G
Swayve
Legal

Privacy Policy

Swayve — operated by Gritdrink Ltd  ·  Last updated: 14 June 2026

This Privacy Policy explains how Gritdrink Ltd, trading as "Swayve" ("we", "us", "our"), collects and uses personal data when you visit our website (the "Site"), contact us, or use our services. Swayve provides an AI-powered service that matches content creators with sellers on TikTok Shop.

We are committed to protecting your personal data and processing it in accordance with the UK GDPR, the EU General Data Protection Regulation (Regulation 2016/679), and the Data Protection Act 2018.

1. Who we are

Data controllerGritdrink Ltd (trading as Swayve)
Company number16651907 (registered in England & Wales)
Registered office128 City Road, London, England, EC1V 2NX

2. Personal data we collect

Depending on how you interact with us, we may collect the following categories of personal data:

  • Enquiry and contact data: Your name, email address, phone number, company/brand name, and the content of messages you send us through our contact form or by email.
  • Seller and client data: Business contact details and account information for sellers and partners who use our services.
  • Creator data: Where we provide our creator-matching service, we process information about content creators, such as their TikTok handle, public profile information, audience and engagement metrics, content category/niche, and contact details, in order to match them with relevant sellers.
  • Marketing data: Your email address and preferences if you subscribe to updates or marketing communications.
  • Technical and usage data: IP address, device and browser type, pages viewed, and how you use the Site, collected through cookies and similar technologies.

We do not intentionally collect special category data (such as health or biometric data) and ask that you do not send it to us.

3. How we collect your data

  • Directly from you — when you fill in a form, email us, or sign up for updates.
  • Automatically — through cookies and similar technologies when you use the Site.
  • From third parties and public sources — for example, publicly available creator profile and engagement information from platforms such as TikTok, used to provide our matching service.

4. How we use your data and our legal bases

We process personal data for the following purposes and rely on the following legal bases under the UK and EU GDPR:

  • To respond to your enquiries and provide our services: legitimate interests, and performance of a contract where you are a client or creator we work with.
  • To operate our creator-matching service: legitimate interests in providing and improving the service, and contract where applicable, balanced against the rights of the individuals concerned.
  • To send marketing communications: your consent, which you can withdraw at any time.
  • To measure and improve our Site (analytics): your consent (via our cookie banner) or our legitimate interests, depending on the cookies used.
  • To keep our records, manage our business, and comply with the law: legitimate interests and compliance with legal obligations.

5. Cookies

Our Site uses cookies and similar technologies to make it work and, where you consent, to measure traffic and support marketing. You can manage non-essential cookies through our cookie banner or your browser settings.

6. Who we share your data with

We do not sell your personal data. We may share it with:

  • Service providers who help us run our business and Site, such as hosting, email, CRM, and analytics providers, under appropriate data protection terms.
  • TikTok Shop and sellers, where necessary to provide our creator-matching service.
  • Professional advisers (such as legal and accounting) and authorities, where required by law.

7. International transfers

We store and process personal data within the UK and the EEA. Where any data is transferred outside the UK/EEA (for example, to a service provider), we ensure an appropriate safeguard is in place, such as an adequacy decision or the UK International Data Transfer Agreement / EU Standard Contractual Clauses.

8. How long we keep your data

We keep personal data only for as long as necessary for the purposes set out above, after which it is securely deleted or anonymised. Enquiry data is typically kept for up to 24 months; client and creator records for the duration of our relationship and a reasonable period afterwards; and data required for legal or accounting reasons for as long as the law requires.

9. Your rights

Under the UK and EU GDPR you have the right to:

  • Access the personal data we hold about you.
  • Have inaccurate data corrected, and incomplete data completed.
  • Have your data erased in certain circumstances.
  • Restrict or object to our processing, including objecting to direct marketing at any time.
  • Data portability, where processing is based on consent or contract.
  • Withdraw consent at any time, where we rely on consent.

To exercise any of these rights, contact us at [email protected]. You also have the right to complain to the UK Information Commissioner's Office (ico.org.uk) or your local EU data protection authority.

10. How we protect your data

We use appropriate technical and organisational measures to protect personal data, including encryption in transit and at rest, multi-factor authentication, least-privilege access controls, and reputable cloud infrastructure. Further detail is available in our internal security and data protection policies.

11. Children

Our Site and services are intended for businesses and individuals aged 18 and over and are not directed at children. We do not knowingly collect personal data from children.

12. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be published on this page with an updated "Last updated" date.

13. Contact us

For any questions about this Privacy Policy or how we handle your personal data, please contact:

Gritdrink Ltd (Swayve)

[email protected]

128 City Road, London, England, EC1V 2NX