Privacy Policy

Last Updated: April 2026

At SweptLock, we believe that absolute privacy is a fundamental right. This Privacy Policy outlines how we collect, use, protect, and handle your personal information when you use our website (the "Site") and our secure cloud storage services.

The Zero-Knowledge Guarantee

SweptLock operates on a strict zero-knowledge architecture for our Absolute Privacy plan. We cannot read, scan, or access the contents of the encrypted files you store in our vault. Your encryption keys remain on your device, ensuring that your sensitive data is technically inaccessible to SweptLock employees, servers, or any third party.

1. Information We Collect

We only collect the minimum amount of information necessary to provide and improve our services. This includes:

  • Information you provide to us: When you request a demo or fill out a contact form, we collect your name, work email address, company name, and any message you choose to send us.
  • Account Information: If you register for our platform, we collect standard account details (such as email and billing information). As stated above, this never includes your master encryption keys or unencrypted file data.
  • Automatically Collected Information: We may collect standard connection data, such as your IP address, browser type, and interaction with our Site, to maintain security and monitor website performance.

2. How We Use Your Information

We use the collected information exclusively for the following purposes:

  • To respond to your inquiries, schedule demonstrations, and provide customer support.
  • To operate, maintain, and secure our website and cloud infrastructure.
  • To communicate essential updates regarding our platform, security notices, or changes to our policies.

3. Information Sharing and Disclosure

SweptLock does not and will never sell your personal information to third parties. We may share minimal data only under the following circumstances:

  • Service Providers: We use trusted third-party services (such as Web3Forms for contact form submissions or secure hosting providers) strictly to facilitate our operations. These providers are bound by strict confidentiality agreements.
  • Legal Compliance: We may disclose account metadata if required to comply with a valid legal obligation. However, because of our zero-knowledge architecture, we are technically incapable of handing over your decrypted files.

4. Data Security

Security is the foundation of SweptLock. We implement enterprise-grade security measures, including TLS for data in transit and AES-256 for data at rest. While no internet transmission is 100% secure, our cryptographic architecture is designed to mathematically prevent unauthorized access to your core data.

5. Your Data Protection Rights

Depending on your location (e.g., under GDPR or the Israeli Privacy Protection Law), you have the right to:

  • Request access to the personal data we hold about you.
  • Request corrections to any inaccurate or incomplete data.
  • Request the deletion of your personal data ("Right to be Forgotten").

To exercise any of these rights, please contact us using the details below.

6. Changes to This Privacy Policy

We may update our Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on this page and updating the "Last Updated" date.

7. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please reach out to our security and compliance team at:

Email: [email protected]