Mentionpath

Privacy Policy

Last updated: 8 April 2026

This Privacy Policy explains how Conscious Ventures Ltd, operating as Mentionpath ("Mentionpath", "we", "us", or "our"), collects, uses, stores, and shares personal data when you visit our website, create an account, use our platform, contact us, or otherwise interact with us.

We are committed to handling personal data responsibly and in accordance with applicable data protection laws, including the UK GDPR, the Data Protection Act 2018, and, where applicable, the EU GDPR.

1. Who we are

Controller: Conscious Ventures Ltd, operating as Mentionpath

Company number: 13189124

Registered office: 139 Middle Deal Road, Deal, England, CT14 9RJ

Contact email: hello@mentionpath.ai

For privacy-related questions or to exercise your data protection rights, please contact us at hello@mentionpath.ai with the subject line DATA PROTECTION REQUEST.

2. Scope of this Policy

This Privacy Policy applies to personal data we process when:

  • you visit the Mentionpath website;
  • you sign up for an account, trial, demo, or waitlist;
  • you use the Mentionpath platform and Services;
  • you connect third-party integrations to your account;
  • you communicate with us by email, chat, or contact form;
  • you attend meetings or demos with us;
  • you subscribe to our marketing communications; or
  • we process data for billing, legal, security, support, and internal operations.

3. The personal data we collect

Depending on how you interact with us, we may collect the following categories of personal data:

3.1 Account and contact data

  • name;
  • work email address;
  • company name;
  • job title;
  • account login details;
  • user ID or workspace ID.

3.2 Billing and transaction data

  • billing contact name;
  • billing email address;
  • billing address;
  • VAT number or tax information, where applicable;
  • payment status, subscription plan, invoice information, and transaction history.

We do not store full payment card details ourselves where payments are handled by a third-party payment processor.

3.3 Platform and usage data

  • features used;
  • actions taken in the platform;
  • project or workspace metadata;
  • technical logs;
  • browser type;
  • device information;
  • IP address;
  • timestamps;
  • diagnostic and error data;
  • session-level analytics.

3.4 Customer Data

This includes data, prompts, URLs, content, files, instructions, or other materials you upload, submit, connect, or generate through the Services.

Customer Data may include personal data if you choose to submit it.

3.5 Support and communications data

  • support messages;
  • email correspondence;
  • chat transcripts;
  • meeting bookings;
  • demo requests;
  • notes taken during calls or customer support interactions.

3.6 Website and marketing data

  • cookie identifiers;
  • analytics data;
  • website usage data;
  • campaign attribution data;
  • newsletter subscription data;
  • marketing preferences.

3.7 Public web and third-party output data

As part of our Services, we may process publicly available online content and outputs from search engines, AI systems, and other third-party platforms in order to provide monitoring, benchmarking, and analysis features to our customers.

This content may incidentally include names, professional profiles, bylines, or other identifiers that appear in public-facing content.

4. How we use personal data and our legal bases

Data protection law requires us to identify a lawful basis for processing personal data. Depending on the context, we rely on one or more of the following:

  • performance of a contract;
  • legitimate interests;
  • consent; and
  • legal obligation.

4.1 Website operation

We use basic technical data to load, operate, and secure our website.

Legal basis: Legitimate interests in operating a secure and functional website.

4.2 Account creation and authentication

We use your registration data to create and manage your account, authenticate you, and provide access to the Services.

Legal basis: Performance of a contract.

4.3 Providing the Services

We process account data, Customer Data, and platform usage data to operate the platform, deliver features, generate outputs, provide reporting, run workflows, and maintain the Services.

Legal basis: Performance of a contract.

4.4 Product improvement, analytics, and security

We use technical logs, analytics, and usage data to improve the platform, investigate bugs, monitor performance, prevent abuse, and maintain security.

Legal basis: Legitimate interests in maintaining, improving, and securing the Services.

4.5 Support, onboarding, and customer communications

We use account data, messages, and meeting information to provide support, onboarding, implementation assistance, and service-related communications.

Legal basis: Performance of a contract and, where appropriate, legitimate interests.

4.6 Billing, invoicing, and financial compliance

We use billing and transaction data to process payments, issue invoices, administer subscriptions, and comply with accounting and tax obligations.

Legal basis: Performance of a contract and legal obligation.

4.7 Marketing communications

We may send you product updates, educational content, newsletters, and other marketing communications.

Legal basis: Consent where required, and legitimate interests where permitted by law.

You can unsubscribe from marketing communications at any time using the unsubscribe link in our emails or by contacting us.

4.8 Cookies and similar technologies

We use cookies and similar technologies for website functionality, analytics, and, where applicable, marketing.

Legal basis: Strictly necessary cookies are used on the basis of our legitimate interests in operating the website. Non-essential analytics or marketing cookies are used on the basis of your consent, where required.

4.9 Public content and benchmarking features

Where our Services analyse public web content, public-facing business information, or AI/search outputs, we do so to provide monitoring, benchmarking, and analytics features to our customers.

