Privacy Policy

Last updated: 27 December 2025

1. Introduction

Swiftly Site ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered website builder service.

This policy complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable UK data protection laws.

2. Data Controller

Swiftly Site is the data controller for your personal data. Our contact details:

Swiftly Site
Email: support@swiftlysite.com
Website: swiftlysite.com

3. Information We Collect

3.1 Information You Provide

We collect information you provide directly to us:

  • Account Information: Name, email address, password (hashed)
  • Website Content: Business names, descriptions, services, features, contact information
  • Payment Information: Processed securely through Stripe (we do not store full card details)
  • Communication Data: Messages you send to us via support channels

3.2 Automatically Collected Information

We automatically collect certain information:

  • Usage Data: How you interact with the Service, pages visited, features used
  • Device Information: IP address, browser type, device type, operating system
  • Cookies and Tracking: See our Cookie Policy for details
  • Log Data: Server logs, error logs, access times

3.3 Analytics and Usage Data

We collect comprehensive analytics data to improve our Service:

  • User Behavior: Pages visited, time spent, click patterns, navigation paths
  • Feature Usage: Which features you use, how often, and in what sequence
  • Performance Metrics: Page load times, error rates, API response times
  • Device Information: Browser type, device type, screen resolution, operating system
  • Geographic Data: Country, region, city (derived from IP address)
  • Referral Sources: How you found our Service (search engines, direct, referrals)
  • Session Data: Session duration, number of sessions, session recordings
  • Conversion Tracking: Sign-ups, subscriptions, feature adoption rates

3.4 Third-Party Information

We may receive information from third-party services you connect to our Service, such as payment processors (Stripe), authentication providers, and analytics services (Google Analytics, etc.).

4. How We Use Your Information

We use your information for the following purposes:

4.1 Service Provision

  • Create and manage your account
  • Generate and host your websites
  • Process payments and manage subscriptions
  • Provide customer support
  • Send service-related communications

4.2 Legal Basis (UK GDPR)

We process your data based on:

  • Contract: To fulfil our contract with you (providing the Service)
  • Consent: Where you have given clear consent (e.g., marketing emails)
  • Legitimate Interests: To improve our Service, prevent fraud, ensure security
  • Legal Obligation: To comply with legal requirements (e.g., tax records)

4.3 Analytics and Service Improvement

We use analytics data to:

  • Analyse user behavior and usage patterns to improve our Service
  • Identify popular features and areas for improvement
  • Optimise user experience and interface design
  • Develop new features based on user needs
  • Conduct A/B testing and performance optimisation
  • Track conversion rates and business metrics
  • Prevent fraud, abuse, and security threats
  • Personalise content and recommendations
  • Measure marketing campaign effectiveness

Legal Basis: Legitimate interest (improving our Service and business operations) and, where required by PECR, your consent.

5. How We Share Your Information

We do not sell your personal data. We may share your information only in the following circumstances:

5.1 Service Providers

We share data with trusted third-party service providers:

  • Stripe: Payment processing (see Stripe's privacy policy)
  • Anthropic: AI service provider for website generation
  • Hosting Providers: To host and deliver your websites
  • Google Analytics: Web analytics and user behavior tracking (see Google's privacy policy)
  • Analytics Platforms: User behavior analytics, session recording, and performance monitoring
  • Marketing Tools: Conversion tracking, attribution, and campaign analytics

All service providers are contractually obligated to protect your data and use it only for specified purposes. Analytics data may be processed in the United States and other countries. We ensure appropriate safeguards are in place.

Data Processing: Analytics data is aggregated and anonymised where possible, but may include personal identifiers such as IP addresses, user IDs, and device identifiers for accurate tracking and analysis.

5.2 Legal Requirements

We may disclose your information if required by law:

  • To comply with legal obligations or court orders
  • To protect our rights, property, or safety
  • To prevent fraud or abuse
  • To respond to government requests

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

6. Data Retention

We retain your personal data only for as long as necessary:

  • Account Data: Retained while your account is active and for 7 years after closure (for tax/legal compliance)
  • Website Content: Retained while your account is active, deleted 30 days after account closure
  • Payment Records: Retained for 7 years as required by UK tax law
  • Support Communications: Retained for 3 years for service improvement
  • Log Data: Retained for 90 days for security and troubleshooting

You can request deletion of your data at any time, subject to legal retention requirements.

7. Your Rights (UK GDPR)

Under UK data protection law, you have the following rights:

  • Right of Access: Request a copy of your personal data we hold
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent where processing is based on consent
  • Rights Related to Automated Decision-Making: Not to be subject to automated decision-making

To exercise these rights, contact us at support@swiftlysite.com. We will respond within one month (or two months for complex requests).

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your data correctly. Visit ico.org.uk for more information.

8. Data Security

We implement appropriate technical and organisational measures to protect your data:

  • Encryption of data in transit (SSL/TLS) and at rest
  • Secure password hashing (bcrypt)
  • Regular security audits and updates
  • Access controls and authentication
  • Secure payment processing through Stripe
  • Regular backups and disaster recovery procedures

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

9. International Data Transfers

Some of our service providers may be located outside the UK/EEA. When we transfer your data internationally, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the ICO
  • Adequacy decisions where applicable
  • Other appropriate safeguards as required by UK GDPR

By using our Service, you consent to the transfer of your data to these service providers, subject to these safeguards.

10. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately and we will delete such information.

11. Cookies and Tracking

We use cookies and similar tracking technologies. For detailed information, please see ourCookie Policy.

12. Marketing Communications

We may send you marketing communications if you have consented or if we have a legitimate interest. You can opt-out at any time by:

  • Clicking the unsubscribe link in any marketing email
  • Updating your preferences in your account settings
  • Contacting us directly

We will always honour your preferences and will not send marketing communications if you have opted out.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on this page
  • Updating the "Last updated" date
  • Sending an email notification (for significant changes)

Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Swiftly Site
Email: support@swiftlysite.com
Website: swiftlysite.com

Data Protection Officer:
If you have concerns about how we handle your data, you can also contact our Data Protection Officer at the same email address.