BenchifyTerms of Service →

Privacy Policy

Last updated: 15 May 2026

1. Introduction

Benchify ("we", "us", or "our") operates the Benchify platform, a structured benchmarking and data visualisation service. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and the rights you have over your data.

By using Benchify you agree to the practices described in this policy. If you do not agree, please discontinue use and contact us to request deletion of your data.

2. Data We Collect

Account information

When you register, we collect your email address and the organisation name you provide. If you sign in via a third-party provider (e.g. Google), we receive the profile information that provider shares with us, typically your email address and display name.

Benchmark data

We store all data you create within the platform: categories, items, measurements, conditions, projects, results, and charts. This data belongs to you and is never used to train machine learning models or shared with third parties.

Usage and analytics

We collect anonymised usage data (page views, feature interactions, error events) via Vercel Analytics and Vercel Speed Insights. This data does not include personally identifiable information and is used solely to improve the product.

Technical data

Our infrastructure may automatically log standard technical information such as your IP address, browser type, and request timestamps for security monitoring and debugging purposes. These logs are retained for a limited period and then deleted.

3. How We Use Your Data

  • To provide, maintain, and improve the Benchify service
  • To authenticate your account and keep it secure
  • To send transactional emails (password resets, team invitations)
  • To respond to support requests sent to us
  • To detect and prevent fraud, abuse, or security incidents
  • To comply with applicable legal obligations

We do not sell your personal data, use it for advertising, or share it with third parties except as described in Section 5.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area, our legal bases for processing your data are:

  • Contract performance — processing necessary to provide the service you signed up for
  • Legitimate interests — security monitoring, fraud prevention, and product improvement
  • Legal obligation — where we are required to process data by law
  • Consent — where you have explicitly opted in (e.g. marketing communications, if applicable)

5. Sub-processors and Third Parties

We use the following sub-processors to operate the service:

  • Supabase — database and authentication infrastructure (data may be stored in the EU or US depending on your region)
  • Vercel — application hosting, edge network, and anonymised analytics

Each sub-processor is bound by data processing agreements that comply with applicable privacy law. We do not share personal data with any other third parties without your explicit consent, except where required by law.

6. Data Retention

We retain your account and benchmark data for as long as your account is active. If you delete your account, your personal data and benchmark data will be permanently deleted within 30 days, except where retention is required by law.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access — request a copy of the data we hold about you
  • Rectification — request correction of inaccurate data
  • Erasure — request deletion of your data ("right to be forgotten")
  • Portability — request your data in a machine-readable format
  • Restriction — request that we limit how we process your data
  • Objection — object to processing based on legitimate interests
  • Withdraw consent — where processing is based on consent, withdraw it at any time

To exercise any of these rights, email us at support@benchify.tech. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

8. Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, and role-based access controls. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security. Please notify us immediately at support@benchify.tech if you suspect any unauthorised access to your account.

9. Children's Privacy

Benchify is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or by displaying a notice in the application. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of Benchify after changes take effect constitutes acceptance of the revised policy.

11. Contact Us

For any privacy-related questions, requests, or concerns, please contact us at:

Benchify

support@benchify.tech