Legal basis: Legitimate interests and, where applicable, performance of a contract with our customers.

We do not seek to collect personal data for its own sake in this context and apply minimisation measures where reasonably possible.

5. How we use Customer Data

You retain ownership of Customer Data you upload or connect to the Services.

We use Customer Data only as reasonably necessary to:

  • provide the Services;
  • maintain, secure, and support the Services;
  • prevent fraud, abuse, and security threats;
  • improve the performance and functionality of the Services; and
  • comply with legal obligations.

For the avoidance of doubt, we do not use your Customer Data to train our foundational artificial intelligence models.

If you submit personal data to the platform, you are responsible for ensuring that you have an appropriate legal basis and all necessary rights to do so.

6. Who we share personal data with

We do not sell your personal data.

We may share personal data with trusted third parties that help us provide the Services, including providers of:

  • cloud hosting and infrastructure;
  • authentication and identity management;
  • payment processing and subscription billing;
  • analytics and monitoring;
  • customer support and communications tools;
  • CRM and email delivery tools;
  • scheduling and meeting tools;
  • document storage and productivity tools; and
  • AI and model service providers.

These providers act as our service providers, processors, or sub-processors, and are contractually required to process personal data only on our instructions and to apply appropriate security safeguards.

We may also disclose personal data:

  • if required by law, regulation, court order, or competent authority;
  • in connection with legal claims or enforcement;
  • to professional advisers such as lawyers, auditors, or insurers; or
  • in connection with a merger, acquisition, restructuring, financing, or sale of all or part of our business.

A current list of our material sub-processors is available on request.

7. International transfers

Some of our service providers may process personal data outside the UK or EEA.

Where we make restricted international transfers, we use appropriate safeguards, such as:

  • adequacy regulations or adequacy decisions, where available;
  • the European Commission's Standard Contractual Clauses; and/or
  • the UK International Data Transfer Addendum or UK International Data Transfer Agreement, as applicable.

You can contact us if you would like more information about the safeguards used for international transfers.

8. How long we keep personal data

We keep personal data only for as long as necessary for the purposes described in this Policy, including to meet legal, regulatory, tax, accounting, security, and dispute-resolution requirements.

Typical retention periods may include:

Account and profile data

For the life of the account, plus a reasonable post-termination period

Billing and financial records

For as long as required by applicable accounting and tax laws

Support communications

For as long as reasonably needed for support history and follow-up

Platform usage logs

For as long as reasonably needed for security, debugging, and analytics

Marketing records

Until you unsubscribe or object, plus a limited suppression record where needed

Customer Data

Until deleted by you, removed under your instructions, or deleted following account closure and retention periods

Public-content benchmarking data

Only for as long as reasonably necessary for the relevant service purpose

We may retain information for longer where required by law or where necessary to establish, exercise, or defend legal claims.

9. Your rights

Under the UK GDPR and, where applicable, the EU GDPR, you may have the right to:

  • be informed about how your personal data is used;
  • access the personal data we hold about you;
  • request correction of inaccurate or incomplete personal data;
  • request deletion of personal data;
  • request restriction of processing;
  • object to processing based on legitimate interests;
  • request portability of certain data;
  • withdraw consent at any time where processing is based on consent; and
  • lodge a complaint with a supervisory authority.

We will respond to valid rights requests without undue delay and, in most cases, within one month.

To exercise your rights, contact hello@mentionpath.ai with the subject line DATA PROTECTION REQUEST.

If you are not satisfied with our response, you may complain to the UK Information Commissioner's Office (ICO) or, if applicable, your local EU supervisory authority.

10. Cookies

We use cookies and similar technologies on our website and, where applicable, within the platform.

These may include:

  • strictly necessary cookies for core functionality and security;
  • analytics cookies to understand website and product usage; and
  • marketing cookies for attribution or campaign measurement, if used.

You can manage your preferences through our cookie banner and browser settings.

11. Security

We use appropriate technical and organisational measures designed to protect personal data, including measures such as:

  • encryption in transit;
  • access controls;
  • authentication safeguards;
  • role-based access restrictions;
  • logging and monitoring;
  • backups and recovery procedures; and
  • vendor and security reviews, where appropriate.

No system is completely secure, but we work to protect personal data using measures appropriate to the nature of the data and the risks involved.

12. Children's data

The Services are not intended for children, and we do not knowingly collect personal data from children.

If you believe that a child has provided personal data to us, please contact us and we will take appropriate steps to investigate and, if necessary, delete that information.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our Services, legal obligations, or data practices.

If we make a material change, we will take reasonable steps to notify you, such as by posting the updated Policy on our website, updating the "Last updated" date, or contacting you where appropriate.

14. Contact

Mentionpath Operated by Conscious Ventures Ltd

Company Number: 13189124

139 Middle Deal Road, Deal, England, CT14 9RJ

hello@mentionpath.ai