Privacy Policy
Last updated: January 28, 2026
Our Privacy Commitment: Sift is built on Swiss precision and privacy principles. We collect only what's necessary, host everything in Switzerland, and never use your data for AI training or third-party tracking.
1. Controller
The controller responsible for data processing is:
InVisible GmbH
Schweighofstrasse 194
8045 Zürich, Switzerland
Email: hello@getsift.ch
2. What Data We Collect
2.1 Waitlist Signup (Pre-Launch)
When you join the waitlist, we collect:
- Email address: To notify you when Sift launches
- Submission timestamp: To manage launch rollout
Legal basis: Your consent (GDPR Art. 6(1)(a))
2.2 Website Usage
We practice what we preach: Zero tracking.
- No cookies for tracking or analytics
- No third-party analytics (no Google Analytics, no tracking pixels)
- No IP logging beyond standard web server logs (retained 7 days for security)
Technical logs only: Our hosting provider (Netlify) maintains standard web server logs for 7 days for security and technical purposes. These logs contain IP addresses, timestamps, and requested URLs. We do not access these logs except for security incident investigation.
2.3 Future Product Data (Post-Launch)
When Sift launches, we will collect:
- Account data: Email, name, password (hashed)
- RSS feed URLs: Your subscribed feeds (never shared)
- Usage data: Articles analyzed, preferences, digest schedules
Data location: All data stored in Switzerland (ISO 27001 certified hosting)
AI training: We never use your data to train AI models. Your reading habits remain private.
3. How We Use Your Data
Waitlist Email
- Send launch notification when Sift is available
- Occasional pre-launch updates (max 1-2 emails)
- No marketing to third parties, ever
Future Product
- Provide RSS feed analysis and filtering
- Generate personalized daily digests
- Improve algorithm accuracy (anonymized, aggregated only)
4. Data Sharing
We share data only when absolutely necessary:
Service Providers
- Netlify (Hosting): Website hosting, form processing - US-based with EU GDPR compliance
- Future: Swiss hosting provider: When product launches, all data moves to Swiss infrastructure
- Future: Email service: Transactional emails only (e.g., password reset)
LLM Providers: When using Sift, your RSS article content is sent to AI providers (Claude, Gemini) for analysis. We use providers with strong privacy policies. Your content is not used for training.
Legal Requirements
We may disclose data if required by Swiss law or to:
- Comply with legal obligations
- Protect rights, property, or safety
- Investigate security incidents
5. Data Retention
- Waitlist emails: Until launch + 30 days, or until you unsubscribe
- Web server logs: 7 days
- Future product data: As long as your account is active
- After account deletion: 30 days (backup retention), then permanently deleted
6. Your Rights (GDPR)
You have the right to:
- Access: Request a copy of your data
- Rectification: Correct inaccurate data
- Erasure: Delete your data ("right to be forgotten")
- Portability: Receive your data in machine-readable format
- Withdraw consent: Unsubscribe from waitlist anytime
- Object: Object to data processing
- Complain: Lodge complaint with Swiss FDPIC or EU data protection authority
To exercise your rights, email: hello@getsift.ch
7. Security
We implement industry-standard security measures:
- HTTPS encryption for all connections
- Passwords hashed with bcrypt (never stored in plaintext)
- Regular security audits
- Swiss-hosted infrastructure (when product launches)
- ISO 27001 certified hosting providers
8. International Data Transfers
Current (pre-launch): Netlify (US-based) processes form submissions. Netlify is EU-US Data Privacy Framework certified and GDPR compliant.
Future (post-launch): All data hosted in Switzerland. No international transfers except for LLM API calls (Claude, Gemini), which process content transiently without storage.
9. Children's Privacy
Sift is not intended for users under 16. We do not knowingly collect data from children. If you believe a child has provided data, contact us to delete it.
10. Changes to This Policy
We may update this policy to reflect product changes or legal requirements. Changes will be posted here with an updated date. Material changes will be communicated via email (if you're on the waitlist) or in-app notification (future).
11. Contact
Questions about privacy?
Email: hello@getsift.ch
Mail: InVisible GmbH, Schweighofstrasse 194, 8045 Zürich, Switzerland
12. Supervisory Authority
You have the right to lodge a complaint with a data protection authority:
Switzerland:
Federal Data Protection and Information Commissioner (FDPIC)
Feldeggweg 1, 3003 Bern, Switzerland
Website: www.edoeb.admin.ch
EU/EEA:
Your local data protection authority (find yours here)