Privacy Policy

Your data is yours. We’ll never sell your data to third-parties. Your data remains private, visible only to you.
Table of Content
Example H2
We use your information exclusively to run the features you choose, tailor your experience, and make Metal better — always in a secure and de-identified way.

You’ll find the specifics in the sections ahead.

1. Introduction

This Privacy Policy sets out how Apollo13 Technologies Inc., trading as Metal (“Metal”, “we”, “us”, or “our”), with registered office at 800 North State Street, Suite 304, City of Dover, County of Kent, 19901, collects and processes your personal data and explains your rights in relation to it

If you have any questions about this Privacy Policy or wish to exercise any of your rights in relation to your personal data, you can contact us at the address above or by email at support@metal.so. Our preferred contact method is email.

This Privacy Policy affects your legal rights and obligations, so please read it carefully. If you do not agree to be bound by this Privacy Policy, please do not provide your personal data to us or request that your employer, colleague, or client does not do so.

We may update this Privacy Policy from time to time to reflect changes in law, regulation, or our business practices. If we make significant changes that substantially affect your rights, we will take reasonable steps to notify you. Otherwise, you are responsible for reviewing this Privacy Policy regularly.

 We may collect your personal data either:
• because you provide it directly to us;
• because your employer, colleague, or client is our customer and adds your information to our platform; or
• because we collect it automatically when you use our services.

In some cases, we act as the controller of your data (when you interact with us directly). In other cases, we act as a processor (when our clients upload or connect your data into Metal).

This website and platform are not intended for children, and we do not knowingly collect data relating to children.

Our website and platform may include links to third-party websites, applications, or integrations. Clicking those may allow third parties to collect or share data about you. We are not responsible for the privacy practices of those third parties and encourage you to review their privacy policies.

2. What personal data do we collect and from whom?

Personal data means any information that identifies you directly or indirectly, such as your name, email address, IP address, or data about your professional relationships.

We may also anonymize or pseudonymize your personal data and use it in aggregated form for analytics, insights, or product improvements.

We do not intentionally collect special category data (e.g. racial or ethnic origin, political opinions, health data) unless you voluntarily provide it.

2.1 Data you provide to us

You may provide personal data when you:
• create or log into a Metal account;
• use our platform features;
• connect third-party services (Google, Microsoft, LinkedIn, etc.);
• subscribe to updates or newsletters;
• apply for a job with us;
• contact us with queries, feedback, or support requests.
This may include your:
• Name
• Email address
• Company, role, and work details
• Account credentials and settings
• Company description, traction, revenue, and funding history
• Fundraising details (e.g. round size, investor targets, lead/non-lead preference)
• Communications with us

2.2 Data we automatically collect

When you use our website, platform, or extension, we automatically collect information about your device and usage, such as:
• IP address, browser type, device type, operating system
• Language and time zone settings
• Log data (when you signed in, actions taken, features used)
• Session duration and navigation
We use cookies and similar tracking technologies for analytics, authentication, and personalization. For more details, see our Cookies Policy.

2.3 Data from connected third-party services

If you choose to connect external accounts or services, we may collect data from them with your permission. This may include:
• Profile data (name, email, picture)
• Contacts and professional relationships (e.g. LinkedIn connections)
• Emails, calendar events, and associated metadata (Google, Outlook)
• Files and attachments (Drive, OneDrive, Dropbox)
We will only access the data required to deliver the requested feature and will never sell or publicly disclose this information.

2.4 Data we receive from others

We may receive your personal data if:
• a colleague or client adds you to a workspace on Metal;
• a client uploads your details into our CRM features;
• a third-party integration or service provider shares data with us (e.g. payment processors, security providers).
If you are added to Metal using a personal, non-work email address, you can request removal by contacting us.

3. Lawful use of your personal data

We will only process your personal data where we have a lawful basis to do so. These include:
• Consent (where you actively agree to specific processing, e.g. newsletters or integrations);
• Contract (where processing is necessary to provide services to you or your employer);
• Legal obligations (where required by law, e.g. fraud prevention, tax compliance);
• Legitimate interests (where we use data in ways that are necessary for our business and do not override your rights).

3.1 Examples of how we use your data

To create and manage your account
To provide and operate our Services
To personalize your experience on Metal
To enable and power features you choose
To improve and develop our platform based on usage patterns
To generate insights and product intelligence in aggregated or de-identified form, never in a way that identifies you or your company
To send you product or security updates
To respond to your queries and provide support
To process job applications
To comply with laws, regulations, and audits

3.2 Marketing

We may send you product updates or marketing communications if you have opted in or if you are an existing customer. You can opt out anytime via unsubscribe links or by contacting us.Transactional emails (such as account notices or security alerts) will still be sent even if you opt out of marketing.

4. Who we share your data with

We do not sell your personal data and we do not make your confidential data public.We may share your personal data only with:
• Service providers (e.g. IT hosting, analytics, AI processing, payments, email delivery, customer support) — limited to what’s necessary for them to perform their role.
• Professional advisors (lawyers, accountants, auditors) — only where strictly necessary, e.g. during an audit or to comply with legal obligations.
• Regulators or law enforcement — only if required by law.
• Successors — in the event of a merger, acquisition, or restructuring.
All third parties we work with are bound by confidentiality and data protection obligations.

5. International transfers

Your personal data may be transferred and stored outside your home country, including outside the UK/EEA.

Where we transfer personal data internationally, we ensure it is protected through approved safeguards such as:
Adequacy decisions;
Standard contractual clauses;
International Data Transfer Agreements (IDTA).

6. Security

We take appropriate technical and organizational measures to protect your data, including encryption, access controls, and secure servers.

However, no system can be fully secure. If we experience a security breach, we will act promptly to mitigate risks and notify affected individuals where required.

7. Your rights

Depending on applicable law (e.g. GDPR, UK Data Protection Act, CCPA), you may have the following rights:
• Access – request a copy of your data;
• Rectification – correct inaccurate data;
• Erasure – request deletion of your data (“right to be forgotten”);
• Restriction – limit how we process your data;
• Portability – request transfer to another service;
• Objection – object to processing based on legitimate interests or direct marketing;
• Withdraw consent – where processing is based on consent.
To exercise your rights, contact us at support@metal.so. We may ask you to verify your identity before responding.

If we are processing your data on behalf of a client (acting as a processor), you should contact the client directly.

You also have the right to lodge a complaint with a data protection authority.

8. Retention

We retain your personal data only as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law.
• If you are added as part of a client’s workspace, we retain your data until the client deletes it or their account is closed.
• If you hold an account, we retain your data until you delete your account, unless legal obligations require longer storage.

We may anonymize data for analytics or research and retain it indefinitely.

9. General

If any provision of this Privacy Policy is held to be invalid, the remaining provisions will remain in effect.

This Privacy Policy is governed by the laws of [Insert jurisdiction, e.g. England and Wales], and disputes will be subject to the exclusive jurisdiction of its courts.

10. How to contact us

If you have questions, concerns, or requests about this Privacy Policy or our processing of your personal data, please contact us at:

Apollo13 Technologies Inc. (Metal)
Email: support@metal.so
Address: 800 North State Street, Suite 304, City of Dover, County of Kent, 19901

Join other data-driven founders today

Metal provides the tools that founders need to put the odds in their favor.

Open App
Stay updated with the latest on fundraising with our newsletter.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

© 2025 Metal Inc.

800 North State Street, Suite 304, City of Dover, County of Kent, 19901