Senddio Ltd ("Senddio", "we", "us") operates the messaging infrastructure platform at senddio.com. This Privacy Policy explains what information we collect, how we use it, and the choices available to you.
1. Information we collect
Account information
When you create an account we collect your name, email address, and a hashed copy of your password (argon2id — your plaintext password is never stored). If you sign in via Google OAuth we receive your name, email, and Google profile ID.
Organisation data
We store the name, plan, billing details (held by Stripe — see below), and configuration of each organisation you create or join. Domain records and DNS verification tokens you add are also stored.
Message data
Every message sent through the Senddio API creates a log row containing: channel, status, recipient address (hashed for PII reduction), subject or preview, timestamp, and delivery events (opened, clicked, bounced). Full message content is stored only for the duration specified in your plan's log-retention window (7 days FREE → 90 days PRO), then permanently deleted.
Usage and billing
We record daily send counts per organisation for billing and rate-limit enforcement. Card details are processed and stored by Stripe, Inc. — we hold only a Stripe customer ID, subscription ID, and your current plan. We never see or store raw card numbers.
API keys
API keys are stored as SHA-256 hashes — the plaintext key is shown exactly once at creation and is never recoverable. We log which key was used for each request for audit purposes.
Logs and diagnostics
Our servers collect standard web-server logs (IP address, timestamp, HTTP method, path, status code, user-agent). These are retained for 30 days for security and debugging, then deleted.
2. How we use your information
- Provide, maintain, and improve the platform
- Process payments and enforce plan limits
- Send transactional emails (verification, billing alerts, team invitations)
- Detect abuse, spam, and unauthorised access
- Respond to support requests
- Comply with legal obligations
We do not sell your personal data to third parties. We do not use message content for advertising.
3. Legal basis (GDPR)
For users in the European Economic Area we process personal data under the following legal bases:
- Contract performance — to provide the service you signed up for
- Legitimate interests — security, fraud prevention, product analytics
- Legal obligation — tax records, regulatory requirements
- Consent — marketing emails (you can opt out at any time)
4. Data sharing
We share data only with:
- Stripe — payment processing (data controller in their own right)
- Email delivery infrastructure — operated by Senddio on dedicated servers
- Anthropic — AI features (spam scoring, log analysis); only anonymised message metadata is sent, never full content
- Sentry — error reporting; stack traces may include request metadata
All sub-processors are GDPR-compliant and operate under Data Processing Agreements.
5. Data retention
| Data type | Retention |
|---|---|
| Message logs (content) | Plan log window (7 – 90 days), then deleted |
| Message metadata | 2 years for billing disputes, then deleted |
| Account data | Until account deleted + 30-day grace period |
| Billing records | 7 years (tax law) |
| Server access logs | 30 days |
| Audit events | Plan audit window (none FREE, 30 days STARTER, 90 days PRO) |
6. Your rights
You may at any time:
- Access a copy of all personal data we hold about you
- Correct inaccurate information from your account settings
- Request deletion of your account (Settings → Danger zone → Delete workspace)
- Object to or restrict processing for legitimate-interest purposes
- Port your data (message logs in CSV, account data in JSON)
To exercise any of these rights email privacy@senddio.com. We will respond within 30 days. If you are unsatisfied with our response you may lodge a complaint with your national data protection authority.
7. Cookies
We use only strictly necessary cookies (session authentication). No advertising or tracking cookies. See our Cookie policy for a full list.
8. Security
All data is transmitted over TLS 1.3. Databases are encrypted at rest (AES-256). Channel credentials (Twilio tokens, FCM service accounts, Slack secrets) are encrypted at the application layer with per-organisation key wrapping before database storage. Penetration testing is conducted annually. See our Security page for details.
9. Children
Senddio is not directed at anyone under 16. If you believe a child has created an account contact privacy@senddio.com and we will delete it promptly.
10. Changes to this policy
We may update this policy as the product evolves. When we make material changes we will email the account owner at least 14 days before they take effect. The "Last updated" date above always reflects the current version.
11. Contact
Senddio Ltd
Data Controller
privacy@senddio.com