Privacy Policy | Menza
Menzamenza
Sign inTry for free

Privacy Policy

Last updated: 5/18/2026

1. About this notice

This is the privacy notice of Latentspace AI Ltd (company number 15004463), a company registered in England and Wales with registered office at 3rd Floor, 1 Ashley Road, Altrincham, Cheshire WA14 2DT, United Kingdom, trading as “Menza” (“Menza”, “we”, “us”, “our”). Latentspace AI Ltd is a subsidiary of Latentspace, Inc.

This notice explains how Menza handles personal data when you visit our website, register for or use our product (the “Service”), or contact us.

For the purposes of UK GDPR and the EU GDPR, Latentspace AI Ltd is the data controller for the personal data described in §3. We may also process personal data of our business customers’ end-users in the course of providing the Service to those customers, in which case Menza acts as a processor and the business customer is the controller; that processing is governed by the data processing agreement between Menza and the business customer. If Menza is acting as a processor of your personal data (rather than as the controller), please contact the controller in the first instance to exercise your rights; we will assist them in responding.

2. Contact

If you feel your personal data has been handled improperly, please contact us at privacy@menza.ai. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ico.org.uk) or your local EU supervisory authority.

3. Personal data we collect and why

We collect the following categories of personal data from people who visit our website, contact us, or register for the Service:

  • Account data — name, email address, and authentication credentials.
  • Profile and billing data — your role, company, billing address, VAT number, and metadata about your payment (full payment-card details are held by our payment processor, not by us).
  • Communications — the content of emails, support tickets, and conversations you have with us.
  • Product analytics — where you have consented, information about how you use the Service.
  • Server logs — technical information automatically recorded when you use the Service (IP address, user agent, request paths, timestamps).

We use this data to provide and operate the Service, take payment, respond to you, secure the Service, send essential service messages, improve the Service, and comply with legal obligations. The legal bases we rely on under UK GDPR Article 6 are contract (Art. 6(1)(b)), legal obligation (Art. 6(1)(c)), legitimate interests (Art. 6(1)(f)), and consent (Art. 6(1)(a)) where applicable.

We do not process special-category personal data and we do not sell personal data.

4. Who we share personal data with

  • Sub-processors — third-party service providers we use to operate the Service. A current list is published at menza.ai/subprocessors.
  • Professional advisers — lawyers, accountants, auditors, under duties of confidentiality.
  • Authorities — where legally required.
  • Acquirers in connection with a corporate transaction, subject to confidentiality undertakings.

5. International transfers

The Service is operated from the United Kingdom and personal data is hosted on servers located in the United Kingdom or European Economic Area. By using the Service, you acknowledge that personal data you provide will be processed in the UK or EEA. Some of our sub-processors are based outside the UK/EEA, principally in the United States. We rely on appropriate safeguards for those onward transfers — the UK International Data Transfer Addendum, the EU Standard Contractual Clauses, and/or the EU-US Data Privacy Framework where the recipient is certified. You can request a copy of the safeguard for a specific recipient by emailing privacy@menza.ai.

6. Cookies

We use cookies necessary to operate the Service. We use analytics cookies only with your consent, via the cookie banner on our website. You can change your preferences at any time.

7. How long we keep personal data

We keep personal data only for as long as we need it for the purposes for which it was collected, taking into account:

  • the duration of your account or contract with us;
  • statutory retention obligations (for example, UK accounting law requires us to keep billing records for six years);
  • the period during which a legal claim or regulatory action could arise; and
  • whether you have withdrawn consent.

For personal data we hold as a processor for a business customer, retention is governed by the Data Processing Agreement with that customer.

8. Your rights

You have the following rights in respect of your personal data: access, rectification, erasure, restriction, portability, objection, and withdrawal of consent. You also have the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, email privacy@menza.ai. We will respond within one month, as required by UK GDPR Article 12(3).

If your request relates to personal data we hold as a processor for a business customer, we will direct you to that customer and assist them in responding.

9. Security

We maintain technical and organisational measures designed to protect personal data, including encryption, access controls, environment separation, audit logging, and a written incident-response procedure. If you become aware of a vulnerability or suspect a security incident, please contact security@menza.ai.

10. Changes to this notice

We may update this notice from time to time. When we do, we will update the “Last Updated” date at the top of this page. If we make material changes, we will give prominent notice before the changes take effect.

Last updated: 2026-05-18