Skip to content
BuildClub — AI Built in Plain Sight

LEGAL

Privacy Policy

How BuildClub, Inc. collects, uses, and protects information from visitors to this website. Written in plain English, with the specific rights you have under GDPR, UK GDPR, CCPA, and the UAE PDPL spelled out.

Last updated: May 26, 2026

1. Who we are

BuildClub, Inc. is a Delaware C-corporation that provides AI consulting and software services to mid-market companies. References to “BuildClub,” “we,” “us,” and “our” in this policy mean BuildClub, Inc.

Our registered business address is 66 W Flagler Street, Suite 900, Miami, FL 33130, United States. We operate from offices in Miami, London, and Dubai.

For any privacy question, request, or complaint, use the contact form and select “Legal / Privacy” as the inquiry type. The same channel handles general legal and compliance inquiries.

2. What we collect

We collect a deliberately small amount of information. The website does not require accounts, does not sell anything online, and does not run targeted advertising.

Information you give us through the contact form

When you submit our contact form we collect the fields you provide: your name, work email address, optional company name, the inquiry type you select, and the message you write. These fields are sent to us so we can respond.

Server logs and security telemetry

Our hosting provider records standard server logs for each request to the site — including IP address, user agent, request path, timestamp, and response status. These logs exist to keep the site running, to defend against abuse, and to debug errors. They are not used to profile visitors.

Aggregate analytics

We use Plausible Analytics, a cookieless analytics tool, to measure aggregate traffic patterns (page views, referrers, country at country-level, device class). Plausible does not set cookies and does not store personal identifiers tied to individual visitors. The output we see is counts and trends, not individual sessions.

3. How we use it

We use the information we collect to:

  • Respond to your inquiry and any follow-up correspondence that relates to it.
  • Qualify and route business-to-business sales opportunities, including determining whether your inquiry fits the kind of work we do.
  • Keep the website secure, operational, and free of abuse.
  • Understand aggregate traffic patterns so we can improve our content and site structure.

We do not sell personal information. We do not share personal information for cross-context behavioral advertising or any other form of targeted advertising. We do not use visitor data to train AI models.

5. Sharing and subprocessors

We do not share personal information with third parties for their own marketing purposes. We do rely on a short list of vendors that process data on our behalf in order to operate the site:

  • Vercel Inc. — hosting and content delivery for buildclub.com. Processes request logs and serves the site from the US edge network.
  • Plausible Insights OÜ — cookieless aggregate web analytics. Receives anonymized page-view data; does not set cookies; does not receive form contents.
  • n8n GmbH (n8n Cloud) — the workflow platform that receives contact-form submissions and routes them into our internal systems.
  • Google LLC (Google Fonts) — serves typography assets from the Google Fonts CDN. Your browser fetches font files directly from Google, which may log the request.

We may also disclose information to professional advisors, to comply with a lawful request from a regulator or court, or in connection with a merger or acquisition (in which case we will provide notice on this page).

We use third-party AI providers (including Anthropic and OpenAI) internally for our own operational work. Visitor data from this website is not sent to those providers.

6. International data transfers

BuildClub is headquartered in the United States and our primary hosting and tooling is US-based. If you are located outside the United States, your information will be transferred to and processed in the United States.

  • EEA and Switzerland to United States: transfers rely on the European Commission’s Standard Contractual Clauses (2021) with the relevant subprocessors, and on the EU-US Data Privacy Framework where the recipient is certified.
  • United Kingdom to United States: transfers rely on the UK’s International Data Transfer Addendum to the EU SCCs, and on the UK Extension to the Data Privacy Framework where applicable.
  • United Arab Emirates to United States: transfers are made under contractual safeguards comparable to the SCCs and with the data subject’s consent under the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021).

You can request a copy of the relevant transfer safeguards — use the contact form and select “Legal / Privacy” as the inquiry type.

7. How long we keep your information

We keep personal information only for as long as we need it.

  • Contact form submissions and related correspondence: retained until the inquiry is resolved, then for an additional 24 months so we can pick up the thread if you come back to us. After that period we delete or anonymize the record.
  • Server logs: retained by our hosting provider for a rolling period (typically 30 days) for operational and security purposes.
  • Aggregate analytics: Plausible reports are kept indefinitely. They contain only aggregate counts and trends, not personal data.

