SynqTools
GDPR Compliance

Your Data ProtectionRights Under GDPR

As a European resident, you have specific rights under the General Data Protection Regulation (GDPR). We're committed to protecting your privacy and making it easy to exercise these rights.

Full GDPR ComplianceCertified processes
30-Day ResponseMaximum response time
EU Data CentersData stays in EU

Your GDPR Rights

Under GDPR, you have comprehensive rights regarding your personal data. Here's what you can do and how to exercise these rights.

Right to Access

You have the right to know what personal data we process about you and receive a copy of it.

How to Exercise:

Contact our Data Protection Officer with a written request including proof of identity.

Right to Rectification

You can request correction of inaccurate or incomplete personal data we hold about you.

How to Exercise:

Update your information in your account settings or contact support for assistance.

Right to Erasure

You can request deletion of your personal data under certain circumstances.

How to Exercise:

Submit a deletion request through your account settings or contact our DPO directly.

Right to Restrict Processing

You can limit how we process your personal data in specific situations.

How to Exercise:

Contact our support team to discuss restriction of processing for your account.

Right to Data Portability

You can receive your personal data in a machine-readable format to transfer to another service.

How to Exercise:

Use the data export feature in your account or request a data package from support.

Right to Object

You can object to processing of your personal data for certain purposes.

How to Exercise:

Contact us to discuss objections to specific types of data processing.

Data We Process

Transparency about what data we collect, why we process it, and how long we keep it.

Account Information

  • Name, email address, company name
  • Account preferences and settings
  • Billing and payment information

Purpose

Service provision and account management

Retention Period

Duration of account plus 7 years for billing records

Encrypted

Usage Data

  • Feature usage patterns
  • Login timestamps
  • Performance metrics

Purpose

Service improvement and analytics

Retention Period

2 years from collection

Encrypted

Business Data

  • Invoices, clients, projects
  • Documents and files uploaded
  • Custom configurations

Purpose

Core service functionality

Retention Period

Duration of account plus 90 days

Encrypted

Communication Data

  • Support tickets and messages
  • Email communications
  • Survey responses

Purpose

Customer support and service improvement

Retention Period

5 years from last interaction

Encrypted

Legal Basis for Processing

We only process your personal data when we have a valid legal basis under GDPR.

Contract Performance

Processing necessary to provide our services under your subscription agreement

Examples:

  • Account creation and management
  • Service delivery
  • Billing and payments

Legitimate Interest

Processing for purposes that are in our legitimate business interests

Examples:

  • Service improvement
  • Security monitoring
  • Marketing to existing customers

Legal Obligation

Processing required to comply with legal requirements

Examples:

  • Tax record keeping
  • Anti-money laundering
  • Data breach notifications

Consent

Processing based on your explicit consent

Examples:

  • Marketing communications
  • Optional analytics
  • Beta feature participation

International Data Transfers

When we transfer your data outside the EU, we ensure appropriate safeguards are in place.

Our Approach

We primarily store and process EU residents' data within the European Union. When transfers outside the EU are necessary for service provision, we use appropriate safeguards.

Primary data storage in EU
Minimal transfers outside EU
Appropriate safeguards when required

Transfer Safeguards

When international transfers are necessary, we implement these protective measures:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions for transfers to countries with adequate protection
  • Binding Corporate Rules for transfers within multinational organizations
  • Certification schemes and codes of conduct for data processors

How to Exercise Your Rights

We've made it easy for you to exercise your GDPR rights. Here are your options.

Self-Service Options

Many rights can be exercised directly from your account

  • Update personal information in account settings
  • Export your data using built-in tools
  • Delete your account and data
  • Manage communication preferences

Contact Our DPO

For complex requests or specific guidance

Data Protection Officer

For all GDPR-related requests and questions

[email protected]

Response Timeline

We respond to all GDPR requests within 30 days. For complex requests, we may extend this by an additional 60 days with explanation.

Filing a Complaint

If you're not satisfied with how we've handled your data or your rights request, you have the right to file a complaint with your local supervisory authority.

Supervisory Authority Contact

You can contact your local data protection authority in any EU member state. We're also registered with the Irish Data Protection Commission.

Irish Data Protection Commission

21 Fitzwilliam Square South, Dublin 2, Ireland

Phone: +353 57 868 4800

Email: [email protected]