Onlu

Legal

Privacy Policy

Last updated: April 2026

1. Overview

Onlu ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights with respect to that information. By using the Service, you agree to the practices described in this policy.

2. Information We Collect

We collect only what is necessary to provide the Service:

  • Email address — when you subscribe to our newsletter, sign up for alerts, or register for Onlu Table events
  • Payment information — when you purchase a product (processed by Stripe; we do not store card details)
  • Usage data — basic analytics such as page views and feature interactions, collected in aggregate and not linked to your identity
  • Communications — if you contact us via email or the contact form, we retain that correspondence

We do not require account registration to use the core Service. We do not collect your name, address, phone number, or any government-issued identifier.

3. How We Use Your Information

  • To send newsletters, hiring signal updates, and product announcements (email subscribers only)
  • To process and fulfil product purchases
  • To respond to enquiries and provide support
  • To improve the Service based on aggregate usage patterns
  • To comply with legal obligations

We will never sell, rent, or trade your personal information to third parties for marketing purposes.

4. Third-Party Services

We use the following third-party services to operate the platform:

  • Stripe — payment processing. Governed by Stripe's Privacy Policy
  • Resend — transactional and newsletter email delivery
  • Vercel — hosting and infrastructure
  • Anthropic — AI-generated content (firm prep guides, concept answers, market snapshots). User search queries are sent to Anthropic's API; no account data or email is included
  • RapidAPI / external data providers — job listing and market data aggregation (no personal data shared)

These providers have their own privacy policies and security practices. We share only the minimum data necessary for each service to function.

5. Cookies and Local Storage

Onlu uses browser local storage to save your preferences (such as filter settings and outreach tracking) entirely on your device. We do not use tracking cookies or third-party advertising cookies. We may use minimal first-party cookies for session management.

6. Data Retention

We retain your email address for as long as you remain subscribed. You may unsubscribe at any time using the link in any email we send. Purchase records are retained as required for accounting and legal purposes (typically 7 years). We delete other personal data upon request.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Withdraw consent to email communications at any time

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

8. Data Security

We implement reasonable technical and organisational measures to protect your information. However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security and encourage you to use strong, unique passwords and to contact us immediately if you suspect unauthorised access.

9. Children's Privacy

The Service is not directed at children under 18. We do not knowingly collect personal information from minors. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above. Material changes will be communicated via email to subscribers or via a notice on the site.

11. Contact

For any privacy-related questions or requests, contact us at [email protected].