GDPR Notice
Owner: Sweven Inc.
Last Updated: November 28, 2025
In compliance with GDPR (EU) & UK-GDPR
This section applies to visitors, customers, and prospects located in the European Union and the United Kingdom.
1. Legal Basis for Processing
We process personal data based on:
- Consent
- Performance of a contract
- Legitimate interests
- Legal obligations
- Recruitment and employment requirements
2. Your GDPR Rights
EU/UK users may exercise:
- Right of Access
- Right to Rectification
- Right to Erasure ("Right to be forgotten")
- Right to Data Portability
- Right to Restrict Processing
- Right to Object
- Right to Withdraw Consent
- Right to Lodge a Complaint with Supervisory Authorities
Contact your Data Protection Authority:
- EU Users: Contact your national data protection authority
- UK Users: ICO (Information Commissioner's Office)
3. Data Transfers Outside EU/UK
Data may be processed in the U.S. and India. We use:
- Standard Contractual Clauses (SCCs)
- Partner compliance frameworks
- Security and encryption standards
- Restricted access and governance controls
4. Automated Decision-Making
Sweven does not use automated decision-making for:
- Legal effects
- Employment decisions
- Contractual approvals
Any AI-based or automated analysis is reviewed by human staff before action.
5. Data Protection Officer & Contact
For GDPR inquiries, contact: info@sweven.com
📍 Sweven Inc., Sunnyvale, California, USA
6. Data Retention Under GDPR
We retain personal data only for as long as necessary to achieve the purposes outlined in this notice, or as required by applicable law. Users can request deletion at any time, subject to legal retention obligations.
7. Privacy by Design
Sweven incorporates data protection principles into all processing activities from the design phase, ensuring privacy is embedded in all our operations and systems.