GDPR — EU Data Processing

1. Data Controller

Swervx operates as a data controller for user data.

Contact: privacy@swervx.com

2. Legal Basis

We process data under:

• Contract — required to deliver the service you signed up for
• Legitimate interest — security, performance, and fraud prevention
• Legal obligation — where required by applicable law

3. Your Rights (EU Users)

As an EU/EEA user, you have the right to:

• Access — request a copy of your personal data
• Rectification — correct inaccurate or incomplete data
• Erasure — request deletion of your data ("Right to be forgotten")
• Restriction — request that we limit how we process your data
• Data portability — receive your data in a structured, machine-readable format
• Object — object to processing based on legitimate interests

To exercise any of these rights, contact privacy@swervx.com.

4. Data Transfers

Data may be processed outside the EU/EEA. Where this occurs, we ensure appropriate safeguards are in place in accordance with GDPR requirements.

5. Retention

We retain personal data only as long as necessary for the purposes described in our Privacy Policy or as required by law. When data is no longer needed, it is deleted or anonymized.

6. Complaints

If you believe we have not handled your data in accordance with applicable law, you may file a complaint with your local data protection authority (DPA).

7. Automated Decision Making

Swervx may use AI systems (Cortex) to assist with moderation and content decisions. However:

• No solely automated decisions with significant legal impact are made without human oversight
• Human review is available upon request for decisions affecting your account