Back to home

Privacy Policy

Last updated: February 2026

SwiftPort (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect information when you use our platform.

1. What We Collect

We collect information you provide directly (name, email, billing details), information generated by your use of the platform (sync configurations, execution logs, support tickets), and standard technical data (IP address, browser type, session data).

We do not store your Salesforce record data. SwiftPort processes records in-memory during a sync and does not persist the values of Salesforce records. We store only metadata: record IDs, sync configurations, execution logs, and error messages.

2. Salesforce Access Tokens

To connect your Salesforce orgs, we store OAuth access tokens and refresh tokens encrypted at rest using AES-256-GCM encryption. These tokens are used solely to perform sync operations you have configured. We never share these tokens with third parties.

3. How We Use Your Information

We use your information to:

  • Provide, operate, and improve the SwiftPort service
  • Execute sync configurations on your behalf
  • Send transactional emails (sync errors, account alerts)
  • Respond to support requests
  • Comply with legal obligations

4. Data Isolation

Each customer's data is isolated using Row Level Security (RLS) on our database. No customer can access another customer's sync configurations, logs, or connected org credentials.

5. Third-Party Services

We use the following third-party services:

  • Supabase — Database and authentication
  • Stripe — Payment processing (we do not store card data)
  • Anthropic Claude — AI-powered features (error explanation, mapping analysis). Only anonymized sync metadata is sent; no Salesforce record values are shared.
  • Vercel / Railway — Hosting infrastructure

6. Data Retention

Sync logs are retained for 90 days. Sync configurations and connected org tokens are retained until you delete them. Account data is retained for 30 days after account deletion to allow recovery, then permanently deleted.

7. Your Rights

You may request to access, correct, or delete your data at any time by contacting us at our contact page. We will respond within 30 days.

8. Security

We use industry-standard security practices including AES-256-GCM encryption for sensitive credentials, TLS for all data in transit, and regular security reviews. No method of transmission over the internet is 100% secure, but we take commercially reasonable steps to protect your data.

9. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by email or by posting a notice in the platform. Your continued use of SwiftPort after changes constitutes acceptance of the updated policy.

10. Contact

For privacy-related questions, contact us via our contact page.