← Back to site
Legal

Privacy Policy

Effective date: 1 April 2025  ·  Last updated: 1 April 2025

SG Research ("we," "us," "our") is committed to protecting your personal information. This Policy explains what data we collect, why we collect it, and how you can exercise your rights under applicable law — including the EU General Data Protection Regulation (GDPR) and applicable App Store requirements.

This Policy applies to the sg-r.net website and any mobile or desktop application published by SG Research that links to this page.

01Who We Are

SG Research is an independent AI research laboratory and content consultancy headquartered in Amsterdam, the Netherlands. Our work spans multi-agent AI systems, OSINT/GEOINT research, and technical writing.

Data controller:

SG Research — Alexander V. Neri

Amsterdam, the Netherlands

Email: hi@sg-r.net

02Data We Collect

We collect only what is necessary for the purpose described.

Website — contact form

DataPurposeLegal basis (GDPR)
NamePersonalise replyLegitimate interest (Art. 6(1)(f))
Email addressSend a response to your enquiryLegitimate interest (Art. 6(1)(f))
Message contentUnderstand and respond to your requestLegitimate interest (Art. 6(1)(f))

Mobile / desktop applications

Each application we publish may collect additional data. Where an app collects data beyond what is listed above, that data and its purpose are disclosed on the relevant App Store listing under App Privacy. If an app collects no personal data, that is also disclosed on the listing.

Unless stated otherwise in the app's own disclosure, our apps do not collect:

  • Precise location
  • Contacts, calendars, or photos (unless a specific feature requires it and you grant permission)
  • Financial information
  • Health or biometric data
  • Browsing or search history outside the app

Automatically collected data (website)

We do not run analytics scripts or advertising trackers on this website. Standard server logs (IP address, referrer, user-agent, timestamp) may be retained by our hosting provider (Vercel) in accordance with their own privacy policy for up to 30 days for security and abuse-prevention purposes.

03How We Use Your Data

  • To respond to enquiries submitted through the contact form.
  • To operate and improve our applications and services.
  • To meet legal or regulatory obligations when required.

We do not use your data for automated profiling, targeted advertising, or sale to third parties.

04Third-Party Services

We use a small number of carefully chosen third-party processors. Each is bound by a data processing agreement and may only process your data on our documented instructions.

ServicePurposeData transferred
ResendTransactional email delivery (contact form)Name, email, message
VercelWebsite hosting and edge deliveryServer logs (IP, user-agent)

We do not share personal data with any other third party unless compelled by a valid legal order.

05Data Retention

Contact form submissions are retained in email for as long as the correspondence thread remains relevant, and deleted when no longer needed (typically within 24 months). You may request earlier deletion at any time.

Application usage data, where collected, is retained only for as long as necessary to provide the service. Specific retention periods are noted in the relevant app's store listing or in-app settings.

06Your Rights

If you are located in the European Economic Area (EEA), you have the following rights under the GDPR:

  • Access — request a copy of personal data we hold about you.
  • Rectification — ask us to correct inaccurate data.
  • Erasure — ask us to delete your data where there is no overriding reason to retain it.
  • Restriction — ask us to pause processing while a dispute is resolved.
  • Portability — receive your data in a structured, machine-readable format.
  • Objection — object to processing based on legitimate interests.
  • Withdrawal of consent — where processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, email us at hi@sg-r.net. We will respond within 30 days.

You also have the right to lodge a complaint with your local supervisory authority. In the Netherlands: Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).

07Children's Privacy

Our website and applications are not directed at children under 13 (or under 16 where required by local law). We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us immediately at hi@sg-r.net and we will delete it promptly.

08International Transfers

Our hosting infrastructure (Vercel) and email delivery (Resend) may process data in the United States. Both services participate in data transfer mechanisms that comply with EU data protection law, including Standard Contractual Clauses.

09Cookies & Tracking

This website does not use cookies for analytics or advertising. The only technical cookies that may be set are those strictly necessary for the site to function (e.g., CSRF protection on form submissions). No consent banner is required because we do not set non-essential cookies.

Our mobile applications do not use third-party tracking SDKs unless disclosed in the relevant app's store listing.

10Security

We apply appropriate technical and organisational measures to protect your data against unauthorised access, alteration, or disclosure. Contact form submissions are transmitted over TLS. We review our security practices regularly.

11Changes to This Policy

We may update this Policy from time to time. Material changes will be reflected in the "Last updated" date at the top of this page. Continued use of our website or applications after an update constitutes acceptance of the revised Policy.

12Contact

Questions or requests regarding this Policy should be directed to:

SG Research — Alexander V. Neri

Amsterdam, the Netherlands

hi@sg-r.net