TickFoundry Privacy Policy
Last updated: 2026-07-11
This Privacy Policy explains how TickFoundry collects, uses, stores, and shares personal information when you visit our website, contact us, create an account, purchase a subscription, download data, use our APIs, or otherwise interact with us.
1. Who we are
TickFoundry is operated by VP HUB LTD., a company registered in England and Wales.
Company name: VP HUB LTD. Company number: 10809851 Registered office: 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ Trading name: TickFoundry Contact: info@tickfoundry.com
For the purposes of UK data protection law, VP HUB LTD. is the controller of the personal information described in this Privacy Policy.
We have not appointed a Data Protection Officer. If you have any questions about this Privacy Policy or how we handle personal information, please contact us at info@tickfoundry.com.
TickFoundry is an independent data product operated by VP HUB LTD and is not affiliated with, endorsed by, or sponsored by Polymarket or its operators. References to “Polymarket” or other venue names in this Privacy Policy and on our website are used solely to identify the venues whose publicly available market data we collect and describe. All third-party trademarks remain the property of their respective owners.
2. Personal information we collect
We may collect and process the following types of personal information.
Information you provide to us
This may include:
- name;
- email address;
- company, fund, institution, or organisation name;
- job title or role;
- pre-launch waitlist signup details, where you previously provided them;
- account registration details;
- billing details;
- subscription or plan details;
- messages, support requests, feedback, survey responses, and correspondence;
- information you provide when requesting samples, demos, pricing, or access; and
- any other information you choose to send to us.
Information collected automatically
When you use our website or services, we may collect:
- IP address;
- device type;
- browser type and version;
- operating system;
- referring pages;
- pages viewed;
- date and time of visits;
- approximate location derived from IP address;
- cookie identifiers;
- account login activity;
- API usage logs;
- download logs;
- access timestamps;
- file access records;
- error logs;
- security logs; and
- other technical information about how you interact with our website and services.
Payment information
Payments may be processed by a third-party payment provider. We do not normally store full card details ourselves. We may receive limited payment-related information such as payment status, billing email, customer ID, invoice details, subscription status, and the last four digits or expiry date of a payment card where provided by the payment processor.
3. How we use personal information and our lawful bases
Where UK GDPR applies, we rely on the following lawful bases.
| Purpose | Personal information used | Lawful basis |
|---|---|---|
| Managing pre-launch waitlist records, demo requests, and product updates | Name, email, company, role, signup details, correspondence | Consent where required; otherwise legitimate interests in developing and promoting our business |
| Responding to enquiries and support requests | Name, email, correspondence, account details, technical information | Legitimate interests in responding to users and customers; contract where the request relates to a paid service |
| Creating and managing accounts | Name, email, login details, account activity, subscription details | Contract |
| Providing data access, downloads, APIs, SFTP access, or other delivery methods | Account details, access logs, API logs, download logs, IP address, technical information | Contract; legitimate interests in operating and securing the service |
| Processing payments, invoices, subscriptions, renewals, cancellations, and refunds | Billing details, payment status, invoice details, customer ID, subscription details | Contract; legal obligation for tax and accounting records |
| Monitoring seat usage, entitlements, rate limits, and licence compliance | Account details, access logs, API logs, download logs, IP address, technical information | Legitimate interests in enforcing individual seat licences, preventing account sharing, misuse, resale, and unauthorised redistribution |
| Security, fraud prevention, abuse detection, and incident response | IP address, login activity, access logs, API logs, security logs, technical information | Legitimate interests in protecting our service, users, data products, and business |
| Improving our website, products, documentation, data delivery, and customer experience | Usage data, analytics data, feedback, support messages, technical information | Legitimate interests in improving our services |
| Sending service, legal, billing, security, and operational messages | Name, email, account details, subscription details | Contract; legitimate interests; legal obligation where applicable |
| Sending marketing communications | Name, email, company, role, signup or customer status, marketing preferences | Consent where required; legitimate interests where permitted for business-to-business communications |
| Keeping business records and complying with legal obligations | Account records, billing records, correspondence, transaction records | Legal obligation; legitimate interests |
| Establishing, exercising, or defending legal claims | Relevant account, billing, usage, correspondence, and technical records | Legitimate interests; legal obligation where applicable |
4. Legitimate interests
Where we rely on legitimate interests, our interests include:
- operating TickFoundry as a commercial market data business;
- responding to enquiries and customer requests;
- improving our products, documentation, data delivery, and website;
- securing our systems, accounts, APIs, and downloads;
- preventing fraud, abuse, account sharing, scraping, licence breaches, resale, and unauthorised redistribution;
- enforcing our terms and individual seat licences;
- maintaining business, tax, accounting, and legal records;
- understanding how users interact with our website and services;
- measuring which marketing, referral, and acquisition channels bring visitors and customers to us; and
- developing and promoting relevant business-to-business products and services.
