Sharmidon

Privacy Policy

Last updated: 9 March 2026

1. Who We Are

BrandScope is operated by Sports 3 Ltd ("Sharmidon", "we", "us", "our"), a company registered in England and Wales. We provide an AI-powered brand intelligence platform for sports, entertainment, and lifestyle properties.

For questions about this policy or your data, contact us at [email protected].

2. What Data We Collect

We collect the following categories of personal data:

  • Account information: Name, email address, and profile picture provided via your Manus OAuth login.
  • Organisation data: Organisation name and membership details you create within BrandScope.
  • Usage data: Reports generated, proposals created, brands researched, and feature interactions — used to enforce plan limits and improve the service.
  • Payment data: Processed securely by Stripe. We store only your Stripe customer ID and subscription ID. We never store card numbers, CVVs, or full payment details.
  • Technical data: IP address, browser type, and device information collected automatically for security and analytics.
  • Uploaded content: Documents, images, and property data you upload to train AI pitch styles or generate proposals.

3. How We Use Your Data

We use your data for the following purposes:

  • Service delivery: To provide brand intelligence reports, proposals, and target recommendations.
  • AI processing: Your property data and uploaded documents are used to personalise AI-generated content. This data is processed by our LLM providers and is not used to train third-party models.
  • Billing and subscriptions: To manage your plan, process payments via Stripe, and enforce usage limits.
  • Communications: To send welcome emails, service updates, and operational notifications. We do not send unsolicited marketing emails.
  • Security and fraud prevention: To protect your account and detect abuse.
  • Service improvement: Aggregated, anonymised usage data to improve features and performance.

4. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

  • Contract: Processing necessary to provide the BrandScope service you signed up for (Articles 6(1)(b) GDPR).
  • Legitimate interest: Analytics, security, and service improvement where our interests do not override your rights (Article 6(1)(f) GDPR).
  • Consent: Where you explicitly opt in to optional communications or features (Article 6(1)(a) GDPR).
  • Legal obligation: Where we are required to retain data for tax, accounting, or regulatory purposes (Article 6(1)(c) GDPR).

5. Data Sharing

We share personal data only with the following categories of third parties, and only as necessary to operate the service:

  • Stripe: Payment processing. Stripe acts as an independent data controller for payment data. See Stripe's Privacy Policy.
  • LLM providers: AI processing for report generation and proposals. Data is sent via API and is not retained by providers for training.
  • Cloud infrastructure: Hosting and storage providers (data processed within secure environments).
  • Brave Search API: Brand research queries (no personal data is included in search queries).

We do not sell your personal data to third parties.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the service. If you close your account, we will delete your personal data within 30 days, except where retention is required by law (e.g., financial records retained for 6 years under UK tax law).

AI-generated reports and proposals are retained for your access. You can delete individual reports and proposals at any time from within the platform.

7. Your Rights (GDPR)

Under the UK GDPR and Data Protection Act 2018, you have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request that we limit processing of your data in certain circumstances.
  • Portability: Request your data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interest.
  • Withdraw consent: Where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, email [email protected]. We will respond within 30 days.

8. Cookies

We use essential cookies for authentication and session management. These are strictly necessary for the service to function and do not require consent under the Privacy and Electronic Communications Regulations (PECR).

We use analytics cookies (via our analytics provider) to understand how the service is used. These collect anonymised data and do not track you across other websites.

9. International Transfers

Your data may be processed outside the UK/EEA by our infrastructure and AI providers. Where this occurs, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) or adequacy decisions, in accordance with Chapter V of the UK GDPR.

10. Security

We implement appropriate technical and organisational measures to protect your data, including encrypted connections (TLS), secure authentication via OAuth, and access controls on our infrastructure. Payment data is handled entirely by Stripe's PCI-DSS compliant systems.

11. Children

BrandScope is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or an in-app notification. The "Last updated" date at the top of this page indicates when the policy was last revised.

13. Contact and Complaints

If you have questions or concerns about this policy, contact us at [email protected].

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO).

Terms of ServicePricingContact