Privacy
Last updated: April 2026
1. Introduction
Seavium SAS ("Seavium", "we", "us", or "our") is committed to protecting the personal data of users of its platform. This Privacy Policy describes how we collect, use, store, and protect your information in accordance with the EU General Data Protection Regulation ("GDPR") and applicable French law.
By accessing and using the Seavium platform, you acknowledge that you have read and understood this Privacy Policy. As Seavium is a private, invitation-based platform, continued use of the service constitutes your acceptance of the data practices described herein.
2. Data Controller
Seavium SAS
3rd Floor, Jardins Orélys D, 61 Avenue de la Fourragère, 13012 Marseille, France
Contact: sales@seavium.com
3. Personal Data We Collect
We collect only the data strictly necessary to provide and improve our services:
Identity and professional data: first name, last name, professional email address, company name, and job title.
Platform usage data: search history, vessel views, charter requests, interaction metrics, and other data relating to how you use the platform.
Technical data (automatically collected): IP address, device type, browser type, time zone, and operating system.
We do not collect sensitive personal data (e.g., health, ethnic origin, religious beliefs) or direct payment card details. Payment data is processed exclusively by our payment processor, Stripe.
4. Purposes and Legal Bases for Processing
We process your personal data for the following purposes and on the following legal bases under the GDPR:
Performance of a contract: to provide, maintain, and operate the Seavium platform and facilitate connections between charterers, owners, and brokers.
Legitimate interests: to improve our services, prevent misuse, perform aggregate usage analytics, and ensure platform security. Our legitimate interests have been assessed against your rights and do not override them.
Legal obligation: to comply with applicable accounting, tax, and regulatory requirements and to protect our rights in the event of a dispute.
We do not rely on consent as a legal basis for processing, except where expressly required by law (e.g., certain marketing communications).
5. Data Retention
We retain personal data only for as long as necessary for the purposes set out in this policy:
Active accounts: data is retained for the duration of the contractual relationship.
Deleted or inactive accounts: personal data is retained for a maximum of 24 months following account deletion or the last activity, after which it is securely deleted or anonymised.
Legal and accounting obligations: certain data (e.g., invoicing records) may be retained for up to 10 years in accordance with French law.
6. Security and Storage
We implement industry-standard security measures to protect your data:
Encryption in transit (TLS 1.3) and at rest (AES-256).
Access controls, firewalls, and regular security reviews.
Our infrastructure is hosted via Supabase (database) and Clerk (authentication), both operating under appropriate data processing agreements.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority (CNIL) within 72 hours of becoming aware of the breach, in accordance with Article 33 GDPR. Where the breach is likely to result in a high risk, we will also notify affected individuals without undue delay.
7. Data Sharing
We do not sell, rent, or trade your personal data.
We may share data with the following categories of recipients:
Service providers (sub-processors): Stripe (payment processing), Supabase (database hosting), and Clerk (authentication), each bound by strict confidentiality and data processing agreements.
Legal and regulatory authorities: where required by law or to protect our legal rights.
We will provide 30 days’ written notice before engaging any new sub-processor. You may object in writing within 15 days; if a resolution cannot be reached, you may terminate your account without penalty.
8. International Data Transfers
Some of our sub-processors (including Stripe, Supabase, and Clerk) are based outside the European Economic Area (EEA), including in the United States. In such cases, transfers are made on the basis of the European Commission’s Standard Contractual Clauses (SCCs) or another approved transfer mechanism, ensuring an adequate level of protection for your personal data.
9. Cookies and Tracking
We use only strictly necessary cookies required for the secure operation of the platform (e.g., session management and authentication). These cookies are essential to the functioning of the service and do not require your consent.
We do not use third-party analytics or advertising cookies. Any future use of non-essential cookies will be subject to prior notice and an opt-in mechanism.
10. Your Rights Under the GDPR
As a data subject, you have the following rights:
Right of access: obtain a copy of your personal data held by us.
Right to rectification: request correction of inaccurate or incomplete data.
Right to erasure: request deletion of your data, subject to legal retention obligations.
Right to restrict processing: request restriction of processing in certain circumstances.
Right to data portability: receive your data in a structured, machine-readable format (CSV export available on request).
Right to object: object to processing based on legitimate interests.
To exercise any of these rights, please contact us at sales@seavium.com. We will respond within one month.
You also have the right to lodge a complaint with the French data protection authority (CNIL) at any time: www.cnil.fr – 3 Place de Fontenoy, TSA 80715, 75334 Paris Cedex 07, France.
11. Policy Updates
We may update this Privacy Policy from time to time to reflect changes in applicable law, technology, or our services. We will notify you of any significant changes by email or via an in-app notification. Continued use of the platform after such notice constitutes acceptance of the revised policy.
12. Contact
For any questions, concerns, or to exercise your data rights, please contact:
sales@seavium.com
Address: Seavium SAS, 3rd Floor, Jardins Orélys D, 61 Avenue de la Fourragère, 13012 Marseille, France