5. Marketing communications
If you joined our pre-launch waitlist, request information, download samples, or become a customer, we may contact you about TickFoundry products, service updates, offers, related data products, and similar business-to-business services.
You can opt out of marketing emails at any time by using the unsubscribe link where provided or by contacting info@tickfoundry.com.
We may still send non-marketing messages, such as account, billing, security, legal, or service-related communications.
6. Cookies and analytics
We use a small number of first-party cookies to operate the website, keep you signed in, secure your account, and understand which marketing and referral channels bring visitors to us.
We do not set any third-party advertising cookies, and we do not use cross-site tracking. All cookies described below are first-party cookies set by our own website.
Cookies we set
| Cookie | Purpose | Lifetime |
|---|---|---|
authjs.session-token |
Keeps you signed in to your account after login. | 7 days |
authjs.csrf-token, authjs.callback-url |
Protect the sign-in process against cross-site request forgery and return you to the correct page after signing in. | Duration of the sign-in flow |
tf_pl |
Holds a short-lived pending-login token while a two-factor one-time code is being verified. | 10 minutes |
tf_td |
Remembers a device you have chosen to trust so that we do not ask for a two-factor code on every sign-in from that device. | 30 days |
tf_ref |
Records the referral or partner code contained in the link you used to reach the site, so that a later signup or purchase can be attributed to that referrer (last click). | 30 days |
tf_attrib |
Records how you first arrived at the site (campaign/utm parameters, the referring website, the landing page, and a timestamp). Set once on your first visit from an external source and not overwritten. |
90 days |
Cookie names may carry a __Secure- or __Host- prefix when the site is served over HTTPS. We also use browser local storage to de-duplicate signup and purchase events so they are not counted twice.
Lawful bases for cookies
The sign-in and security cookies (authjs.session-token, authjs.csrf-token, authjs.callback-url, tf_pl, tf_td) are strictly necessary to provide the account, sign-in, and security features you request. Where UK GDPR applies, we rely on the performance of our contract with you and our legitimate interests in securing the service.
The attribution cookies (tf_ref, tf_attrib) are used on the basis of our legitimate interests in measuring the performance of our marketing and referral channels. They are first-party only: the information is not shared with advertising networks and is not used to track you across other websites.
Analytics
We use a self-hosted, first-party analytics tool (Umami) served from our own domain to measure page views and site usage in aggregate. It does not set cookies, does not build cross-site profiles, and its data is not shared with third-party advertising or analytics networks. We rely on our legitimate interests in understanding how our website is used.
Your choices
You can block or delete cookies at any time through your browser settings. Blocking the strictly necessary cookies may prevent you from signing in or using account features; blocking the attribution cookies does not affect the operation of the website.
7. Sharing personal information
We may share personal information with the following categories of recipients:
- hosting, cloud infrastructure, storage, database, logging, monitoring, and security providers;
- email, CRM, customer support, and communication providers;
- payment processors, billing providers, accounting providers, and tax advisers;
- analytics and website performance providers;
- professional advisers, including lawyers, accountants, auditors, insurers, and consultants;
- regulators, courts, law enforcement, tax authorities, or government bodies where required or appropriate;
- potential buyers, investors, lenders, or advisers in connection with a merger, acquisition, financing, restructuring, or sale of assets; and
- other parties where you ask us to share information or where we have a lawful basis to do so.
