top of page

Privacy Policy

We are committed to protecting personal data and respecting user rights. Our Privacy Policy explains what data we collect, how it’s used, how it’s protected, and how users can exercise control.

Effective Date: January 15, 2026

 

Swix AI, LLC ("Swix AI," "we," "our," or "us") is committed to protecting your privacy and handling your information responsibly. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use our websites, platform, applications, and related services (collectively, the "Service").

 

By using the Service, you agree to the practices described in this Privacy Policy.

Cookie Consent

 

We use cookies for essential functionality, analytics, and performance monitoring. By continuing to use the Service, you consent to our use of cookies as described below. You may adjust preferences in your browser settings.

 

1. Information We Collect

We collect the following categories of information:

 

1.1 Account Information
Information provided when creating or managing an account, such as:

  • Name

  • Email address

  • Organization name

  • Role or title

 

Encrypted or hashed authentication credentials and/or authentication tokens

Authentication information is used solely for access control, security, audit logging, and account administration purposes.


1.2 Usage and Technical Data
Information automatically collected when using the Service, including:

  • IP address

  • Device and browser type

  • Date/time of access

  • Log files and diagnostic data

  • Feature usage and interaction data

  • Cookies and analytics data

 

1.3 Customer Content
Content, prompts, files, data, or other materials that you upload, input, or generate within the Service. Customer Content may be processed by AI models to generate outputs.

 

1.4 Payment Information
Billing information, such as payment method, address, and transaction details.
Note: Payment data is processed by secure third-party payment providers; we do not store full payment card details.

 

1.5 Communications
If you contact us, we may collect:

  • Support messages

  • Emails

  • Feedback

  • Survey responses

 

1.6 Marketing Email List
If you subscribe to our email list via our website, we collect:

  • Email address

  • First and Last name (if provided)

  • Subscription date and source

 

1.7 Cookies and Tracking Technologies
We use cookies, web beacons, and similar tools to:

  • Maintain sessions

  • Analyze usage

  • Improve platform performance

  • Prevent spam and abuse

 

2. How We Use Information

We use the information collected for the following purposes:

 

2.1 To Provide and Improve the Service

  • Enable core platform functionality

  • Process AI prompts and generate outputs

  • Maintain and enhance features

  • Analyze aggregated, anonymized, and non-identifiable usage patterns to improve the performance, reliability, and usability of the Services. This analysis does not involve training or fine-tuning foundation AI models and does not identify individual users or Customers.

 

2.2 To Secure the Service

  • Authenticate accounts

  • Monitor for abuse or malicious activity

  • Detect and investigate security incidents

  • Prevent spam and bot activity

 

2.3 To Communicate With You

  • Send product updates, alerts, and notices

  • Provide customer support

  • Respond to inquiries

  • Marketing Communications

  • If you subscribe to our email list:

  • We will send product updates, feature announcements, and AI industry insights

  • You explicitly opted in via email signup on our website

  • You can unsubscribe at any time via the link in each email

  • You will be removed from our list within 10 business days of opt-out

  • We never sell or rent email lists

  • Our emails comply with CAN-SPAM Act requirements

  • Swix complies with applicable marketing and anti-spam laws, including the U.S. CAN-SPAM Act and Canada’s Anti-Spam Legislation (CASL).

 

2.4 To Comply with Legal Requirements

  • Respond to lawful requests

  • Maintain audit logs

  • Meet regulatory obligations

 

3. How AI Models Process Information

Swix AI uses OpenRouter as our AI infrastructure provider to offer choice across multiple AI models from leading providers.

 

3.1 AI Model Selection and Data Processing
You select which third-party AI model processes your data from a curated list of supported providers available within the Swix platform. Swix acts as an orchestration layer, enabling you to route requests to the provider of your choice.

 

Supported Model Providers
Swix currently supports multiple third-party AI model providers, which may include providers such as Anthropic, Google, OpenAI, and xAI. The specific models available from each provider may change over time and are described in product documentation or within the platform interface.

 

How Your Data Flows

  • You select an AI model from the platform interface.

  • Your prompt is transmitted via encrypted connection to Swix’s routing infrastructure.

