Privacy Policy

Last Updated: March 20, 2026
Effective Date: Immediately
Company: Sendarix (“we”, “us”, “our”)
Website: https://www.sendarix.com
Client Dashboard: https://app.sendarix.com
Privacy contact: privacy@sendarix.com

This Policy describes how we handle personal data in connection with our website and email infrastructure services. It is not legal advice.

1. Introduction

This Privacy Policy explains how Sendarix collects, uses, stores, and protects personal data when you visit our Website, use our email delivery infrastructure (SMTP/API), or manage your account through the Client Dashboard (<strong>app.sendarix.com</strong>).

By using Sendarix, you acknowledge the practices described here. Our Terms of Service and, where applicable, our DPA apply alongside this Policy.

2. Roles (controller vs processor)

2.1 For account registration, billing, support tickets you open with us, and our own marketing to you (if any), we generally act as a controller of personal data.

2.2 For personal data contained in email traffic and recipient lists that you submit solely for us to transmit or process on your behalf, we generally act as a processor under the DPA; you determine why and how that data is used toward your recipients.

<strong>2.3</strong> If you are an end recipient of email sent through our platform, the sender (our customer) is usually responsible for explaining their use of your data; we process such data only as needed to deliver messages and operate the Service.

3. Information we collect

3.1 Account information

Collected during signup or use of the Client Dashboard (<strong>app.sendarix.com</strong>):

  • Name, email address
  • Billing and invoicing details (handled with payment processors)
  • IP address and approximate location derived from IP
  • Company name (optional)
  • Login timestamps and security events

3.2 Payment information

Payments and invoices are processed through the Client Dashboard at <strong>app.sendarix.com</strong>. Payment processors (for example Stripe, PayPal, or others we enable) handle card and wallet data; we do not store full payment card numbers.

3.3 Email sending data

When you send email using SMTP or API through the Service, we may process:

  • Sender and recipient email addresses
  • Subject lines and message metadata
  • Delivery, bounce, and complaint events
  • IP addresses used to submit mail
  • Message size and technical headers
    We do not read, scan, or sell message content for human review or marketing purposes. Transient technical handling is required to route and deliver mail.

Limited automated signals (metadata, size, reputation, abuse heuristics) may be used only to deliver mail, secure the platform, and enforce our Acceptable Use Policy (AUP) — not for advertising profiling unrelated to providing the Service.

3.4 Technical &amp; log data

We automatically collect browser or client information, device type, operating system, IP addresses, request metadata, API and SMTP logs, authentication attempts, security logs, and abuse-prevention signals. For the public website (www.sendarix.com), our Cookie Policy describes cookies and similar technologies; technical and security logs may be associated with those signals as described there.

3.5 Cookies &amp; similar technologies

We use cookies and similar technologies on the Client Dashboard (app.sendarix.com) for session authentication, functionality, and fraud prevention. On the public website (www.sendarix.com), we use strictly necessary technologies, security protections, and consent storage as described in our Cookie Policy; optional analytics or marketing technologies are not activated unless you consent where required by law. You may disable cookies in your browser; some features may not work.

4. How we use information

4.1 Provide the Service

  • Email transmission, analytics, webhooks, suppression lists
  • Authentication, rate limiting, and abuse prevention
  • Customer support and account administration

4.2 Security &amp; integrity

Detecting fraud, spam, and attacks; protecting infrastructure; enforcing the AUP and Terms.

4.3 Billing &amp; compliance

Invoicing, tax determination where applicable, record-keeping, and responding to lawful requests.

4.4 Communications

We may send transactional notices (security, billing, policy updates). Where law requires consent for marketing email, we will obtain it and you may opt out as described in those messages.

5. Legal bases (EEA/UK reference)

Where GDPR or UK GDPR applies, we rely on one or more of: contract (delivering the Service), legitimate interests (security, analytics, product improvement balanced against your rights), legal obligation, and consent where required (for example certain cookies or marketing).

6. Retention

  • Account data — while the account is active and a reasonable period afterward for legal and security purposes
  • SMTP/API logs — typically 30–90 days unless a longer period is needed for abuse investigations or law
  • Bounce and complaint data — up to 6 months where needed for deliverability and compliance
  • Billing records — as required by law (often 5–10 years depending on jurisdiction)
  • Support tickets — for a period after resolution as needed for quality and legal defense

Details may also appear in the DPA for processing we perform on your behalf.

7. Sharing &amp; sub-processors

We share data with service providers who help us run the Service (hosting, DNS, payments, email transport, abuse tooling, analytics). They are bound by contractual confidentiality and data protection terms. A list of sub-processors or categories is available on request and summarized in the DPA.

We do not sell personal information as “sale” is defined under U.S. state privacy laws, and we do not rent your recipient lists.

We may disclose information if required by law, court order, or to protect rights, safety, and integrity of the Service.

8. International transfers

Data may be processed in countries other than your own. Where we transfer personal data from the EEA, UK, or Switzerland, we use appropriate safeguards such as Standard Contractual Clauses, the UK International Data Transfer Addendum or UK IDTA where relevant, or other mechanisms approved under applicable law.

9. Security

We implement technical and organizational measures appropriate to the risk, including encryption in transit, access controls, monitoring, and segmentation. No method of transmission or storage is completely secure.

10. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, object, or port personal data, and to withdraw consent where processing is consent-based. To exercise rights as a Sendarix account holder, contact privacy@sendarix.com. We may verify your identity before responding.

EEA/UK: You may lodge a complaint with your local supervisory authority; we ask that you contact us first so we can try to resolve the issue.

11. California &amp; U.S. state privacy rights

If you are a California or other U.S. state resident with rights under applicable privacy laws, you may request access to or deletion of personal information we hold about you in our role as a business, and you may have the right to opt out of certain types of sharing (we do not sell covered personal information for money). We will not discriminate against you for exercising these rights. Submit requests to privacy@sendarix.com; we may verify your request as permitted by law.

If you are a recipient of email sent by our customer, that customer may be responsible for honoring your rights regarding the campaign data they control; we will assist our customers as required by our agreements and law.

12. Automated processing

We do not use automated decision-making that produces legal or similarly significant effects solely by automated means about account holders. We may use automated systems for security, spam detection, and deliverability scoring.

13. Children

The Service is not directed to children under 18. We do not knowingly collect personal information from children.

14. Third-party links

Our Website may link to third-party sites. We are not responsible for their practices.

15. Changes

We may update this Policy by posting a new version on <strong>www.sendarix.com</strong> or notifying you through the Dashboard. Continued use after the effective date constitutes acceptance where allowed by law.

16. Contact

Privacy: privacy@sendarix.com
Legal: legal@sendarix.com

Questions about privacy or data handling?

Reach our team—we aim to respond within one business day.

Email privacy@sendarix.comContact form

Send

API Docs
Email API
SMTP Relay
Transactional Email
Enterprise

Platform

Deliverability
Email Warmup
Email Analytics
Webhooks
Routing

Company

Pricing
Why Sendarix
Contact
Security
Blog

Legal

Terms
Privacy
Cookies
AUP
DPA

Sendarix is a reliable email infrastructure platform—built for teams that demand control, visibility, and inbox placement at any volume.

© 2026 Sendarix. All rights reserved.