform features you signed up for. Processing on this basis is necessary to perform the contract you entered into when you accepted our Terms of Service.

5.2 Legitimate interests, Article 6(1)(f)

Used for processing that supports our legitimate business interests where those interests are not overridden by your rights. Specifically:

• Service improvement, analysing aggregated usage, fixing bugs, building new features
• Machine-learning model training, training, evaluating, and fine-tuning the models that power AI feedback, scoring, content generation, conversational coaching, and other product features. We rely on legitimate interests for all training inputs (CVs, transcripts, scores, recordings). Recordings are not processed as special-category biometric data, see §3.4.
• Aggregated and anonymised insights, building benchmark data, industry reports, and partner-facing dashboards from anonymised user data
• Research and product development, including products beyond the current service
• Fraud prevention and abuse mitigation, including freemium-feature gating, multi-account detection, content-policy enforcement
• Marketing, existing users only, sending newsletters and product updates to users who have not opted out (PECR's "soft opt-in" for similar products and services). Marketing to non-customers is consent-based, see §5.4.
• Asset preservation in connection with corporate transactions, see §6.

We have completed a Legitimate Interest Assessment (LIA) for each of these purposes. You may request a summary of the relevant LIA via admin@intervyo.co.uk. You may object to processing under legitimate interests via §10.5; we will balance your objection against our interests and stop processing where your interests prevail.

5.3 Explicit consent, Article 6(1)(a) and Article 9(2)(a)

Used for processing where consent is the only available basis or where the data is special-category data:

• Demographic survey (ethnicity, gender identity, sexual orientation, religion, disability, neurodiversity, socioeconomic background, Article 9 special-category data), explicit consent captured per-field at the moment the survey is taken.
• Marketing emails to non-existing-customers, explicit, active consent (the marketing-emails checkbox at signup, or an explicit opt-in in account settings).
• Cross-application linkages, when we offer LinkedIn, email, or calendar OAuth integrations, the OAuth consent screen is the explicit-consent capture for the data scopes you grant.

Withdrawing consent stops future processing under that basis but does not unwind processing already lawfully completed. Recordings are not on a consent basis, see §3.4 and §5.2.

5.4 Consent, Article 6(1)(a) for cookies and marketing

Used for non-essential cookies (per our Cookie Policy) and for marketing emails to people who are not yet our customers.

6. Your recordings, purposes and licence

This section is the substantive description of what we do with the recordings you create. It mirrors the broad licence you grant in §6 of our Terms of Service.

6.1 What we do with your recordings

We use your recordings to:

• Deliver the service to you. Including features that allow you to review your sessions, receive timestamped feedback, and access personalised prep recommendations.
• Improve the service. Including identifying common issues, weaknesses, and patterns across sessions.
• Train, evaluate, fine-tune, and improve machine-learning models. Our own models, our service providers' models, our partners' models, and the models of any successor entity.
• Conduct research and develop new features and products, including products beyond the current service.
• Aggregate and anonymise recordings for research, benchmarking, and industry datasets. Anonymised aggregate data is no longer personal data and may be retained, shared, sold, or licensed without further consent.
• Transfer, license, or sublicense recordings in connection with a merger, acquisition, asset sale, or other corporate transaction. The full bundle of rights granted under our Terms of Service §6 transfers in its entirety to any successor or assignee, except that your right to delete (§6) continues to apply against the successor.
• Provide white-label assessment infrastructure to firm partners where you apply via Intervyo to a firm. (No firm partnership is currently active; this clause prepares for that future product.)

6.2 What we do NOT do with your recordings

• We do not run facial-recognition systems on recordings to identify you.
• We do not run voice-identification systems on recordings to identify you.
• We do not sell your raw recordings to advertisers.
• We do not provide your raw recordings to firms you are applying to without your explicit consent for that specific transmission.

If we ever introduce features requiring facial recognition or voice ID, we will seek separate explicit consent.

6.3 Retention

Recordings are retained indefinitely by default while your account is active, or until you request deletion (see §6.4), whichever is sooner. We retain them indefinitely so that future features which benefit from your historical data (longitudinal feedback, progress tracking, retroactively-applied prep tips) work as intended.

If you close your account, your recordings remain on our servers under the broad licence in §4 unless you also separately request deletion. Closing your account does not automatically delete your recordings; the deletion request is the trigger.

6.4 Your right to delete recordings

You can request deletion of any of your recordings at any time:

• In-app, via the "My session recordings" surface in account settings, one-click delete per recording, plus "Delete all my recordings".
• By email, to admin@intervyo.co.uk, we acknowledge within 5 working days and complete within 30 days from active systems and 90 days from backups.