  • Requests are routed only to the specific provider associated with the model you selected.

  • The selected provider processes the request and returns an output.

  • The output is returned to you through the Swix platform.


Data Retention and Training
When Customer Content is processed through third-party AI model providers via API:

  • Processing is governed by the provider’s applicable API data usage policies.

  • Customer Content is processed solely to generate responses requested by authorized users.

  • Under applicable API terms, Customer Content is generally not used for model training or secondary commercial purposes.

  • Data may be temporarily processed for purposes such as abuse prevention, safety monitoring, or service reliability, in accordance with provider policies.

  • Swix does not permit Customer Content to be used for advertising, profiling, or resale.


Provider Transparency
When you select a model, only the corresponding provider processes your data. The provider name is clearly identified within the platform (for example, “Anthropic Claude” or “OpenAI GPT”), allowing you to make informed decisions about where your data is processed.

 

Provider Privacy Policies
Processing by third-party AI providers is subject to their respective privacy and data usage policies, including but not limited to:


OpenAI: https://platform.openai.com/docs/models/how-we-use-your-data


Anthropic: https://www.anthropic.com/legal/privacy


Google: https://cloud.google.com/ai-platform/prediction/docs/data-usage


xAI: https://x.ai/legal/privacy-policy


Model Availability
Swix may add, remove, or update supported models and providers from time to time to reflect improvements in AI capabilities, changes in provider offerings, or policy updates. Model availability and characteristics are communicated through product documentation or the platform interface.


3.2 No Training on Your Data (Default)
Swix may analyze aggregated, anonymized, and non-identifiable usage metrics (such as feature utilization patterns or system performance telemetry) to improve platform functionality and user experience. Such analysis does not involve training foundation models or creating derivative datasets based on Customer Content.


3.3 AI-Generated Content and Accuracy
AI models may occasionally generate inaccurate or fictional information ("hallucinations").

If AI-generated content inadvertently references or creates personal data:
It is not based on real individuals unless explicitly provided in your prompts
You may request deletion of such outputs by contacting privacy@swix.ai
We are not responsible for how third-party AI models process or generate responses

 

4. Data Protection & Security

We implement industry-standard administrative, technical, and physical safeguards to protect your information, including:

  • Encryption in transit (TLS 1.2+) and at rest (AES-256)

  • Tenant-level data isolation

  • Role-based access controls

  • Secure cloud infrastructure

  • Logging and monitoring of system activity

  • Limited access to Customer Content by authorized personnel only

 

Although we work hard to protect your information, no method of transmission or storage is completely secure.

 

4.1 Data Breach Response
In the event of a data breach affecting personal information, we will:

  • Swix maintains an incident response process and will notify affected Customers as soon as feasible upon becoming aware of a confirmed security incident involving Customer Data, where notification is required by applicable law.

  • Report to relevant authorities as required

  • Provide information about the incident and remedial actions taken

 

You can report security incidents to: security@swix.ai

 

4.2 Data Isolation Architecture
Customer Content is logically segregated by tenant using:

  • Unique workspace identifiers

  • Row-level security policies

  • Isolated storage buckets per organization

  • Namespace-based access controls

 

No customer can access another customer's data, prompts, or outputs.

 

4.3 Account Security
You are responsible for:

  • Maintaining confidential authentication credentials

  • Notifying us immediately of unauthorized access (security@swix.ai)

  • Enabling multi-factor authentication when available

 

We are not liable for unauthorized access resulting from compromised credentials.

 

4.4 Compliance and Certifications
Swix AI maintains:

  • Regular third-party security audits

  • Compliance monitoring for applicable privacy and data protection laws, including GDPR, CCPA/CPRA, Canadian privacy laws (such as PIPEDA), and applicable U.S. state privacy laws.

  • Enterprise customers may request:

  • Custom Data Processing Agreements (DPA)

  • Business Associate Agreements (BAA) for HIPAA compliance (upon availability)

 

5. Sharing of Information

We do not sell your personal data.

