Summary: Sendburg collects data to provide B2B contact intelligence services. We collect account data you provide, usage analytics, and maintain a database of publicly sourced professional contacts. We are GDPR compliant. You can exercise your rights at privacy@send-burg.com.
1. Who We Are
Sendburg Technologies Pvt Ltd ("Sendburg", "we", "our", "us") operates the B2B contact intelligence platform available at send-burg.com and app.send-burg.com.
Data Controller: Sendburg Technologies Pvt Ltd, Bengaluru, Karnataka, India.
For privacy inquiries: privacy@send-burg.com
2. Data We Collect
We collect two categories of data:
2a. Platform User Data (you, as a customer)
- Name and work email address (account registration)
- Company name and role
- Payment information (processed by PayPal / Cashfree — we do not store card details)
- Usage data: searches performed, contacts viewed, exports made
- Technical data: IP address, browser type, session data, device information
- Communications with our support team
2b. B2B Contact Database
Our core product is a database of professional business contact information. This data includes:
- Full name and professional title
- Work email address
- Direct phone number (where available)
- Employer company and department
- Professional location (city, country)
- LinkedIn profile URL (where public)
Important: All contact database entries are sourced from publicly available professional sources (LinkedIn, company websites, professional directories). This data relates to individuals in their professional capacity only. We do not process consumer data, patient data, or any sensitive personal data categories.
3. How We Use Your Data
| Purpose | Data used |
|---|---|
| Provide the platform and services | Account data, usage data |
| Process payments | Billing data (via PayPal / Cashfree) |
| Improve platform features | Anonymised usage analytics |
| Send transactional emails | Email address |
| Respond to support requests | Name, email, communications |
| Prevent fraud and abuse | IP address, usage patterns |
| Legal compliance | As required by applicable law |
We never sell your personal data. We never use your data for advertising purposes outside the platform.
4. Legal Basis for Processing (GDPR)
Under GDPR, we rely on the following legal bases:
- Contract (Article 6(1)(b)): Processing necessary to provide the service you've signed up for.
- Legitimate interest (Article 6(1)(f)): Service improvement, fraud prevention, security. Our B2B contact database processes professional contact information under legitimate interest for B2B marketing facilitation.
- Legal obligation (Article 6(1)(c)): Where processing is required by law (e.g., tax records).
- Consent (Article 6(1)(a)): For optional marketing emails. You can withdraw consent at any time.
5. Data Sharing & Sub-processors
We share data only with sub-processors necessary to deliver the service:
| Sub-processor | Purpose | Location |
|---|---|---|
| Oracle Cloud Infrastructure | Cloud hosting & object storage | USA / Global |
| Amazon Web Services (SES) | Transactional email delivery | USA |
| Google (Gemini AI) | AI account briefing synthesis | USA |
| OpenAI | AI intelligence processing | USA |
| PayPal | Payment processing (international) | USA |
| Cashfree | Payment processing (India) | India |
We do not sell or rent your data to any third party. We do not share data with law enforcement unless legally compelled.
6. Data Retention
- Account data is retained for the duration of your subscription plus 90 days after account closure.
- Payment records are retained for 7 years as required by tax law.
- Usage logs are retained for 12 months.
- Support communications are retained for 3 years.
- B2B contact database records are re-verified every 90 days. Unverifiable records are deleted.
7. Your Rights
Under GDPR and applicable privacy laws, you have the following rights:
- Right of access: Request a copy of personal data we hold about you.
- Right to rectification: Request correction of inaccurate personal data.
- Right to erasure: Request deletion of your personal data ('right to be forgotten').
- Right to restriction: Request we limit how we use your data.
- Right to portability: Receive your data in a machine-readable format.
- Right to object: Object to processing based on legitimate interest.
- Right to withdraw consent: Withdraw consent for optional processing at any time.
To exercise any right, email privacy@send-burg.com. We will respond within 30 days.
If you believe we have violated your privacy rights, you have the right to lodge a complaint with your national data protection authority (for EU residents: your local DPA; for UK residents: the ICO).
9. International Transfers
Sendburg is incorporated in India and processes data on infrastructure in the United States. When we transfer personal data from the EEA or UK to the USA, we rely on:
- Standard Contractual Clauses (SCCs) approved by the European Commission.
- Sub-processor agreements that include appropriate transfer safeguards.
A copy of our SCCs is available on request at privacy@send-burg.com.
10. Children's Privacy
Sendburg is a B2B platform intended exclusively for professional use by individuals aged 18 and over. We do not knowingly collect data from anyone under 18. If we become aware that a minor has provided personal data, we will delete it immediately.
11. Changes to This Policy
We may update this policy from time to time. When we make material changes, we will notify registered users by email and update the "Last updated" date above. Continued use of the platform after the effective date constitutes acceptance of the revised policy.
12. Contact & DPO
For any privacy-related enquiries, data subject rights requests, or to request our Data Processing Agreement (DPA):
Sendburg Technologies Pvt Ltd
Bengaluru, Karnataka, India
Privacy: privacy@send-burg.com
Response time: within 30 days for data subject requests · within 48 hours for general enquiries