SynapsesBack to home

Privacy Policy

Last updated: April 12, 2026

Last reviewed: 4 June 2026

Synapses collects only the personal data needed to operate the platform and deliver consulting and managed-services engagements — primarily account credentials, contact details, and cloud-resource metadata you explicitly authorise us to read. We never sell or rent your data, we retain it only for the duration of your subscription plus a 90-day offboarding window, and you may request access, correction, or deletion at any time by emailing privacy@synapses-technology.com. This policy is aligned with the EU GDPR and the Saudi Personal Data Protection Law (PDPL).

Synapses ("Synapses", "we", "us", or "our") operates the website www.synapses-technology.com and the Synapses cloud management platform (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website or use our Service. Please read it carefully. If you disagree with its terms, please discontinue use of the Service.

1. Information We Collect

1.1 Information You Provide Directly

  • Account registration: name, work email address, company name, job title, and password.
  • Payment information: billing address and payment card details (processed by our PCI-compliant payment processor; we do not store full card numbers).
  • Communications: messages you send us via contact forms, support tickets, or email.
  • Discovery call requests: information submitted through our booking form, including name, email, company, and the nature of your enquiry.

1.2 Information Collected Automatically

  • Usage data: pages visited, features used, actions taken within the platform, session duration, and referring URLs.
  • Device and browser data: IP address, browser type and version, operating system, device identifiers, and screen resolution.
  • Log data: server logs including timestamps, API calls, and error reports.
  • Cookies and similar technologies: see our Cookie Policy for full details.

1.3 Information From Third Parties

  • Cloud provider integrations: when you connect AWS, Azure, or OCI accounts, we receive metadata about your cloud resources (resource IDs, configurations, cost data) as authorised by your IAM roles.
  • Single Sign-On (SSO): if you authenticate via an identity provider, we receive your name and email address.
  • Analytics partners: aggregated behavioural data to improve the Service.

2. How We Use Your Information

We use the information we collect to:

  • Provision, operate, and improve the Service.
  • Authenticate users and secure accounts.
  • Process payments and send transactional emails (receipts, invoices, password resets).
  • Respond to support requests and communications.
  • Send product updates, security notices, and marketing communications where you have opted in.
  • Monitor platform performance, detect fraud, and prevent abuse.
  • Comply with legal obligations and enforce our Terms of Service.
  • Conduct aggregated, anonymised analytics to understand usage trends.

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, our legal bases for processing personal data are:

  • Contract performance: processing necessary to provide the Service under our Terms of Service.
  • Legitimate interests: security monitoring, fraud prevention, product improvement, and direct marketing to existing customers.
  • Consent: marketing emails and non-essential cookies (you may withdraw consent at any time).
  • Legal obligation: compliance with applicable law, including tax and financial regulations.

4. How We Share Your Information

We do not sell, rent, or trade your personal data. We may share it with:

  • Service providers: cloud infrastructure (hosting, CDN), payment processors, email delivery, analytics, and customer support platforms, all bound by data processing agreements.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, subject to standard confidentiality obligations.
  • Legal requirements: when required by law, court order, or governmental authority, or to protect the rights and safety of Synapses, our users, or the public.
  • With your consent: for any other purpose disclosed to you at the time of collection.

5. International Data Transfers

Synapses operates globally. Your personal data may be transferred to and processed in countries outside your country of residence, including the United States and European Union member states. Where required, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or equivalent safeguards, to protect such transfers.

6. Data Retention

We retain personal data for as long as necessary to provide the Service and fulfil the purposes described in this Policy, or as required by law. Account data is retained for the duration of your subscription plus 90 days after closure. Backup copies are purged within 180 days. Anonymised, aggregated analytics data may be retained indefinitely.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Erase your data ("right to be forgotten") under certain conditions.
  • Restrict or object to processing in certain circumstances.
  • Data portability: receive your data in a structured, machine-readable format.
  • Withdraw consent at any time for consent-based processing.
  • Lodge a complaint with a supervisory authority (e.g., your national data protection authority).

To exercise any of these rights, contact us at privacy@synapses-technology.com. We will respond within 30 days.

8. Security

We implement industry-standard technical and organisational measures to protect your personal data, including encryption in transit (TLS 1.2+), encryption at rest (AES-256), role-based access controls, and regular third-party security audits. See our Security Policy for full details. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

9. Children's Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us immediately at privacy@synapses-technology.com.

10. Cookies

We use cookies and similar tracking technologies. For detailed information, please read our Cookie Policy.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated Policy on this page with a revised "Last updated" date, and where required by law, by email. Your continued use of the Service after the effective date constitutes your acceptance of the updated Policy.

13. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us: