Privacy Policy
This policy explains what personal data we handle, why we handle it, and the rights available to you.
On this page
SendinCraft ("SendinCraft", "we", "us", or "our") is a transactional and email-delivery platform operated by RDP Datacenter. This Privacy Policy applies to our website at sendincraft.com and to the SendinCraft application, API, and SMTP relay (together, the "Service").
For any privacy questions, contact us at privacy@sendincraft.com.
Our handling of personal data falls into two categories:
- As a controller — for the data of our account holders (our customers), such as your name, email address, login credentials, billing details, and how you use the Service.
- As a processor — for the contact and recipient data our customers upload or send through the Service (for example, the email addresses and custom fields of the customer's own contacts). We process this data only on our customers' instructions, to deliver email and provide the Service.
Where we act as a processor, the customer is the controller and is responsible for having a lawful basis and appropriate consent to send email to their recipients, as required by our Acceptable Use & Anti-Spam Policy.
- Account data: name, email address, password (hashed), organization details, and authentication metadata.
- Billing data: plan, transactions, and identifiers provided by our payment processor. We do not store full card numbers.
- Contact & recipient data (processed for customers): recipient email addresses, names, and any custom fields a customer chooses to store or send.
- Email content & metadata: the messages sent through the Service and delivery events such as sends, deliveries, opens, clicks, bounces, and complaints.
- Technical data: IP address, device and browser information, and server logs used for security, abuse prevention, and diagnostics.
- Cookies & analytics: limited cookies and analytics to operate and improve the website and dashboard.
- To provide, operate, and secure the Service and deliver email on our customers' behalf.
- To monitor deliverability and enforce sending reputation (bounce and complaint handling).
- To prevent, detect, and investigate abuse, spam, fraud, and security incidents.
- To process billing and provide customer support.
- To comply with legal obligations and enforce our agreements.
To protect recipients and sender reputation, we maintain a suppression list. Email addresses that generate a hard bounce or a spam complaint are automatically suppressed and blocked from future sends across the platform. We also process one-click unsubscribe requests (RFC 8058) and honor opt-outs. These mechanisms necessarily involve processing recipient email addresses and delivery events.
We do not sell personal data. We share data only with:
- Infrastructure and email-delivery providers, including Amazon Web Services (Amazon SES), which we use to transmit email and host the Service.
- Payment and analytics providers strictly to operate billing and improve the Service.
- Authorities or third parties where required by law, or to protect the rights, safety, and security of our users and the Service.
Our providers, including AWS, may process data in multiple regions. Where data is transferred across borders, we rely on appropriate safeguards as required by applicable law.
We retain account and sending data for as long as an account is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Suppression-list entries may be retained to prevent re-sending to addresses that previously bounced or complained.
We use industry-standard safeguards, including encryption of data in transit, access controls, and monitoring. No method of transmission or storage is completely secure, but we work to protect personal data against unauthorized access, alteration, and disclosure.
Depending on your location, you may have rights to access, correct, delete, or restrict processing of your personal data, and to object to certain processing.
- Account holders: contact privacy@sendincraft.com to exercise these rights.
- Recipients: if you received an email sent through SendinCraft and wish to opt out or have your data removed, use the unsubscribe link in the message or contact the sender directly. You may also contact us and we will route your request to the responsible customer.
The Service is not directed to children and is not intended for anyone under the age of 16.
We may update this Privacy Policy from time to time. Material changes will be reflected by updating the "Last updated" date above and, where appropriate, by additional notice.
RDP Datacenter — operator of SendinCraft
Privacy: privacy@sendincraft.com
General: hello@sendincraft.com
Last updated July 11, 2026