url: https://swiftask.ai/legal/privacy-policy
dateModified: 2026-04-13T19:45:48Z
headline: Privacy Policy | Swiftask - Data Protection & GDPR Compliance
description: Learn how Swiftask protects your data. Transparent privacy policy covering AI processing, GDPR compliance, and data security. Your privacy matters
text: Privacy PolicySWIFTASK TECHNOLOGY SAS places major importance on protecting your data. This policy details how we process personal data as a Data Controller (for our customers) and as a data processor (for data hosted on the SaaS).1. Data controller and DPOSWIFTASK TECHNOLOGY SAS, 9 RUE DU PETIT CHATELIER, 44300 NANTES, France. Data Protection Officer (DPO): Stanislas Randriamilasoa (privacy@swiftask.ai).2. Data collectedAccount & billing data: name, professional email, payment information (Stripe).SaaS & AI Data: "Prompts", documents, and histories submitted to the platform.Data from "Skills" (Connectors): When you equip your AI Agents with "Skills" to interact with your own software (e.g., CRM, ERP, internal databases), Swiftask temporarily processes the data extracted/sent to execute your Prompt. To ensure connection with some of these tools, data may transit securely through our technical orchestration subcontractor (Pipedream).Marketing Data: Browsing information, B2B prospecting data (Lusha, Linked Helper).3. Our sub-processorsTo provide quality service, we use leading technical providers:Infrastructure: Scaleway (France/EU), AWS Amplify (EU).Payment, Sales & CRM: Stripe, Odoo, Calendly.Marketing & Support: Brevo, Lemlist, Featurebase, Prismic.AI Model Providers (Enterprise API): OpenAI, Anthropic, Mistral AI, Google, Perplexity, xAI, AI21 Labs, ElevenLabs, AssemblyAI.AI Orchestration & Connectors (Skills): AWS Bedrock, Replicate, Pipedream (used as orchestration infrastructure to operate some of our connectors to your third-party tools).Note regarding "Skills": The final tools to which you connect your AI agents (e.g., your own CRM) are not Swiftask subcontractors. They are services you control. However, the orchestration service (Pipedream) used by Swiftask to establish this connection is indeed our subcontractor, subject to our strict security and confidentiality obligations.4. International transfersSome subcontractors host data outside the EU (e.g., United States). These transfers are governed by the Data Privacy Framework (DPF) or by standard contractual clauses (SCC).5. Retention periodSaaS accounts: retained for the duration of the contract, then deleted 3 years after inactivity.Billing data: 10 years (legal obligation).Prompts and workspace: Retained until manual deletion by the User.6. Your rights (GDPR)You have the right to access, rectify, erase, object and data portability by contacting: privacy@swiftask.ai.
image: