Privacy Policy

1. Introduction

Seavium SAS (“Seavium”, “we”, “us”, or “our”) respects your privacy and is committed to protecting the personal data you provide when using our platform. This Privacy Policy explains how we collect, use, store, and safeguard your information in compliance with applicable data protection laws, including the EU General Data Protection Regulation (“GDPR”).

2. Data Controller

Seavium SAS
3rd Floor, Jardins Orélys D, 61 Avenue de la Fourragère, 13012 Marseille, France
Contact: Adrien Barrau, Founder – sales@seavium.com

3. Personal Data We Collect

We collect only the data necessary to provide and improve our services. This includes:

  • Basic information: Name, professional email address, company name and job title.

  • Platform usage data: Search history, vessel views, bookings, interaction metrics, and other data relating to how you use the platform.

  • Technical data (automatically collected via usage): IP address, device information, browser type, time zone settings, operating system.

Seavium does not collect sensitive personal data (e.g., health, ethnic origin, religious beliefs) or any direct payment card details. Payment data is handled solely by our payment processor (Stripe).

4. Purposes and Legal Basis for Processing

We process your personal data only for legitimate purposes, including to:

  1. Provide, maintain and improve the Seavium platform and our services.

  2. Facilitate connections between Charterers, Owners, and Brokers.

  3. Perform analytics, such as aggregate statistics about usage trends (without identifying individuals).

  4. Communicate service updates, transactional messages, and customer support.

  5. Comply with legal obligations (e.g., accounting, tax requirements) or protect our rights in the event of disputes.

Our legal bases under GDPR include performance of a contract, legitimate interests (e.g., improving our services and preventing misuse), and compliance with legal obligations. Where required by law, we obtain your consent.

5. Security & Storage

  • Encryption: All personal data is encrypted in transit (TLS 1.3) and at rest (AES‑256).

  • Security measures: We employ industry‑standard security controls, including access restrictions, firewalls, and regular penetration testing.

  • Breach notification: If a data breach occurs, we will notify you within 72 hours, as required by lawcallidusai.com.

  • Regular audits: We periodically review and update our infrastructure to mitigate vulnerabilities. While no system is 100 % secure, we continuously work to maintain the highest security standards.

6. Data Sharing

  • No sale of data: We do not sell or trade your personal information for marketing or commercial gain.

  • Service providers: We may share data with trusted partners under strict confidentiality agreements for the sole purpose of delivering the service (e.g., Stripe for payment processing, Supabase for hosting, Clerk for authentication).

  • Legal and regulatory disclosures: We may disclose personal data if required by law or if we believe in good faith that disclosure is necessary to protect our rights, enforce our Terms & Conditions, or comply with a judicial proceeding.

  • Sub‑processor transparency: We maintain a list of sub‑processors and will provide 30 days’ written notice before engaging any new sub‑processor. You may object in writing within 15 days; if you do, we will either refrain from engaging that sub‑processor or allow you to terminate your account without penaltycallidusai.com.

7. Your Rights Under the GDPR

As a data subject, you have the following rights:

  • Right of access: Obtain a copy of your personal data held by us.

  • Right to rectification: Request correction of any inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”): Ask us to delete your data, subject to legal or contractual retention obligations.

  • Right to restrict processing: Request restriction of processing under certain circumstances.

  • Right to data portability: Receive your data in a structured, machine‑readable format.

  • Right to object: Object to processing based on legitimate interests or direct marketing.

  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at sales@seavium.com. We will respond within one month (or as otherwise permitted under applicable law).

8. Data Retention

We retain personal data only for as long as necessary to:

  • Deliver the services you request.

  • Comply with legal, tax, or accounting obligations.

  • Resolve disputes or enforce our agreements.
    Data no longer required for these purposes will be securely deleted or anonymized.

9. Cookies & Tracking

We use only strictly necessary cookies to operate our platform (e.g., to maintain session integrity).
We do not deploy third‑party analytics or tracking cookies without your explicit consent. Any future use of analytics cookies will be subject to clear notice and opt‑in mechanisms.

10. International Transfers

As some of our service providers are located outside the European Economic Area (“EEA”), your data may be transferred internationally. In such cases, we rely on appropriate safeguards such as the EU Standard Contractual Clauses or other mechanisms authorized by the European Commission to ensure adequate protection of your information.

11. Policy Updates

We may update this policy from time to time to reflect changes in law, technology, or our services.
We will provide notice of any significant changes via email or in‑app notifications. Continued use of the platform after such notice constitutes your acceptance of the revised policy.

12. Contact Us

For any questions, concerns, or to exercise your data rights, please contact:
Adrien Barrau, Founder
📧 sales@seavium.com

13. Consent

By creating an account and using Seavium, you confirm that you have read, understood, and consent to the collection and use of your personal data as described in this Privacy Policy.