We may retain information longer where required by law, where necessary to defend a legal claim, or where information has been fully anonymized.

8. Your rights

You have rights over your personal information. Which specific rights apply depends on where you live.

If you are in the EEA, UK, or Switzerland (GDPR / UK GDPR)

  • The right to access the personal data we hold about you.
  • The right to correct inaccurate or incomplete data.
  • The right to erasure (“right to be forgotten”).
  • The right to restrict or object to processing.
  • The right to data portability.
  • The right to withdraw consent at any time.
  • The right to lodge a complaint with a supervisory authority.

If you are a California resident (CCPA / CPRA)

  • The right to know what personal information we collect, use, and disclose.
  • The right to delete personal information we hold about you.
  • The right to correct inaccurate personal information.
  • The right to opt out of the sale or sharing of personal information. As stated elsewhere in this policy, we do not sell or share personal information in the first place.
  • The right to non-discrimination for exercising your privacy rights.

If you are in the United Arab Emirates (PDPL)

  • The right to access and to be informed about processing.
  • The right to correction and erasure.
  • The right to restrict or object to processing.
  • The right to data portability.
  • The right to withdraw consent.
  • The right to lodge a complaint with the UAE Data Office.

If you are elsewhere

We extend the substance of these rights to all visitors as a matter of policy, even where local law does not require it. If your jurisdiction grants additional rights, those will apply.

9. How to exercise your rights

To make a request, use the contact form and select “Legal / Privacy” as the inquiry type, then describe what you would like us to do. We will acknowledge your request within a reasonable timeframe (and within the time required by your local law — for example, within one month under the GDPR and UK GDPR, extendable by two further months for complex requests; within 45 days under the CCPA).

We may need to verify your identity before acting on a request. The verification step is intentionally lightweight — we ask for enough information to be reasonably sure the request comes from you, and no more.

If you are unhappy with our response, you have the right to complain to a regulator:

  • In the United Kingdom: the Information Commissioner’s Office (ICO), ico.org.uk.
  • In the EEA: your national data protection supervisory authority. A list is maintained by the European Data Protection Board.
  • In the United Arab Emirates: the UAE Data Office.
  • In California: the California Privacy Protection Agency, cppa.ca.gov.

You do not have to use us as an intermediary — you can go directly to a regulator at any time.

10. Cookies and analytics

This website does not set tracking cookies. We do not use first-party cookies for analytics or marketing, and we do not load third-party advertising or social-media trackers.

Plausible Analytics is intentionally cookieless. It hashes a minimal set of request attributes daily to estimate unique visitors and discards the hash within 24 hours. No cross-site or cross-session tracking takes place.

We load web fonts from Google Fonts. When your browser fetches a font file from fonts.gstatic.com or fonts.googleapis.com, Google receives the request. We do not pass any personal information from this site to Google as part of that request, but Google’s standard server logging applies. You can read Google’s privacy practices on their site.

Because we do not set cookies, we do not display a cookie banner. If we ever introduce cookies, we will update this policy and provide a banner before doing so.

11. Children

BuildClub is a business-to-business firm. This website is not directed to children. We do not knowingly collect personal information from anyone under the age of 16. If you believe a child has submitted information through our site, use the contact form and select “Legal / Privacy” as the inquiry type, and we will delete it.

12. Do not sell or share my personal information

We do not sell personal information, and we do not share personal information for cross-context behavioral advertising. This has been true since the site launched and we have no plans to change it. There is therefore no opt-out mechanism to activate — the opt-out position is the default position for every visitor.

If you would still like a written confirmation of this status for your records, use the contact form and select “Legal / Privacy” as the inquiry type, and we will send one.

13. Changes to this policy

We update this policy when our practices change or when the law requires it. The version date at the top of the page reflects the most recent update. Material changes will be flagged at the top of the page for at least 30 days, and where required by law we will notify affected individuals directly.

14. Contact us

For any question about this policy or about how we handle your information:

BuildClub, Inc.
66 W Flagler Street, Suite 900
Miami, FL 33130
United States

For legal or privacy inquiries, use the contact form and select “Legal / Privacy” as the inquiry type.

Questions about how we handle your information?

For legal or privacy inquiries, use the contact form and select “Legal / Privacy” as the inquiry type. A person will read your message and respond.

Contact BuildClub →