Skip to main content
SeaPillar
Book DemoLog In
Trust & Stewardship

Privacy Policy

How we handle operational and personal data within the SeaPillar logistics infrastructure.

Last updated: March 12, 2026

1. Introduction

SeaPillar ("we", "us", or "our") is committed to protecting the privacy and security of the data entrusted to us by our customers (port agencies, terminal operators, and vessel owners). This Privacy Policy explains how we collect, use, and safeguard operational and personal data through our platform.

2. Data We Collect

2.1 Operational Data

To provide our core services, we collect data related to maritime operations, including:

  • Vessel identifiers (Name, IMO, MMSI, Flag).
  • Port call schedules (ETA, ETD, Berth assignments).
  • Cargo metadata (Descriptions, quantities, weights, supplier info).
  • Visual evidence (Condition photos, digital signatures).
  • Facility data (Warehouse layouts, storage zone allocations).

2.2 User Data

When you create an account, we collect:

  • Name and professional email address.
  • Role-based permission settings.
  • Login credentials (secured via Supabase Auth).
  • Profile information provided by the administrator.

3. How We Use Your Data

We process data solely for the following purposes:

  • Service DeliveryManaging vessel calls, cargo custody, and facility allocations.
  • Audit & ComplianceMaintaining tamper-proof history for digital custody records.
  • SecurityMonitoring for unauthorized access and ensuring tenant isolation.
  • CommunicationSending operational alerts, notifications, and support responses.

4. Data Sharing and Disclosure

We do not sell your data. Operational data is shared only with authorized stakeholders explicitly involved in your logistics chain:

  • Stakeholders: Captains and crew via the secure Vessel Portal (token-based).
  • Authorities: Customs or compliance officers if your role configuration permits.
  • Service Providers: Sub-processors like Supabase (database), Resend (email), and Vercel (hosting), all of whom meet stringent security standards.

5. Security Measures

SeaPillar employs enterprise-grade security to protect your data:

  • Encryption: Data is encrypted using AES-256 at rest and TLS 1.3 in transit.

  • Multi-Tenancy: Row-level security (RLS) ensures that one organization can never access another's data.

  • Access Control: Granular RBAC (Role-Based Access Control) limits data visibility based on "need-to-know" principles.

6. Your Rights (GDPR & International Standards)

Regardless of your location, we honor basic data rights including:

  • The right to access and export your data.
  • The right to correct inaccuracies.
  • The right to request deletion (subject to operational audit requirements).
  • The right to withdraw consent for non-essential processing.

Contact Our Data Team

For data access requests, security inquiries, or specific compliance questions (e.g. EU data residency), please contact our dedicated privacy desk.

privacy@seapillar.com
Privacy Policy — SeaPillar | SeaPillar