Privacy Policy

Last updated: December 31, 2024

1. Introduction

Welcome to Synqro ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our document intelligence platform at synqro.cloud (the "Service").

Key Point: We do not use your documents to train AI models. Your data remains yours and is never shared with third parties for advertising or marketing purposes.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Name (optional)
  • Password (securely hashed)
  • Profile information you choose to provide

2.2 Documents and Content

When you use our Service, we process:

  • Documents you upload (PDFs, Word documents, Excel files, etc.)
  • Text extracted from your documents for AI processing
  • Embeddings (numerical representations) of your document content
  • Chat conversations and queries you make about your documents

2.3 Connected Services

If you connect third-party services (Google Drive, OneDrive, SharePoint, Dropbox), we receive:

  • OAuth access tokens to access your files
  • File metadata (names, sizes, modification dates)
  • Document content you choose to sync

2.4 Usage Information

We automatically collect:

  • IP address and approximate location
  • Browser type and device information
  • Pages visited and features used
  • Query counts and storage usage

3. How We Use Your Information

We use your information to:

  • Provide the Service: Process documents, generate embeddings, and answer your queries using AI
  • Improve the Service: Analyze usage patterns to enhance features and performance
  • Communicate: Send important updates, security alerts, and support messages
  • Ensure Security: Detect and prevent fraud, abuse, and security threats
  • Comply with Law: Meet legal obligations and respond to lawful requests

We DO NOT: Use your documents to train AI models, sell your data to third parties, or share your content for advertising purposes.

4. Data Storage and Security

4.1 Where We Store Data

  • Account data and metadata: Secure cloud databases
  • Document embeddings: ChromaDB Cloud (vector database)
  • Uploaded files: Encrypted file storage

4.2 Security Measures

We implement industry-standard security measures including:

  • AES-256 encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Secure password hashing (bcrypt)
  • Regular security audits and monitoring
  • Access controls and authentication

5. Data Sharing

We share your information only in these circumstances:

  • AI Processing: We send document content to OpenAI for embedding generation and query responses. OpenAI does not retain this data for training.
  • Service Providers: We use trusted providers for hosting, analytics, and payment processing
  • Legal Requirements: When required by law or to protect rights and safety
  • Business Transfers: In connection with mergers, acquisitions, or asset sales

6. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Delete your account and all associated data
  • Export: Download your data in a portable format
  • Restrict Processing: Limit how we use your data
  • Object: Opt out of certain data processing

To exercise these rights, contact us at privacy@synqro.cloud.

7. Data Retention

We retain your data as follows:

  • Active accounts: Data is retained while your account is active
  • Deleted accounts: Data is permanently deleted within 30 days
  • Deleted documents: Removed immediately from vector database and file storage
  • Backups: Purged within 90 days of deletion

8. Cookies and Tracking

We use essential cookies for:

  • Authentication and session management
  • Security and fraud prevention
  • Remembering your preferences

We do not use cookies for advertising or cross-site tracking.

9. Children's Privacy

Our Service is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. International Data Transfers

Your data may be processed in countries outside your residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses for transfers from the EU/UK.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through the Service. Continued use after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: