Privacy Policy

Effective Date: 10 February 2025

1. Introduction

At Artsignal ("we", "us", or "our"), protecting your privacy is of the utmost importance. This Privacy Policy explains how we collect, use, disclose, store, and safeguard your personal data when you access or use our services (the "Service"). This Privacy Policy is designed to comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and, where applicable, the EU General Data Protection Regulation (GDPR). By accessing or using our Service, you agree to the practices described in this Privacy Policy.

2. Who We Are

Artsignal is a provider of art market intelligence services, including the use of AI and machine learning to generate insights from art market data. Our registered office is located at:

ArtVest AI Limited
10 Rose & Crown Yard
London, SW1Y 6RE
Email: info@artsignal.co

If you have any questions about this Privacy Policy or our data practices, please contact us using the information provided above.

3. Information We Collect

We collect several types of information to provide and continually improve our Service.

3.1. Personal Data Provided by You

When you register for or use our Service, you may provide us with:

  • Account Information: Your name, email address, telephone number, company name, and other registration details.

  • Customer Data: Any data, documents, or materials you upload or provide during your use of the Service, including creative content or art assets.

  • Communication Data: Information you provide when contacting us for support or enquiries.

3.2. Data Collected Automatically

When you use our Service, we automatically collect:

  • Usage Data: IP address, browser type, device information, access times, pages viewed, and referring URLs.

  • Cookies and Similar Technologies: Data collected via cookies, web beacons, and similar tracking technologies. We also use a cookie consent banner to help you manage your preferences in accordance with applicable law. (See Section 10 for details.)

3.3. Data from Third Parties

We may also receive information about you from third-party sources (for example, if you connect your account with a third-party service), subject to those parties’ privacy policies.

4. How We Use Your Information

We use your personal data for various purposes, including:

4.1. Providing and Improving Our Service

  • To create and manage your account.

  • To deliver, maintain, and enhance the Service.

  • To process payments and manage subscriptions.

  • To personalise your experience.

  • AI and Machine Learning Processing: In certain cases, our Service utilises automated systems to analyse and generate insights from user data—including creative content—to improve our Service. These processes are performed using robust security measures.

4.2. Communication

  • To send you important service-related notifications, updates, and information about changes to our policies.

  • To respond to your enquiries and provide customer support.

4.3. Analytics and Research

  • To monitor and analyse usage trends and performance.

  • To conduct research and develop new features.

  • To improve our Service based on aggregated, anonymised data.

4.4. Legal and Security Purposes

  • To comply with legal obligations and regulatory requirements.

  • To detect, prevent, and address fraud, security breaches, and other malicious activities.

  • To enforce our Terms of Service and other agreements.

5. Legal Bases for Processing

Where required under applicable law, we process your personal data based on one or more of the following legal bases:

  • Consent: When you have provided explicit consent.

  • Contractual Necessity: Processing necessary for the performance of a contract with you.

  • Legal Obligation: Processing necessary to comply with applicable law.

  • Legitimate Interests: Processing necessary for our legitimate interests, provided these interests are not overridden by your rights and freedoms.

6. How We Share Your Information

We do not sell your personal data. We may share your information only in the following circumstances:

6.1. With Service Providers

We may disclose your personal data to trusted third-party vendors, consultants, and service providers who assist us in providing the Service (e.g., payment processors, hosting providers, data analytics providers, and customer support providers). These third parties are contractually obligated to safeguard your data and use it solely for the purposes for which it was disclosed.

6.2. For Legal and Regulatory Purposes

We may disclose your information when required by law or to protect our rights, comply with legal processes, or safeguard the safety of our users or the public.

6.3. In Business Transactions

In connection with mergers, acquisitions, or asset sales, your data may be transferred as part of the transaction. In such cases, we will require the recipient to agree to protect your personal data in a manner consistent with this Privacy Policy.

6.4. Aggregated and Anonymised Data

We may share aggregated or anonymised data that does not directly identify you for analytical, research, or marketing purposes.

7. International Data Transfers

Your personal data may be transferred to, and maintained on, servers located outside your country of residence. When we transfer data internationally, we implement appropriate safeguards (such as standard contractual clauses) to ensure your data is adequately protected in accordance with this Privacy Policy and applicable law.

8. Data Security

The security of your data is important to us, but remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, including encryption and access controls, we cannot guarantee its absolute security.

We regularly review and update our security measures to protect your personal data from unauthorised access, disclosure, alteration, and destruction. We also maintain backup procedures to ensure data integrity and availability.

9. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy or as required by law. The retention period may vary depending on the type of data and the purposes for which it is processed. We periodically review our retention policies and will delete or anonymise your personal data within a reasonable period after your account is terminated or upon your request, subject to any legal or contractual obligations.

10. Cookies and Tracking Technologies

We use cookies, web beacons, and other tracking technologies to collect information about your interactions with our Service. Cookies help us:

  • Essential Cookies: Operate and provide basic functionality for the Service.

  • Analytical Cookies: Analyse how users interact with the Service to improve performance.

  • Functional Cookies: Enhance the user experience by remembering your preferences.

You can manage or disable cookies through your browser settings. However, please note that disabling cookies may affect the functionality and performance of our Service. Additionally, our website uses a cookie consent banner to help you manage your cookie preferences in accordance with applicable law.

11. Children's Privacy

Our Service is not directed to children under the age of 16. We do not knowingly collect personal data from children under 16. If you believe that we have inadvertently collected such information, please contact us immediately so that we can take steps to delete it.

12. Third-Party Links

Our Service may contain links to third-party websites or services that are not operated by us. This Privacy Policy does not apply to those third parties, and we are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party sites you visit.

13. Data Breach Notification

In the unlikely event of a data breach that poses a risk to your rights or freedoms, we will notify you and the relevant data protection authorities, including the Information Commissioner’s Office (ICO) in the United Kingdom, in accordance with applicable law. Such notification will include:

  • A description of the breach.

  • The likely consequences of the breach.

  • The measures we are taking to address the breach and mitigate its effects.

14. Your Rights

Depending on your jurisdiction, you may have certain rights regarding your personal data, including:

  • Right of Access: The right to request copies of your personal data.

  • Right to Rectification: The right to have inaccurate or incomplete personal data corrected.

  • Right to Erasure: The right to request deletion of your personal data, subject to legal and contractual restrictions.

  • Right to Restrict Processing: The right to request that we limit the processing of your personal data under certain circumstances.

  • Right to Object: The right to object to the processing of your personal data for certain purposes, such as direct marketing.

  • Right to Data Portability: The right to receive your personal data in a structured, commonly used, and machine-readable format, and to have it transferred to another party.

  • Right to Withdraw Consent: Where processing is based on consent, the right to withdraw your consent at any time, without affecting the lawfulness of processing prior to withdrawal.

If you are not satisfied with how we handle your personal data, you also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) in the United Kingdom.

To exercise any of these rights, please contact us at info@artsignal.co. We may request additional information to verify your identity before processing your request.

15. Automated Decision-Making and Profiling

Where our Service utilises automated decision-making processes, including profiling, to generate insights or predictions:

  • Such decisions are based on statistical models designed to enhance our Service.

  • They are not intended to have a legal or similarly significant effect on you.

  • If automated decision-making is used in a manner that significantly affects you, you have the right to request human intervention and an explanation of the decision-making process.

16. Data Protection Officer

For privacy-related enquiries or concerns, please contact our Data Protection Officer (DPO) at info@artsignal.co.

17. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. If we make material changes, we will notify you by posting a notice on our website and/or by sending a notification to your registered email address. The updated Privacy Policy will be effective as of the stated effective date.

18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

  • Email: info@artsignal.co

  • Postal Address: 10 Rose & Crown Yard, London, SW1Y 6RE