Privacy Policy

SwiftSMS is operated by Blocify L.L.C., a limited liability company registered in the Republic of Kosovo (business no. 812252295), with its registered office at Rr. Shefqet Shkupi, Prishtina Stars, C/47, Prishtinë, Kosovo. Blocify L.L.C. (“we”, “us”) is the data controller for the personal data described here. For any privacy question or request, contact privacy@swiftsms.net.

Account: your email address and an encrypted password hash. Wallet & billing: your prepaid balance and a record of each transaction (amount, time, method, status). We never store full card numbers. Service use: the orders you create (service, country, the virtual number issued, and any SMS received on it). Technical: limited data needed to run the service securely, such as IP address and device/app version, used for security, fraud prevention and diagnostics.

We don’t require your real phone number, legal name or postal address to use the service. We don’t sell your data, and we don’t share it with advertisers or use it for ad tracking.

To create and secure your account, issue numbers and deliver the SMS you receive, process wallet top-ups, prevent fraud and abuse, provide support, and meet our legal and accounting obligations. Our legal bases (GDPR) are performance of our contract with you, our legitimate interest in a secure service, and compliance with legal obligations.

We share the minimum necessary with vetted providers who process data on our behalf: blocify.io (carrier network that provisions numbers and delivers SMS), IBAS (card payment gateway), the relevant public blockchain networks for crypto top-ups, and our hosting/infrastructure provider. Payment providers handle your card/crypto details directly under their own privacy policies; we only receive a transaction result.

On our website (not the mobile apps) we use Google Analytics (provided by Google) to understand how visitors use SwiftSMS so we can improve it. Analytics is consent-based: it stays disabled until you accept via our cookie banner, and you can decline at any time — we honour your choice using Google Consent Mode. We don’t use analytics for advertising, and ad-related data sharing is kept disabled.

Account data is kept until you delete your account. SMS messages are kept for the life of the order (and, for rentals, the rental period) plus a short grace period, then removed. Transaction records may be retained for up to the period required by accounting and anti-fraud law (typically several years) even after account deletion.

Where data is processed outside your country or the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses with the processors involved.

You can access, export, correct, restrict, or delete your data, object to certain processing, and lodge a complaint with your local data protection authority. You can delete your account and data yourself at any time — in the app under Profile → Delete account, on the web at swiftsms.net/delete-account, or by emailing privacy@swiftsms.net.

SwiftSMS is not directed to children. The service is intended for users aged 18 and over, and we do not knowingly collect data from anyone under 16. If you believe a child has provided us data, contact us and we’ll delete it.

We protect your data with encryption in transit, hashed passwords and access controls. No system is perfectly secure, but we work to keep yours safe. We may update this policy; we’ll change the “last updated” date above and, for material changes, notify you in the app or by email.