Upon a deletion request:

• The personal-identifying portion of the recording is permanently removed within 30 days from active systems and within 90 days from backups.
• The recording itself, with personal identifiers stripped, is then anonymised and retained in our aggregate corpus indefinitely. This is consistent with UK GDPR, anonymised data is no longer personal data and falls outside the scope of erasure rights.
• Recordings that have already been incorporated into trained machine-learning models or anonymised aggregate datasets prior to your deletion request remain in those models and datasets, as separation is not technically feasible.

The licence granted under §4 terminates as to any specific recording upon successful deletion, except for the anonymised retention described above.

7. Other content, broad licence

The broad licence in §6 applies most strongly to recordings, but extends to other user-provided content where we use it for AI training and product improvement:

• CV text and parsed CV features
• Practice transcripts (text)
• Generative outputs you create (cover letters, application answers, planned-question banks, etc.)
• Coaching conversations with Vyo
• Pasted job descriptions and programme descriptions

For all of the above, you grant us, and any successor, a worldwide, royalty-free, sublicensable, transferable, perpetual licence (subject to your deletion rights) to use the content for the purposes listed in §6.1. The full text of this licence is in our Terms of Service §6.

We do not grant ourselves rights to:

• Pasted job descriptions where the underlying source's terms of use prohibit copying, you warrant that you have the right to provide the JD to us (see ToS §6.2)
• Personally identifying information about third parties (named recruiters, hiring managers) included in pasted JDs, we run an automated redaction pass at ingestion to strip such names

8. Anonymisation, aggregation, and the post-deletion data carve-out

Once data has been anonymised, meaning the personal identifiers and quasi-identifiers have been removed such that the data can no longer reasonably be associated with an identifiable individual, it is no longer personal data under UK GDPR. We are entitled to retain, share, sell, and license anonymised data without restriction.

We anonymise data in several scenarios:

• When you request deletion of a recording (§6.4)
• When we build aggregate insight datasets for partners or for sale
• When we retain data for legitimate-interest purposes after the original contract basis has ended

Our anonymisation pipeline removes:

• Direct identifiers (name, email, phone, IP, exact location)
• Quasi-identifiers that combine with other data to re-identify (precise birthdate, full postcode, full school name where small enough to single you out, distinctive job-title strings)
• Distinctive features in audio or video that could re-identify the speaker (we apply de-identification to retained anonymised content where technically feasible)

We commit to re-identification testing on a sample basis at least annually to confirm anonymisation effectiveness. If re-identification becomes possible due to a new combination of data sources, we re-anonymise.

This is the legal basis for permanent retention after Article 17 deletion. It is consistent with ICO guidance on anonymisation and is the same approach used by major social platforms.

9. Sharing and subprocessors

We share personal data with the following categories of recipient:

9.1 Subprocessors

Companies that process data on our behalf to deliver the service. Each is contractually bound by a Data Processing Agreement (DPA) and may only process data for the purposes we specify.

The full and current list is at /subprocessors. The list includes:

• Supabase, primary database, authentication, real-time
• Cloudflare, edge network, R2 object storage (recordings), DNS
• Stripe, payment processing
• OpenAI, Anthropic, Google (Gemini), AI model inference
• Whisper / OpenAI, speech-to-text transcription
• Resend, transactional and marketing email
• Twilio, SMS verification (planned)
• Vercel, marketing-site hosting

We update this list when we add or remove a subprocessor. Material changes are notified via the 14-day banner described in §16.

9.2 Successor entities, corporate transactions

If we are acquired, merge with another company, sell substantially all of our assets, undergo a change of control, or enter administration or insolvency, your personal data, including the broad licence on your content and recordings, transfers to the successor entity. Such successor remains bound by this Privacy Policy as to your personal data, with the rights granted in §6 and §7 surviving the transfer in their entirety. Your rights to access, deletion, objection, and portability continue to apply against the successor.

This clause is essential to the commercial value of the platform's data corpus and is consistent with how Reddit, Stack Overflow, OpenAI, and Notion structure their successor-entity rights.

9.3 Legal obligations and rights protection

We may share data where we are required to by law (a court order, a regulator's request, an HMRC information notice) or where we believe in good faith that disclosure is necessary to:

• Comply with a legal process
• Enforce our Terms of Service
• Protect the rights, property, or safety of Intervyo, our users, or others
• Investigate fraud, abuse, or security incidents

9.4 With your consent, third parties

We share data with third parties at your direction (for example, when you opt into a future white-label firm-services product) or with your specific consent. Your consent is captured at the moment of sharing and you may withdraw it for future sharing, though you cannot unwind sharing already completed.

9.5 What we do NOT do

We do not sell your personal data to advertisers, data brokers, or unaffiliated third parties for their own marketing.

10. Your rights

Under UK GDPR you have the following rights. The same or analogous rights apply under EU GDPR for users in the EEA, and under US state law as set out in §11 for users in the US.

