Last updated: 11 July 2025
1 Introduction
Surpass IT OÜ (Reg. No 17154428, Narva mnt 7‑634, Kesklinna linnaosa, 10117 Tallinn, Harju maakond, Estonia) (“Swift Essay”, “we”, “us”, “our”) operates the content‑writing marketplace swift‑essay.com (the “Website”). We are committed to processing personal data lawfully, fairly and transparently, in line with the EU General Data Protection Regulation (“GDPR”) and other applicable laws.
By visiting the Website or placing an order you acknowledge that you have read this Privacy Policy (“Policy”) and agree to the practices described below.
2 Data Controller & Contact
| Controller | Surpass IT OÜ |
| Reg. number | 17154428 |
| Address | Narva mnt 7‑634, Kesklinna linnaosa, 10117 Tallinn, Estonia |
| E‑mail | welcome@swift‑essay.com |
3 Information We Collect
| Category | Examples | Source |
|---|---|---|
| Visitor Data | Browser & OS type, IP address, pages visited, time‑stamps, geolocation (city/region) | collected automatically |
| Account Data | Name, e‑mail, hashed password, profile settings | provided by user |
| Order & Payment Data | Order briefs, uploaded files, messages, invoice details, last 4 card digits (full card data is processed only by our payment processor) | user / payment processor |
| Usage & Support Data | Order history, support tickets, preferences | generated in service |
| Marketing Preferences | Newsletter opt‑in/opt‑out, campaign engagement | provided by user |
We do not intentionally collect special‑category data (health, religion, etc.). Please avoid including such information in order briefs or attachments.
4 Cookies & Tracking Technologies
We use cookies and similar tech to:
- run core site functions;
- remember language & UI settings;
- analyse traffic with Google Analytics (IP anonymised);
- deliver marketing e‑mails if you opt in.
Full details and cookie lifetimes are provided in our separate Cookie Policy. You can manage optional cookies via the banner or your browser settings.
5 Purposes & Legal Bases
| Purpose | Legal basis (Art 6 GDPR) |
|---|---|
| Create & manage your account, authenticate log‑in | Contract (Art 6 (1)(b)) |
| Process orders, payments & author payouts | Contract; Legal obligation (accounting) |
| Provide customer support & resolve disputes | Contract; Legitimate interests |
| Detect and prevent fraud, plagiarism, abuse | Legitimate interests |
| Send transactional e‑mails (order status, policy updates) | Legitimate interests |
| Send marketing communications with your consent | Consent (Art 6 (1)(a)) |
| Analyse site usage & improve services | Legitimate interests |
| Comply with tax, AML/KYC and other laws | Legal obligation |
6 Retention Periods
- Accounts & financial records: 6 years after financial year‑end.
- Order files & chat messages: 2 years after order completion (longer if a dispute is open).
- Marketing consents: until you unsubscribe or 2 years after last interaction.
Data are securely deleted or anonymised when no longer required.
7 Your Rights
You may access, rectify, erase, restrict, object to processing, request portability of your data, or withdraw consent at any time.
E‑mail your request to welcome@swift‑essay.com; we will reply within one month.
If you believe your rights are infringed, you may complain to the Estonian Data Protection Inspectorate or another EU supervisory authority.
8 Data Deletion Requests
Send an e‑mail titled “Data Deletion Request” to welcome@swift‑essay.com including:
- the e‑mail linked to your account;
- billing address (if any);
- last four digits of the stored payment card (if applicable).
If you have no account we may be unable to verify identity because visitor logs are not linked to individuals.
We will not discriminate against you for exercising any privacy right.
9 Sharing Your Data
We never sell or rent personal data. We share it only with:
- Payment processors (e.g., card networks, Stripe) for secure transactions;
- Service providers (cloud hosting, e‑mail, analytics) under written data‑processing agreements;
- Professional advisers (legal, tax, audit) bound by confidentiality;
- Public authorities when legally required.
10 International Transfers
If we transfer data outside the EEA/UK, we rely on adequacy decisions or EU Standard Contractual Clauses to ensure equivalent protection. Copies are available upon request.
11 Security Measures
- HTTPS encryption for all traffic
- Hashed & salted passwords
- Role‑based access control for staff
- Regular backups, vulnerability scans & penetration tests
- Infrastructure aligned with ISO / IEC 27001 and PCI‑DSS standards.
You are responsible for safeguarding your password and account credentials. Notify us promptly if you detect unauthorised access.
12 Children
The Services are intended for users 18 +. We do not knowingly process children’s data. Contact us if you believe a minor has provided personal data.
13 Changes to this Policy
We may update this Policy from time to time. Material changes will be announced via banner or e‑mail. The latest version is always available on the Website.
For any questions about privacy, write to welcome@swift‑essay.com.