Legal

Privacy Policy

Effective Date: May 6, 2026 · Last Updated: May 6, 2026

This Privacy Policy describes how AegisSwift LLC ("AegisSwift", "we", "us") collects, uses, discloses, and protects information when you use our software-as-a-service platform and related websites (the "Service").

The short version: We collect what we need to run the Service. We do not sell your data. We do not use third-party advertising trackers. You own your data and can export or delete it any time.

1.Information We Collect

Information You Provide

Account information: name, email, company name, role, password (hashed).
Billing information: billing address and payment method (processed by Stripe; we do not store full card numbers).
Customer Data: inventory records, orders, customer lists, vendor records, BOMs, lot/serial numbers, route data, and other business data you enter or import.
Communications: messages you send to support, feedback, and survey responses.

Information Collected Automatically

Usage data: pages viewed, features used, timestamps, error logs.
Device/connection data: IP address, browser type, OS, referring URL.
Cookies and local storage: see Section 8 below.

Information from Third-Party Integrations

If you connect a third-party service (QuickBooks Online, shipping carriers, payment processors), we receive data from those services as authorized by you. We use this data only to provide the integration features.

2.How We Use Information

To provide, maintain, and improve the Service;
To process payments and manage subscriptions;
To authenticate users and prevent fraud or abuse;
To respond to support requests and communicate service updates;
To analyze usage patterns in aggregated, de-identified form to improve features;
To comply with legal obligations.

We do not sell your personal information or Customer Data to third parties. We do not use your Customer Data to train AI models.

3.How We Share Information

We share information only in these limited situations:

Recipient	Purpose
Subprocessors	Hosting (AWS), payment processing (Stripe), email delivery (Postmark), customer support (Intercom). Bound by data protection agreements.
Authorized integrations	Only data you explicitly authorize, such as syncing invoices to QuickBooks Online.
Legal compliance	When required by valid legal process. We will notify you unless legally prohibited.
Business transfers	In connection with a merger, acquisition, or sale of assets, with continuity of this Privacy Policy.

4.Data Security

We use industry-standard safeguards including:

TLS 1.2+ encryption in transit;
AES-256 encryption at rest for databases and backups;
Hashed passwords using bcrypt with per-user salts;
Role-based access controls and audit logging for internal access;
Regular vulnerability scanning and third-party penetration testing;
Multi-factor authentication available for all accounts.

No method of transmission over the internet is 100% secure. We work to protect your data but cannot guarantee absolute security.

5.Data Retention

We retain Customer Data for the duration of your subscription. Upon termination, we provide a 30-day window for data export, after which Customer Data is permanently deleted from production systems within 30 days and from backups within 90 days. Account and billing records may be retained longer as required by tax and accounting law.

6.Your Rights

Depending on your jurisdiction, you may have the following rights:

Access: request a copy of personal information we hold about you.
Correction: request correction of inaccurate data.
Deletion: request deletion (subject to legal retention requirements).
Portability: export your data in a machine-readable format (CSV/JSON).
Objection / restriction: object to or restrict certain processing.
Withdraw consent: where processing is based on consent.
Non-discrimination: we will not retaliate against you for exercising these rights.

To exercise any of these rights, contact privacy@aegisswift.com. We will respond within 30 days.

7.California Residents (CCPA / CPRA)

California residents have additional rights including the right to know, the right to delete, the right to correct, and the right to opt out of the "sale" or "sharing" of personal information. AegisSwift does not sell or share personal information as those terms are defined under California law. To submit a verifiable consumer request, email privacy@aegisswift.com.

8.Cookies and Tracking

Session cookies: required for authentication. Expire when you close your browser.
Preference cookies: remember settings (timezone, display preferences). Persist for up to 1 year.
Analytics: we use anonymized server-side analytics. We do not use Google Analytics, Facebook Pixel, or similar third-party trackers.

We do not use advertising cookies or cross-site tracking technologies.

9.Children's Privacy

The Service is not directed to individuals under 18, and we do not knowingly collect personal information from minors. If we learn that we have collected such information, we will delete it promptly.

10.International Data Transfers

The Service is operated from the United States. If you access the Service from outside the US, your information will be transferred to, stored, and processed in the United States. By using the Service, you consent to this transfer.

11.Data Processing Agreement

For customers who require a Data Processing Agreement (DPA), including those subject to GDPR or CCPA, contact privacy@aegisswift.com. We will provide an executed DPA upon request.

12.Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email and by posting the updated policy with a new effective date. Continued use of the Service after the effective date constitutes acceptance.

13.Contact Us

For privacy questions, requests, or complaints:
AegisSwift LLC · Privacy Team
Email: privacy@aegisswift.com