Your privacy matters to us. This policy explains how Bidlync collects, uses, and protects your personal information.
Bidlync ("we," "our," or "us") operates the Bidlync platform, including the website at bidlync.manus.space, the Bidlync mobile application, and related services (collectively, the "Service"). This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our Service.
By accessing or using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.
Bidlync is a software-as-a-service (SaaS) platform that helps small businesses find and bid on federal government contracts and grants. We aggregate publicly available data from SAM.gov and Grants.gov and provide AI-powered tools to assist with the bidding process. We are not affiliated with, endorsed by, or connected to the U.S. federal government.
We collect several types of information to provide and improve our Service. The categories of information we collect include:
When you create an account, we collect your name and email address through our authentication provider (Manus OAuth). We do not collect or store passwords directly; authentication is handled by our third-party identity provider.
When you subscribe to a paid plan, payment processing is handled entirely by Stripe, Inc. We do not collect, store, or have access to your full credit card number, debit card number, or bank account details. Stripe may share with us limited information such as the last four digits of your card, card type, and billing address for record-keeping and customer support purposes.
We collect information about how you interact with our Service, including: search queries and filter selections, contracts and grants you view, bookmark, or add to your watchlist, pipeline tracking data (opportunity status, notes), comments and discussions you post, AI Bid Assistant inputs and outputs, and pages visited and features used.
We automatically collect certain technical information when you access our Service, including: device type, operating system, and browser type, IP address and approximate geographic location, referring URLs and pages visited, session duration and interaction patterns, and push notification tokens (if you opt in to notifications on mobile).
When you use our AI Bid Assistant or AI-powered features, we process the text you submit (such as Statements of Work or grant descriptions) to generate responses. This content is sent to our AI service provider for processing and is not used to train AI models.
We use the information we collect for the following purposes:
Our Service integrates with the following third-party services. Each has its own privacy policy governing its use of your data:
| Service | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing | Name, email, payment method details |
| Manus OAuth | Authentication | Name, email, user identifier |
| SAM.gov API | Federal contract data | Search queries (no personal data sent) |
| Grants.gov API | Federal grant data | Search queries (no personal data sent) |
| OpenAI | AI Bid Assistant, news briefings, blog generation | Text prompts (SOW content, grant descriptions) |
We encourage you to review the privacy policies of these third-party services:
We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:
While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to promptly addressing any security incidents.
We retain your personal information for as long as your account is active or as needed to provide you with the Service. Specifically:
After the applicable retention period, we will securely delete or anonymize your information. We may retain certain information as required by law or for legitimate business purposes, such as resolving disputes or enforcing our agreements.
Depending on your location, you may have the following rights regarding your personal information:
To exercise any of these rights, please contact us at the email address provided in the Contact Us section below. We will respond to your request within 30 days (or sooner if required by applicable law). We may ask you to verify your identity before processing your request.
If you are a California resident, the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) provide you with additional rights regarding your personal information:
You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected it, the business purpose for collecting it, and the categories of third parties with whom we share it.
You have the right to request deletion of your personal information, subject to certain exceptions provided by law.
We do not sell your personal information. If this practice changes in the future, we will update this policy and provide you with the right to opt out.
We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, or provide a different level of quality for exercising your rights.
You have the right to request correction of inaccurate personal information that we maintain about you.
To exercise your California privacy rights, contact us at [email protected]. You may also designate an authorized agent to make a request on your behalf.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) provides you with additional protections. We process your personal data based on the following legal bases:
In addition to the rights listed in the "Your Rights & Choices" section, GDPR provides you with the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable data protection laws.
Our Service is not directed to individuals under the age of 13 (or under the age of 16 in the EEA). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to delete that information promptly.
If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at the email address below so we can take appropriate action.
Your information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country. We take appropriate safeguards to ensure that your personal information remains protected in accordance with this Privacy Policy, including the use of Standard Contractual Clauses approved by the European Commission where applicable.
By using the Service, you consent to the transfer of your information to the United States and other countries where we and our service providers operate.
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this page and, where appropriate, providing additional notice (such as an in-app notification or email).
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Service after any changes to this Privacy Policy constitutes your acceptance of the updated policy.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
We aim to respond to all privacy-related inquiries within 30 days. For California residents exercising CCPA/CPRA rights, we will respond within 45 days as required by law. For GDPR-related requests from EEA residents, we will respond within one month.