Swarmhit

Legal

Privacy Policy

Last updated May 1, 2026. We keep this short, plain, and accurate.

Swarmhit SAS (“Swarmhit”, “we”, “us”) operates the platform at swarmhit.com and app.swarmhit.com. This policy explains what personal data we process, why we process it, and the rights you have under GDPR, UK GDPR, and CCPA.

1. Data we collect

We collect three categories of data: account data, customer content, and usage data.

  • Account data. Name, business email, billing details, and authentication tokens for connected LinkedIn, email, and CRM accounts.
  • Customer content. Prospect lists, message templates, AI-generated copy, and conversation history that you or your team upload or generate inside Swarmhit.
  • Usage data. Pages viewed, features used, IP address, browser, and crash reports. We use a privacy-friendly analytics provider that does not set cross-site cookies.

2. Why we process it

  • Provide and operate the Swarmhit service.
  • Send sequences and route replies through your accounts.
  • Bill you and prevent fraud.
  • Improve product reliability and ship new features. We never use customer content to train public AI models.
  • Send essential service emails. Marketing emails only with your opt-in.

3. Legal bases (GDPR)

We process personal data under one of: performance of the contract with you, our legitimate interest in operating a safe and useful service, your consent for non-essential cookies and marketing, or compliance with a legal obligation.

4. Subprocessors

We use a short list of vetted subprocessors to run Swarmhit. The current list is maintained in our Data Processing Agreementand includes our cloud host, email provider, payment processor, error monitoring, and product analytics. We give 30 days’ notice before adding a new subprocessor.

5. Where data is stored

Production data is stored in the European Union (Frankfurt) by default. Enterprise customers can request US residency. All data in transit is encrypted with TLS 1.2 or higher, and data at rest is encrypted with AES-256.

6. Retention

We keep customer content for as long as your workspace is active. When you cancel, we delete it within 30 days unless you ask for earlier removal. Billing records are kept for the period required by applicable tax law.

7. Your rights

You can access, correct, export, or delete your personal data at any time from your workspace settings, or by emailing privacy@swarmhit.com. EU and UK residents have the right to lodge a complaint with their local data protection authority. California residents have the additional rights granted by the CCPA, including the right to opt out of any sale of personal information (we do not sell).

8. Cookies

We use strictly necessary cookies to keep you logged in and a first-party analytics script that records page views without setting tracking cookies. We do not run third-party ad pixels on swarmhit.com.

9. Children

Swarmhit is built for business use and is not directed at anyone under 16. We do not knowingly collect data from children.

10. Changes

Material changes to this policy are announced by email and in-app at least 14 days before they take effect.

11. Contact

Data controller: Swarmhit SAS, Paris, France. Email: privacy@swarmhit.com.

Stop sending cold messages.
Start booking warm meetings.

The teams getting in early are already booking meetings instead of chasing them.

Get 50% off month oneBook a demo