10.1 Right of access (Article 15)

You can request a copy of the personal data we hold about you, including which categories of data, the purposes of processing, the recipients (or categories of recipient) of the data, retention periods, and the source of the data where not collected directly from you. We respond within one calendar month of receiving the request.

10.2 Right to rectification (Article 16)

If any personal data we hold is inaccurate or incomplete, you can ask us to correct it. We respond within one calendar month.

10.3 Right to erasure, "right to be forgotten" (Article 17)

You can ask us to delete personal data we hold about you. The right is not absolute: we may refuse where we have a continuing legitimate basis to retain (for example, ongoing tax obligations, legal proceedings, or anonymised aggregate data per §8). Where we delete:

• We remove personal-identifying data from active systems within 30 days
• We remove from backups within 90 days
• We anonymise rather than delete in the cases described in §8
• We confirm completion to you within the 30-day active-system window

10.4 Right to data portability (Article 20)

You can request a portable copy of the personal data you have provided to us, in a structured, commonly used, machine-readable format (typically JSON or CSV). We respond within one calendar month.

10.5 Right to object (Article 21)

You can object to processing under legitimate interests (§5.2). We will stop the processing unless we can demonstrate compelling grounds that override your interests, or that the processing is necessary for legal claims. You have an absolute right to object to direct marketing.

10.6 Right to restrict processing (Article 18)

In certain circumstances (e.g. while a rectification request is being investigated) you can ask us to restrict processing of your data, we hold it but do not actively use it.

10.7 Right to withdraw consent (Article 7(3))

Where we rely on consent (§5.3, §5.4) — currently the demographic survey, marketing emails to non-customers, OAuth scopes, and non-essential cookies — you can withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal. Recordings are not on a consent basis (see §3.4); to stop the recording-related processing you close your account and/or delete the recordings via §6.4.

10.8 Right to lodge a complaint

If you believe our processing breaches data protection law, you can complain to:

• UK users: Information Commissioner's Office (ICO), ico.org.uk, 0303 123 1113
• EEA users: the supervisory authority in your country of residence
• California users: California Attorney General / California Privacy Protection Agency
• Other US states: your state's attorney general

We hope you will contact us first via admin@intervyo.co.uk so we can resolve the issue directly.

10.9 How to exercise your rights

• In-app, most rights have a direct surface in account settings (data export, recording deletion, account deletion, marketing opt-out)
• By email, admin@intervyo.co.uk

We will verify your identity before acting on a request that would expose personal data. We do not charge for routine requests; manifestly unfounded or excessive requests may attract a reasonable fee or be refused per Article 12(5).

11. US users, state-specific addendums

11.1 California, CCPA / CPRA

California residents have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

• Right to know, what categories of personal information we have collected, sold, or shared in the past 12 months. The categories are listed in §3 above.
• Right to delete, equivalent to Article 17.
• Right to correct, equivalent to Article 16.
• Right to opt out of sale and sharing, see "Do Not Sell or Share My Personal Information" link at the bottom of every page on useintervyo.com. We do not currently sell data, but anonymised data licensing and successor-entity transfers may fall within CCPA's expanded definition of "share", the opt-out covers both.
• Right to limit use of sensitive personal information, we treat audio/video recordings and demographic data as sensitive PII and process them only for service delivery, AI training and product improvement, and aggregated insights as described in this policy. The opt-out applies to processing beyond what is strictly necessary for the service you signed up for.
• Right to non-discrimination, exercising these rights does not affect your access to the service.

We do not knowingly sell or share the personal information of users under 16. We do not have actual knowledge of selling or sharing personal information of users under 16.

To exercise these rights: admin@intervyo.co.uk or use the in-app "Privacy" surface.

11.2 Illinois, BIPA

The Illinois Biometric Information Privacy Act (BIPA) regulates the collection, retention, and disclosure of biometric identifiers, defined as retina or iris scans, fingerprints, voiceprints, and scans of hand or face geometry, and of biometric information derived from them.

We do not collect or process biometric identifiers as defined under BIPA. Recordings stored on Intervyo are audio and video files; we do not extract voiceprints, face-geometry scans, or any other biometric template from them, and we do not use recordings for identification. BIPA's collection-consent, retention-schedule, and disclosure requirements therefore do not apply to our processing.

If we ever introduce features that require biometric identifiers (for example, face-recognition login or voiceprint authentication), we will seek separate informed written consent meeting BIPA's standards before doing so.

11.3 Virginia, VCDPA

Virginia residents are covered by the Virginia Consumer Data Protection Act:

• Right to know, correct, delete, and port, equivalent to UK GDPR rights.
• Right to opt out of targeted advertising, sale, and profiling, we do not engage in targeted advertising or profiling for legal purposes; the opt-out is provided as required.
• Right to appeal, if we deny a request, you may appeal via admin@intervyo.co.uk. We respond to appeals within 60 days.

