Legal — Privacy

Privacy policy.

How Katapult Holdco collects, uses, and protects your personal data — written to comply with the EU General Data Protection Regulation (GDPR).

Last updated 21 May 2026 Katapult Holdco AS · Oslo, Norway

Katapult Holdco AS takes your privacy seriously. This policy applies to all personal data we process across katapult.vc and the services we operate. By using our website you consent to the collection and use of data as described below. To get in touch about anything in this policy, email privacy@katapult.vc.

01Data we collect

As a data controller, we collect a range of data in order to deliver our services. Whenever we collect personal information from you, we let you know — and you can access the following at any time:

What we hold
The data we have collected from you.
Legal basis
Why we are holding it (e.g. because you gave consent).
Use
What we will do with it, and for how long.
Storage
Where the data is stored and who it may be shared with.
Your rights
Your rights in relation to the data, and how to access or manage it.

1.1 What we ask you to provide

Depending on the service you use — for example the contact form on this site — we may request information such as your name, email, address, and phone number. We need this in order to contact you, deliver services or products, and carry out any other business between us for which you have given consent.

We may collect additional information when you communicate with us, contact our team, or respond to a survey. We may also collect information such as financial details, date of birth, bank account details, and your education or career experience where relevant to an investment or accelerator relationship.

If you attend our events, we may collect photos and videos in which you appear, used for marketing and to document our community.

We may use this information to contact you about:

  • Marketing. Application processes, events, sites, services, and offerings from partners or members of the Katapult Holdco corporate family — across the communication channels you have opted in to.
  • Informational and other. Communications that are required or necessary for users of our services, notifications containing important information, and other communications you request from us. You can opt out by emailing privacy@katapult.vc.

1.2 What we collect when you visit our website

We use cookies — small pieces of data your browser stores on your device — to make the site work and to understand how visitors interact with it. We also work with partners and third-party providers to serve relevant advertising using ad-related cookies and web beacons. You can opt out of third-party advertising cookies at any time, in which case our advertising will not be targeted to you specifically.

For a full list of the cookies we set, see the Cookies policy →.

02Data we share with third parties

We share personal data with the following parties in order to carry out our obligations to you:

  • Mentors. We may share your personal data with our mentors as part of accelerator and program activities.
  • Investors. We may share your personal data with investors in our network where relevant to a deal or program.
  • Partners. We may share your personal data with our partners.
  • Katapult corporate family. We may share your personal data with other companies in our corporate family, such as Katapult Ocean.
  • Service providers. We may share your personal data with third-party service providers that perform services on our behalf — including Eventbrite, HubSpot, Mailchimp, and Google.
  • Other parties as permitted or required by law. We may share information about you with other parties for our business purposes or as required by law, including:
    • to comply with a law, legal process, or regulation;
    • to respond to law enforcement authorities, court orders, or other valid legal process;
    • where, in our sole discretion, disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with the investigation of suspected or actual illegal activity;
    • to protect the vital interests of a person;
    • to investigate violations of, or enforce, a user agreement or other legal terms applicable to any service;
    • to protect our property, services, and legal rights;
    • to facilitate a purchase or sale of all or part of our business;
    • to help assess and manage risk and prevent fraud against us, our users, or our partners;
    • to companies that we plan to merge with or be acquired by; and
    • to support our audit, compliance, and corporate governance functions.

In certain situations we may share access to your personal data without your explicit consent — for example, if required by law, to protect the life of an individual, or to comply with any valid legal process, government request, rule, or regulation.

The mentors, investors, and partners we may share your personal data with are listed on our website.

03Why we share data outside the EU/EEA

We may transfer personal data to a country outside the European Economic Area (EEA) — for example, when a third party we work with operates servers outside the EEA. When this happens, we obtain your consent or otherwise ensure the transfer is lawful and your data is secure, by following the European Commission's guidelines on international data transfers.

04How we keep your data secure

We keep your data secure by:

  • following internal policies of best practice and training all staff who handle personal data;
  • encrypting personal data at rest and in transit;
  • using TLS/SSL for all information submitted to us online.

In the unlikely event of a criminal breach of our security, we will inform the relevant regulatory body within 72 hours. If your personal data was involved in the breach, we will also inform you directly.

05Changes to this policy

We may change this privacy policy from time to time. When we do, we will let you know — by notifying customers where we can, and by adding notices to our website. By continuing to access or use our services after those changes take effect, you agree to be bound by the revised policy.

06Your rights

Under the GDPR, you have:

  • the right to be informed about the collection and use of your personal data;
  • the right of access to your personal data and any supplementary information;
  • the right to have any errors in your personal data rectified;
  • the right to have your personal data erased;
  • the right to restrict or suppress the processing of your personal data;
  • the right to move, copy, or transfer your personal data from one IT environment to another;
  • the right to object to the processing of your personal data in certain circumstances;
  • rights related to automated decision-making (where no humans are involved) and profiling.

You can manage your data with us by:

  • using your online account, if you have been signed up as a customer and have received login information;
  • contacting us by email or telephone;
  • writing to us at the address below.

While we do not hold personal data any longer than we need to, the duration will depend on the nature of your relationship with us.

07About us

We are Katapult Holdco AS, registered at Universitetsgata 2, 0164 Oslo, Norway. You can contact us at privacy@katapult.vc.

Katapult Holdco AS — Privacy Policy

Last updated 21 May 2026 · v2.0

Universitetsgata 2, 0164 Oslo
privacy@katapult.vc