SwiftSign - eSignature for Google Workspace

1. Introduction

SwiftSign ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our electronic signature service ("Service").

By using SwiftSign, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

Personal Information

We collect the following personal information:

Account Information: Email address, name, password (encrypted)
Billing Information: Payment card details (processed securely by our payment processor, not stored by us)
Profile Information: Company name, job title (optional)
Google Workspace Information: When you connect Google Workspace, we access your Google account email and basic profile information

Document and Signature Data

We collect and store:

Documents: PDFs and files you upload for signing
Signatures: Electronic signature data, including typed, drawn, or uploaded signatures
Signature Metadata: IP address, timestamp, device information, and email addresses of signers
Audit Trails: Complete history of document actions (sent, viewed, signed, completed)

Usage Information

We automatically collect:

Log Data: IP address, browser type, operating system, pages visited, time spent
Device Information: Device type, unique device identifiers
Cookies: Session cookies, analytics cookies, preference cookies

Google Workspace Data

When you integrate SwiftSign with Google Workspace, we access:

Google Drive: Files you choose to upload for signing
Gmail: Email address for sending signature requests (we do not read your emails)
Google Account: Basic profile information (name, email, profile picture)

We only access Google Workspace data that is necessary to provide our Service. We do not access or store any Google Workspace data beyond what is required for document signing functionality.

3. How We Use Your Information

We use your information to:

Provide the Service: Create accounts, process documents, facilitate electronic signatures
Process Payments: Bill your subscription and process transactions
Communicate: Send service updates, security alerts, and support messages
Improve the Service: Analyze usage patterns, fix bugs, develop new features
Legal Compliance: Maintain audit trails, comply with legal requirements
Security: Detect fraud, prevent abuse, protect against security threats
Marketing: Send promotional emails (you can opt out at any time)

4. How We Share Your Information

We do not sell your personal information. We share information only in these circumstances:

Service Providers

We share data with trusted third-party service providers who help us operate our Service:

Cloud Hosting: Vercel (hosting), Supabase (database and storage)
Authentication: Clerk (user authentication and management)
Payment Processing: Stripe (payment processing - they handle your card information)
Email Service: For sending transactional emails and signature requests

Document Recipients

When you send a document for signature, we share that document and related information with the recipients you specify.

Legal Requirements

We may disclose your information if required by law, court order, or government request, or to:

Comply with legal obligations
Protect our rights and property
Prevent fraud or security issues
Protect the safety of our users

Business Transfers

If SwiftSign is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

5. Data Storage and Security

Where We Store Data

Your data is stored securely on cloud servers located in the United States. We use industry-standard security measures including:

Encryption in transit (TLS/SSL)
Encryption at rest
Regular security audits
Access controls and authentication
Secure backup systems

Data Retention

We retain your information:

Account Data: For as long as your account is active
Signed Documents: For 7 years after signing (for legal compliance)
Audit Trails: For 7 years (required for legal validity of signatures)
Deleted Accounts: We delete most data within 30 days, but retain audit trails for legal compliance

6. Your Rights and Choices

You have the following rights regarding your personal information:

Access and Download

You can access, review, and download your account information and documents at any time through your account dashboard.

Correction

You can update your account information at any time through your account settings.

Deletion

You can request deletion of your account and personal information by contacting us at support@swiftsignapp.com. Note that we must retain certain information (signed documents and audit trails) for legal compliance.

Marketing Opt-Out

You can opt out of marketing emails by clicking the "unsubscribe" link in any marketing email or updating your preferences in account settings.

Cookies

You can control cookies through your browser settings. Note that disabling cookies may affect Service functionality.

GDPR Rights (EEA Residents)

If you are in the European Economic Area, you have additional rights under GDPR:

Right to access your personal data
Right to rectification of inaccurate data
Right to erasure ("right to be forgotten")
Right to restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent

7. Cookies and Tracking

We use cookies and similar tracking technologies:

Essential Cookies: Required for Service functionality (login, session management)
Analytics Cookies: Help us understand how you use the Service
Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies.

8. Third-Party Services

Our Service integrates with Google Workspace. Your use of Google Workspace is governed by Google's Privacy Policy and Terms of Service, which can be found at:

Google Privacy Policy: https://policies.google.com/privacy
Google Terms of Service: https://policies.google.com/terms

We are not responsible for the privacy practices of Google or other third-party services.

9. Children's Privacy

SwiftSign is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children under 18. If we discover that we have collected information from a child under 18, we will delete that information immediately. If you believe we have collected information from a child, please contact us at support@swiftsignapp.com.

10. International Data Transfers

SwiftSign is based in the United States. If you access our Service from outside the United States, your information will be transferred to, stored, and processed in the United States.

By using SwiftSign, you consent to the transfer of your information to the United States and other countries where our service providers operate. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the new Privacy Policy on this page
Updating the "Last Updated" date
Sending an email notification for significant changes

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions about this Privacy Policy or how we handle your information, please contact us:

Email: support@swiftsignapp.com

Privacy Requests: privacy@swiftsignapp.com

We will respond to privacy-related requests within 30 days.

13. Data Protection Officer

For GDPR-related inquiries or to exercise your rights under GDPR, you can contact our Data Protection Officer at privacy@swiftsignapp.com. You also have the right to lodge a complaint with a supervisory authority in your jurisdiction.