Last Updated on
Privacy Policy
Privacy Policy
Last Updated: 18 June 2025
This Privacy Policy explains how SWEPETY LTD ("we", "us", "our", or the "Company") collects, uses, stores, shares, and protects your personal data when you access or use our website at www.swepety.com (the "Website") and any related software-as-a-service platform, applications, tools, and services (collectively, the "Service").
We are committed to protecting your privacy and processing your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, the EU General Data Protection Regulation (EU GDPR), and all other applicable data protection and privacy laws worldwide.
By accessing or using our Service, you acknowledge that you have read and understood this Privacy Policy.
1. Data Controller
The data controller responsible for your personal data is:
Company Name | SWEPETY LTD |
Registered Office | 20 Wenlock Road, London, N1 7GU, England |
Company Registration | Registered in England and Wales — Company Number: 16963697 |
Contact Email | |
Phone | +44 7704 827021 |
2. Information We Collect
2.1 Information You Provide Directly
Account Information: Name, email address, password (hashed), company name, job title, and billing address when you register for an account.
Payment Information: Payment card details, billing address, and transaction history. Payment processing is handled by third-party payment processors; we do not store full card numbers on our servers.
Communications: Any information you provide when you contact us via email, support tickets, or other communication channels.
User Content: Data, files, text, configurations, and other content you upload, create, or store through the Service.
Survey & Feedback Data: Responses to surveys, questionnaires, or feedback forms you voluntarily complete.
2.2 Information Collected Automatically
Usage Data: Pages visited, features used, clicks, session duration, frequency of use, and interactions with the Service.
Device & Technical Data: IP address, browser type and version, operating system, device identifiers, screen resolution, language preferences, and referring URLs.
Log Data: Server logs that record requests made to our servers, including timestamps, request methods, and response codes.
Cookies & Similar Technologies: We use cookies, pixels, and similar tracking technologies as described in Section 8 below.
2.3 Information from Third Parties
Third-Party Integrations: If you connect third-party services to your account, we may receive information from those services in accordance with your authorisation and the third party's privacy policies.
Business Partners: We may receive information from business partners, resellers, or referral sources.
Publicly Available Sources: We may collect information from publicly available databases or directories.
3. Legal Bases for Processing (UK GDPR & EU GDPR)
We process your personal data on the following legal bases:
Legal Basis | Purpose |
|---|---|
Performance of a Contract (Art. 6(1)(b)) | To provide, operate, and maintain the Service; to process payments; to manage your account. |
Legitimate Interests (Art. 6(1)(f)) | To improve and personalise the Service; to conduct analytics; to prevent fraud and ensure security; to send non-marketing service communications. |
Consent (Art. 6(1)(a)) | To send marketing communications; to place non-essential cookies; to process special categories of data where applicable. |
Legal Obligation (Art. 6(1)(c)) | To comply with applicable laws, regulations, legal processes, or enforceable governmental requests. |
You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
4. How We Use Your Information
We use your personal data for the following purposes:
Service Delivery: To create and manage your account, provide and maintain the Service, process transactions, and deliver customer support.
Improvement & Development: To analyse usage patterns, diagnose technical issues, develop new features, and improve the overall user experience.
Communication: To send you service-related notices, updates, security alerts, and administrative messages.
Marketing: To send promotional communications (only with your consent, where required). You can opt out at any time.
Security & Fraud Prevention: To detect, investigate, and prevent fraudulent transactions, abuse, and other harmful activities.
Legal Compliance: To comply with legal obligations, resolve disputes, and enforce our agreements.
Aggregated & Anonymised Data: To create aggregated, de-identified, or anonymised data for analytics, benchmarking, and research purposes.
5. How We Share Your Information
We do not sell your personal data. We may share your information in the following circumstances:
Service Providers: With trusted third-party vendors who perform services on our behalf (e.g., hosting, payment processing, email delivery, analytics, customer support). These providers are contractually obligated to protect your data and may only process it for specified purposes.
Business Transfers: In connection with a merger, acquisition, reorganisation, bankruptcy, or sale of all or a portion of our assets, your data may be transferred as part of that transaction.
Legal Requirements: When required by law, regulation, legal process, or governmental request, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
With Your Consent: We may share your data with third parties when you have given us explicit consent to do so.
