1. Data controller
The data controller is Swile SAS, 561 rue Georges Melies, 34000 Montpellier, France. You can reach our privacy team at [email protected].
2. Data we collect
Account & billing data
Work email, name, company name, VAT ID, billing address, order history, credit balance, and payment method metadata (we do not store full card numbers).
Usage data
Log data such as IP address, browser, device, pages visited, searches, exports, API calls, and timestamps. Used to keep the Service secure and reliable.
Customer data you provide
Prospect lists, CRM exports, enrichment inputs and outputs, and AI sequence copy that you upload or generate. You remain the controller of this data; Swile processes it on your instructions.
Prospect data in our B2B database
Business contact data (name, role, business email, company, public professional profiles) that we source from public and licensed third-party providers to power Prospects and Companies search.
3. How we use data
- Provide, secure and improve the Service.
- Fulfill orders, process credits, and issue invoices.
- Communicate service updates and respond to support requests.
- Detect abuse, fraud, and violations of the Acceptable Use Policy.
- Comply with legal obligations (accounting, tax, GDPR requests).
- With consent, send product marketing you can unsubscribe from at any time.
4. Legal bases (GDPR)
- Contract — to deliver the Service you purchased.
- Legitimate interests — securing the Service, preventing abuse, and offering B2B contact data to professional users.
- Consent — non-essential cookies and marketing emails.
- Legal obligation — accounting, tax, and lawful requests.
6. International transfers
Personal data is primarily processed in the European Economic Area. Where a subprocessor is located outside the EEA, we rely on the European Commission's Standard Contractual Clauses and additional safeguards where required.
7. Retention
- Account & billing data — for the life of the account and up to 10 years after closure to meet accounting obligations.
- Usage logs — up to 12 months.
- Customer data you upload — deleted within 30 days after account closure or on written request.
- Prospect database — re-verified continuously; suppression requests honored within 30 days.
8. Your rights
Under the GDPR and similar laws, you may request access, rectification, erasure, restriction, portability, and objection regarding your personal data. To exercise these rights, or to opt out as a prospect in our database, email [email protected]. You also have the right to lodge a complaint with the French supervisory authority (CNIL) or your local regulator.
9. Security
We use encryption in transit (TLS), access controls, least-privilege policies, audit logging, and regular security reviews. No system is perfectly secure — please report vulnerabilities to [email protected].
10. Children
Swile is a B2B service and is not directed to children under 16. We do not knowingly collect data from children.
11. Changes
We may update this policy from time to time. Material changes will be announced by email or in-product notice before they take effect.
Questions?
Contact us at [email protected] or visit our contact page.
Swile SAS — 561 rue Georges Melies, 34000 Montpellier, France