We do not sell your personal information.
8. International transfers
Some of our service providers may process personal information outside the United Kingdom.
Where required, we will use appropriate safeguards for international transfers, such as UK adequacy regulations, the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, standard contractual clauses, or another lawful transfer mechanism.
You can contact us at info@tickfoundry.com for more information about the safeguards used for international transfers.
9. How long we keep personal information
We keep personal information only for as long as reasonably necessary for the purposes described in this Privacy Policy.
Typical retention periods include:
- marketing and pre-launch waitlist records: until you unsubscribe, ask us to delete them, or they are no longer needed;
- account records: for as long as your account remains active and for up to 6 years afterwards where needed for contractual, legal, accounting, or dispute purposes;
- billing, invoice, tax, and accounting records: normally 6 years from the end of the relevant financial year, or longer if required by law;
- support and correspondence records: normally up to 6 years after the relevant interaction or customer relationship ends;
- access, API, download, security, and audit logs: for as long as reasonably needed for security, fraud prevention, licence enforcement, service improvement, legal compliance, and dispute resolution;
- cookies: for the lifetimes stated in the cookie table in section 6; website analytics data: for as long as reasonably needed to understand and improve use of the website.
We may retain limited information for longer where necessary to establish, exercise, or defend legal claims, enforce our terms, prevent misuse, comply with law, or maintain security.
10. Security
We use reasonable technical and organisational measures designed to protect personal information against unauthorised access, loss, misuse, alteration, or disclosure.
No internet service, email system, API, download mechanism, or storage system is completely secure. You are responsible for keeping your account credentials, API keys, download links, and access details secure.
11. Your data protection rights
Depending on your location and the laws that apply, you may have the right to:
- access your personal information;
- correct inaccurate or incomplete personal information;
- request deletion of your personal information;
- restrict our processing of your personal information;
- object to certain processing;
- request portability of your personal information;
- withdraw consent where we rely on consent; and
- complain to a data protection regulator.
These rights are not absolute and may be subject to legal limits.
To exercise your rights, contact info@tickfoundry.com.
12. Your right to object
You have the right to object to processing based on our legitimate interests.
You also have the absolute right to object to direct marketing at any time. If you object to direct marketing, we will stop using your personal information for that purpose.
You can object by clicking the unsubscribe link in a marketing email or by contacting info@tickfoundry.com.
13. Withdrawing consent
Where we rely on consent, you can withdraw your consent at any time.
Withdrawing consent does not affect the lawfulness of processing carried out before consent was withdrawn.
You can withdraw consent by using the unsubscribe link where provided or by contacting info@tickfoundry.com.
14. Whether you have to provide personal information
You do not have to provide personal information to browse parts of our website.
However, if you want to request a demo, create an account, purchase a subscription, receive support, access data, or use paid services, we need certain personal information to provide those services. If you do not provide the required information, we may not be able to provide the relevant service.
15. Automated decision-making
We do not use personal information to make solely automated decisions that produce legal or similarly significant effects on you.
We may use automated or semi-automated tools to monitor usage, detect security risks, identify abnormal download activity, enforce rate limits, or flag potential licence breaches. These tools help protect the service but do not make legal or similarly significant decisions without appropriate human involvement.
16. Complaints
If you have concerns about how we use your personal information, please contact us first at info@tickfoundry.com so we can try to resolve the issue.
You also have the right to complain to the UK Information Commissioner’s Office.
17. Third-party links
Our website or documentation may contain links to third-party websites, services, venues, APIs, payment providers, or external resources.
We are not responsible for the privacy practices, content, or security of third-party services. You should review their privacy policies separately.
18. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be posted on our website with a new “Last updated” date.
If we make material changes, we may provide additional notice where appropriate.
19. Contact
For privacy questions, rights requests, or complaints, please contact:
VP HUB LTD. trading as TickFoundry 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ info@tickfoundry.com https://tickfoundry.com