Aggregated or Anonymised Data: We may share aggregated or anonymised information that cannot reasonably be used to identify you.
6. International Data Transfers
Your personal data may be transferred to and processed in countries outside the United Kingdom and the European Economic Area (EEA). Where such transfers occur, we ensure appropriate safeguards are in place, including:
Transfers to countries recognised as providing an adequate level of data protection by the UK Secretary of State or the European Commission.
Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office (ICO) or the European Commission.
Any other valid transfer mechanism permitted under applicable data protection law.
You may request a copy of the safeguards in place by contacting us at support@swepety.com.
7. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. Specifically:
Account Data: Retained for the duration of your account and for a reasonable period thereafter (typically up to 30 days after account deletion) to allow for reactivation or to address any outstanding issues.
Transaction Records: Retained for a minimum of 6 years to comply with UK tax and accounting obligations.
Marketing Data: Retained until you withdraw consent or unsubscribe.
Log & Analytics Data: Typically retained for up to 24 months, after which it is anonymised or deleted.
When personal data is no longer needed, we securely delete or anonymise it.
8. Cookies & Tracking Technologies
We use cookies and similar technologies to enhance your experience, analyse usage, and deliver relevant content. The types of cookies we use include:
Type | Purpose |
|---|---|
Strictly Necessary | Essential for the operation of the Service (e.g., authentication, security). Cannot be disabled. |
Functional | Remember your preferences and settings to enhance your experience. |
Analytics & Performance | Help us understand how users interact with the Service to improve functionality and performance. |
Marketing | Used to deliver relevant advertisements and measure campaign effectiveness. Only placed with your consent. |
You can manage your cookie preferences through your browser settings or through our cookie consent banner. Disabling certain cookies may affect the functionality of the Service.
9. Your Rights
Under the UK GDPR, EU GDPR, and other applicable privacy laws, you have the following rights regarding your personal data:
Right of Access: Request a copy of the personal data we hold about you.
Right to Rectification: Request correction of inaccurate or incomplete data.
Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal obligations.
Right to Restrict Processing: Request that we limit how we use your data in certain circumstances.
Right to Data Portability: Request your data in a structured, commonly used, and machine-readable format.
Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
Right Not to Be Subject to Automated Decision-Making: Object to decisions made solely by automated means that produce legal or similarly significant effects on you.
To exercise any of these rights, please contact us at support@swepety.com. We will respond within one month of receiving your request, as required by law. We may need to verify your identity before processing your request.
Additional Rights for Users in Specific Jurisdictions
California (CCPA/CPRA): California residents have additional rights including the right to know, delete, correct, and opt out of the sale or sharing of personal information. We do not sell personal information. To exercise your rights, contact us at the details above.
Brazil (LGPD): Brazilian users have rights similar to those under the GDPR, including access, correction, anonymisation, portability, and deletion.
Other Jurisdictions: If you reside in a jurisdiction with specific data protection laws, we will honour your rights under those laws to the extent applicable.
10. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction, including:
Encryption of data in transit (TLS/SSL) and at rest.
Access controls and authentication mechanisms.
Regular security assessments and vulnerability testing.
Employee training on data protection and security practices.
Incident response and breach notification procedures.
While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
11. Children's Privacy
Our Service is not directed to individuals under the age of 16 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without appropriate parental consent, we will take steps to delete such data promptly. If you believe we have inadvertently collected data from a child, please contact us at support@swepety.com.
12. Third-Party Links
Our Service may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:
Posting the updated policy on our Website with a revised "Last Updated" date.
Sending an email notification to your registered email address (for material changes).
Displaying a prominent notice within the Service.
Your continued use of the Service after the effective date of the revised Privacy Policy constitutes your acceptance of the changes.
14. Complaints
If you have concerns about how we process your personal data, we encourage you to contact us first so we can try to resolve the matter. You also have the right to lodge a complaint with a supervisory authority:
UK: Information Commissioner's Office (ICO) — https://ico.org.uk
EU: Your local Data Protection Authority (DPA)
15. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Company | SWEPETY LTD |
Address | 20 Wenlock Road, London, N1 7GU, England |
Alternate Email | |
Phone | +44 7704 827021 |
Website |
This Privacy Policy is governed by the laws of England and Wales.
