Privacy

━ Legal

Privacy Policy

Last updated: March 2026

Contents

Overview

All-In VC (“we”, “us”, or “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or interact with us. It applies to all data subjects whose personal data we process, in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable Romanian data protection legislation. Please read this policy carefully. If you do not agree with its terms, please discontinue use of our site.

Data Controller

All-In VC is the data controller responsible for your personal data. If you have questions or concerns about this policy or our data practices, you may contact us at: [email protected]. We are based in Romania and our processing activities are subject to Romanian and EU data protection law.

Personal data we collect

  • Contact and inquiry data: When you submit our contact or founder intake form, we collect your full name, email address, company name, role, and any description of your business or investment query you choose to provide.

  • Usage and technical data: We may automatically collect certain technical information when you visit our website, including your IP address (anonymised where possible), browser type and version, pages visited, time and date of visit, and referring URL. This data is collected via cookies and similar technologies (see our Cookie Policy below).

  • Communications data: If you correspond with us by email or through any contact form, we retain a record of that correspondence.

Legal basis for processing

  • Legitimate interests (Art. 6(1)(f) GDPR): We process contact and inquiry data to evaluate potential investment opportunities and respond to your submissions. We have a legitimate interest in assessing deal flow and maintaining investment records.

  • Consent (Art. 6(1)(a) GDPR): Where we use non-essential cookies or analytics tools, we rely on your freely given, specific, and informed consent, which you may withdraw at any time through our cookie settings.

  • Legal obligation (Art. 6(1)(c) GDPR): We may process and retain certain data to comply with applicable legal obligations, including tax, financial reporting, and anti-money laundering requirements.

  • Contract (Art. 6(1)(b) GDPR): If you enter into a contractual relationship with us, we process your data to perform that contract.

How we use your data

  • Investment evaluation: To review and assess submissions from founders and companies seeking investment.

  • Communications: To respond to inquiries, provide updates on your submission status, and correspond with you.

  • Website operation: To maintain and improve the functionality, security, and performance of our website.

  • Compliance: To meet legal, regulatory, and audit obligations applicable to our operations in Romania and the EU.

  • Analytics: To understand how visitors use our site and to improve our content and user experience, using only aggregated or anonymised data where possible.

Data sharing and transfers

We do not sell, rent, or trade your personal data to third parties for marketing purposes. We may share your data in the following limited circumstances:

  • Service providers: Trusted third-party processors (such as cloud hosting, email delivery, and CRM providers) who process data on our behalf under appropriate data processing agreements and who offer at least equivalent levels of data protection.

  • Legal requirements: When required by applicable law, regulation, court order, or governmental authority.

  • Business transactions: In connection with a merger, acquisition, or sale of assets, where recipient parties will be bound by equivalent privacy obligations.

Where we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission or adequacy decisions.

Data retention

We retain personal data only for as long as necessary to fulfil the purposes described in this policy or as required by law. Specifically:

  • Inquiry and submission data: Retained for up to 5 years from the date of submission for investment pipeline tracking and legal record-keeping purposes, unless you request earlier deletion.

  • Technical and usage data: Typically retained for up to 13 months in line with standard analytics retention periods.

  • Communication records: Retained for a reasonable period necessary to manage our relationship with you and to comply with applicable obligations.

Your rights under GDPR

As a data subject in the EU/EEA, you have the following rights regarding your personal data:

  • Right of access (Art. 15): You may request confirmation of whether we process your data and obtain a copy of the data we hold.

  • Right to rectification (Art. 16): You may request correction of inaccurate or incomplete data.

  • Right to erasure (Art. 17): You may request deletion of your data where it is no longer necessary, where consent is withdrawn, or where processing is unlawful.

  • Right to restriction (Art. 18): You may request that we restrict processing of your data in certain circumstances.

  • Right to data portability (Art. 20): You may request that we provide your data in a structured, machine-readable format for transfer to another controller, where processing is based on consent or contract.

  • Right to object (Art. 21): You may object to processing based on legitimate interests or for direct marketing purposes at any time.

  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing prior to withdrawal.

  • Right to lodge a complaint: You have the right to lodge a complaint with the Romanian supervisory authority: Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP), at anspdcp.ro, or with the supervisory authority in your country of residence.

To exercise any of your rights, please contact us at [email protected]. We will respond within 30 days as required by GDPR.

Cookies and tracking technologies

We use cookies and similar tracking technologies to operate and improve our website. Cookies are small text files stored on your device. We use the following types:

  • Strictly necessary cookies: Required for the website to function. These cannot be disabled as they are essential to provide services you have requested.

  • Analytics cookies: Used to understand how visitors interact with our site (e.g., pages visited, session duration). We use anonymised or aggregated data where possible. These are only placed with your consent.

  • Preference cookies: Used to remember your settings and preferences, such as your cookie consent choice.

You can manage or withdraw cookie consent at any time through our cookie banner or your browser settings. Note that disabling certain cookies may affect website functionality.

Data security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. These include encrypted data transmission (HTTPS/TLS), access controls, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

Children's privacy

Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately at [email protected] and we will take prompt steps to delete such information.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. The date of the most recent revision will be noted at the top of the page. We encourage you to review this policy periodically. Continued use of our website following the posting of changes constitutes your acknowledgement of those changes.

Contact us

For any questions, requests, or concerns regarding this Privacy Policy or our data processing practices, please contact us at: [email protected]. We are committed to working with you to resolve any concerns in a timely and transparent manner.