11.4 Texas, Capture or Use of Biometric Identifier Act

Texas Business & Commerce Code §503.001 regulates the capture of biometric identifiers, defined as voiceprints, retina or iris scans, fingerprints, hand-geometry scans, and face-geometry scans.

We do not capture biometric identifiers as defined under the Texas statute. Recordings stored on Intervyo are audio and video files; we do not extract voiceprints, face-geometry scans, or any other biometric template from them, and we do not use recordings for identification. The statute's consent and destruction requirements therefore do not apply to our processing.

11.5 Washington, biometric statute and My Health My Data Act

Washington's biometric statute (RCW 19.375) regulates the enrolment of biometric identifiers in commercial databases. We do not enrol biometric identifiers. Recordings stored on Intervyo are audio and video files; we do not extract biometric identifiers from them, and we do not use recordings for identification. RCW 19.375 therefore does not apply to our processing.

The Washington My Health My Data Act regulates consumer health data. We do not collect consumer health data and that statute does not apply to our service.

11.6 Other states

Colorado, Connecticut, Utah, Iowa, Indiana, Tennessee, and other US states have or will have privacy laws with similar rights. We honour the substantive rights of those laws (access, deletion, correction, opt-out of sale/share, opt-out of targeted advertising) for residents of those states. Use admin@intervyo.co.uk to exercise any right.

12. Children

The service is for users 18 and over. We do not knowingly collect personal data from individuals under 18. If you are under 18 and have provided personal data, contact us and we will delete it.

For US users: where the user is under 13, COPPA applies in addition to age-gating. We age-gate at signup and do not knowingly process data of under-13s.

13. International transfers

Our subprocessors include companies located in the United States (Stripe, OpenAI, Anthropic, Vercel), the European Union (Supabase EU regions where applicable), and the United Kingdom (where data resides where possible).

For transfers from the UK or EEA to countries without an adequacy decision, we rely on:

• UK International Data Transfer Agreement (IDTA) for transfers from the UK
• Standard Contractual Clauses (SCCs) for transfers from the EEA
• Adequacy decisions where they exist (currently the UK-US Data Bridge, the EU-US Data Privacy Framework)

Per-vendor transfer mechanisms are documented in the Subprocessor List. For a copy of the SCC or IDTA executed with a specific subprocessor, contact admin@intervyo.co.uk.

14. Security

We implement reasonable technical and organisational measures appropriate to the risk of processing:

• Encryption in transit, all connections to the service use TLS 1.2+
• Encryption at rest, databases and object storage encrypted at rest
• Access control, row-level security policies in the database; least-privilege access for staff
• Hashed passwords, passwords stored using bcrypt or equivalent (we cannot read your password)
• Hashed device fingerprints, fraud-prevention fingerprints stored hashed, not in cleartext
• Audit logging, sign-in events, plan changes, and data-access by staff are logged
• Regular review, security posture reviewed at minimum annually; vendor DPAs renewed on each material change
• Incident response, documented procedure for detecting, containing, and notifying; we notify affected users and, where required, the ICO within 72 hours

No system is perfectly secure. We do not warrant absolute security and you acknowledge this when accepting our Terms of Service.

15. Cookies and similar technologies

See our Cookie Policy for the full breakdown. Briefly:

• Strictly necessary cookies, session, authentication, security, fraud prevention. Set without consent because the service does not work without them.
• Functional cookies, store preferences (locale, theme, dismissed banners). Set with implicit consent under PECR's "strictly necessary for a service explicitly requested" exception, configurable in your browser.
• Analytics cookies, aggregated, no third-party advertising. Set on consent only.
• Marketing cookies, not currently used.

For our referral programme we set a intervyo_invite cookie scoped to .intervyo.co.uk to carry an invite code from the marketing site to the app subdomain. This is functional, used only for the referral attribution, and expires after 30 days.

16. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page reflects the most recent version.

For material changes, meaning a change that affects what we collect, how we use it, who we share it with, or your rights, we will notify you by email to the address on your account, and continued use of the service after the change takes effect constitutes acceptance under standard UK contract practice. If you do not accept the new policy, you may close your account; we will export your data on request and delete it per §6.4.

For non-material changes (typo corrections, clearer wording without scope change, contact-detail updates), we update the page without further notification but record the change in our internal change log.

17. Contact

For all privacy-related queries:

To complain to the regulator:

• UK: ICO, ico.org.uk, 0303 123 1113
• EEA: your local supervisory authority
• California: California Privacy Protection Agency, cppa.ca.gov
• Other US states: your state attorney general