​

We may share information only with the following:

 

5.1 Service Providers
Trusted vendors who support our operations, including:
For Platform Users:

  • OpenRouter - AI infrastructure and routing (provides access to Anthropic, Google, OpenAI, and xAI models)

  • Cloud hosting and infrastructure providers

  • Customer support tools

  • Payment processors

  • Logging and analytics tools

 

When You Use AI Features, Data Is Processed By (based on your model selection):

  • Anthropic (if you select Claude models)

  • Google (if you select Gemini models)

  • OpenAI (if you select GPT models)

  • xAI (if you select Grok models)

 

Only the provider of the model you select processes your data.

 

For Email Marketing:

  • Email service provider (for newsletter delivery)

  • Analytics tools (for website tracking)

  • CAPTCHA services (for spam prevention)

 

These partners may access information only as necessary to perform services on our behalf and are contractually obligated to protect your data.

 

We will provide 30 days' notice before adding new critical service providers that process Customer Content.

 

5.2 Legal and Regulatory Authorities
We may disclose information if required by law, subpoena, governmental request, or court order.

 

5.3 Business Transfers
If Swix AI undergoes a merger, acquisition, or asset sale, information may be transferred to the acquiring entity. We will notify you before your information is transferred and becomes subject to a different privacy policy.

 

6. Data Retention

Customer Content is retained only when Customers elect to use Swix-hosted storage features (such as optional knowledge bases). Where Customers connect Swix to external or Customer-controlled data sources, such data is processed transiently and not retained by Swix.

 

We retain information for the following periods:

  • Account Information: Duration of account + 90 days after termination

  • Usage Logs: 12 months

  • Customer Content: Duration of subscription + 30 days (unless earlier deletion requested)

  • Support Communications: 3 years

  • Payment Records: 7 years (tax and compliance requirements)

  • Marketing Email Lists: Until opt-out + 30 days

  • Customer Content (where Swix-hosted storage is used): Duration of subscription + 30 days

 

Upon account deletion, Customer Content is permanently deleted within 30 days, except where retention is required by law or to resolve disputes.

 

7. Your Rights

Depending on your location, you may have rights under privacy laws including GDPR (EU), CCPA/CPRA (California), VCDPA (Virginia), CPA (Colorado), CTDPA (Connecticut), and UCPA (Utah), including the right to:

  • Access your personal information

  • Correct inaccurate data

  • Delete your information

  • Restrict processing

  • Port your data to another provider

  • Object to certain processing

  • Opt out of marketing communications

  • Not be discriminated against for exercising rights

  • To exercise your rights, contact us at: 📧 privacy@swix.ai

 

We may require verification before fulfilling requests and will respond within the timeframes required by applicable law (typically 30-45 days).

 

8. International Data Transfers

If you access the Service from outside the United States, your information may be transferred to and processed in the U.S. or other countries with different privacy laws.

 

We use legally recognized mechanisms for cross-border transfers, such as:

​

  • Standard Contractual Clauses (SCCs)

  • Data Processing Agreements (DPAs)

  • Adequacy decisions (where applicable)

​

Customer Data may be processed in jurisdictions outside of Canada, including the United States. Such processing may be subject to the laws of those jurisdictions. Swix implements appropriate contractual, technical, and organizational safeguards to protect Personal Information processed across borders, consistent with applicable Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA).

 

9. Children's Data

The Services are intended for business and organizational use and are not directed to children. We do not knowingly collect personal data from minors. If we learn that we have collected personal information from a minor, we will delete it promptly.

 

10. Third-Party Links

The Service may contain links to external websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies.

 

11. Data Processing Addendum (DPA)

Where required, Swix will enter into a Data Processing Addendum (DPA) with Customers to support compliance with applicable data protection laws, including GDPR, CCPA, and Canadian privacy laws such as PIPEDA. To request a DPA, contact: 📧 privacy@swix.ai

 

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Effective Date" above

  • Provide notice via email (if you have an account) or prominent notice on our website

 

For material changes affecting how we use Customer Content, we will obtain consent where required by law
Continued use of the Service after changes become effective constitutes acceptance of the updated Policy.

 

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us at:

 

Mailing Address:
Swix AI, LLC
1846 E. Innovation Park, Ste. 500
Oro Valley, AZ 85755
 

bottom of page