SwyftHost Privacy Policy

FOSSBilling.org - Client Management, Invoicing and Support Software

Legal

Privacy Policy

Last updated: March 2025

1. Introduction

SwyftScale ("we", "us", or "our") is committed to protecting your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our website at swyftscale.com and related services.

This policy is intended to comply with the UK GDPR, the Data Protection Act 2018, and, where applicable, the CCPA. By using our services, you consent to the practices described in this policy.

2. Information We Collect

We collect the following categories of personal data:

  • Account information: Full name, email address, company name, and phone number when you register for a client account.
  • Grant applications: Business size, goals, current website URL, and your reason for applying, submitted via the Growth Grant application form.
  • Contact enquiries: Name, email, service of interest, and project details submitted via our contact form.
  • Mailing list: Email address if you subscribe to our mailing list.
  • Usage data: Standard server logs including IP address, browser type, and pages visited (collected automatically).

3. How We Use Your Data

We use your personal data to:

  • Create and manage your client account
  • Deliver and administer the services you request
  • Process and review Growth Grant applications
  • Respond to your enquiries and support requests
  • Send transactional emails (account verification, project updates, billing notifications)
  • Send marketing communications if you have opted in to our mailing list
  • Comply with legal obligations

Our legal basis for processing is: contract performance (for service delivery), legitimate interests (for fraud prevention and business operations), and consent (for marketing communications).

4. Third-Party Services

We share data with the following trusted third-party processors:

  • Firebase / Google (Firestore & Authentication): We store user accounts and application data in Google Firebase. Data is processed under Google's Data Processing Amendment.
  • Stripe: We use Stripe for payment processing. When you make a payment, your billing details are handled directly by Stripe and are subject to Stripe's Privacy Policy. We store your Stripe Customer ID but not your card details.
  • ZeptoMail (Zoho): We use ZeptoMail to send transactional emails. Your email address is passed to ZeptoMail solely for the purpose of delivering emails you have requested.
  • Telegram: We use Telegram's Bot API for internal staff notifications. Enquiry data (name, email, service) is sent to a private staff channel. This data is not stored by Telegram beyond their standard message retention.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. If you request account deletion, we will delete your data from our systems within 30 days, except where we are required to retain it for legal or financial purposes.

Grant application data is retained for 12 months following a decision to allow for reapplications and record-keeping.

6. Your Rights

Under UK GDPR and applicable data protection law, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete data
  • Erasure ("right to be forgotten") of your personal data
  • Restrict our processing of your data
  • Portability — receive your data in a machine-readable format
  • Object to processing based on legitimate interests
  • Withdraw consent at any time for consent-based processing (e.g. mailing list)

To exercise any of these rights, please contact us via the contact form on our website. We will respond within 30 days.

7. California Privacy Rights (CCPA)

If you are a California resident, you have the right to know what personal information we collect, the right to delete personal information, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us via our website.

8. Cookies

Our website uses minimal cookies necessary for functionality (such as authentication session tokens stored in your browser's local storage). We do not use tracking or advertising cookies. No third-party analytics scripts are loaded without your knowledge.

9. Security

We implement appropriate technical and organisational measures to protect your data, including encrypted data storage via Firebase, HTTPS connections, and access controls restricting who can view client data. However, no method of transmission over the internet is completely secure.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes. The "last updated" date at the top of this page indicates when the policy was last revised.

11. Contact

For any questions about this Privacy Policy or to exercise your data rights, please contact us through our website at swyftscale.com.

Top