Syndrax

Privacy policy

1. About this Policy

This Privacy Policy explains how we ("Syndrax", "we", "our") collect, share, and use your personal information when you use our website Syndrax.com (the "Site") or when you subscribe to our services as a customer or supplier.



2. Personal information we collect and why

The types of personal information we collect about you and the reasons why we process it are as follows:

  • Email address, electronic identification data (including when you register via Google or Outlook):
    • Why we collect it: To provide our services to our customers (including trial users), manage access to our services, and enable the sharing function.
    • Legal basis for processing: Contractual necessity.
  • Identification data, electronic identification data, and internet connection usage data:
    • Why we collect it: To establish business and traffic statistics related to the use of our services.
    • Legal basis for processing: Our legitimate interest in knowing the popularity of our services to optimize their visibility or interface.
  • Identification data, electronic identification data, and internet connection usage data:
    • Why we collect it: To provide personalized responses to your information requests via chatbot or when you contact us.
    • Legal basis for processing: Our legitimate interest in responding to requests.
  • Email address, identification data:
    • Why we collect it: To manage our relationship with customers and suppliers (including invoicing and payments).
    • Legal basis for processing: Contractual necessity.
  • First and last name, email address:
    • Why we collect it: To send you marketing updates and messages about our services.
    • Legal basis for processing: Consent (unless a legal exception applies, in which case we would rely on our legitimate interest in promoting our services).
  • Any information relevant or potentially relevant to a dispute or legal proceeding involving us:
    • Why we collect it: Disputes and legal proceedings.
    • Legal basis for processing: Our legitimate interest in defending our rights and interests in court.


3. Data sharing by Syndrax

We may share your personal information with the following categories of recipients:

  • Our third-party service providers who process data on our behalf, including billing and payment services, customer support, website hosting, marketing and newsletters, and data analysis.
  • Any competent law enforcement, regulatory, government agency, court, or other third party where we believe disclosure is necessary: (i) as a matter of applicable law or regulation, (ii) to exercise, establish, or defend our legal rights, or (iii) to protect your vital interests or those of another person.
  • Our auditors, advisors, legal representatives, and similar agents in connection with the advisory services they provide to us for legitimate business purposes, subject to a contractual prohibition on using personal data for other purposes.
  • A potential buyer (and its agents and advisors) in connection with any proposed purchase, merger, or acquisition of any part of our business, provided that the buyer has been informed to use your personal data only for the purposes disclosed in this Policy.
  • Any other person with your prior consent to the disclosure.


4. Protecting your privacy

We will process personal data in accordance with this Policy, as follows:

  • Fairness: We will process personal data fairly. This means we are transparent about how we process personal data and will process it in accordance with applicable law.
  • Legality: We will process personal data only on legal grounds.
  • Purpose limitation: We will process personal data for specific and legitimate purposes and will not process it in a manner incompatible with those purposes, except as permitted by applicable data protection laws.
  • Data minimization: We will process personal data that is adequate, relevant, and limited to what is necessary to achieve the purposes for which the data is processed.
  • Data accuracy: We will take appropriate steps to ensure that the personal data we hold about you is accurate, complete, and, where necessary, kept up to date. However, it is also your responsibility to ensure that your personal data is as accurate, complete, and up-to-date as possible by promptly informing us of any changes or errors. You must inform us of any changes to the personal data we hold about you (e.g., a change of email address).
  • Data security: We use appropriate technical and organizational measures to protect the personal data we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal data.
  • Limited retention: We retain your personal data in a form that allows us to identify you only as long as necessary to fulfill the purposes for which we process your data and do not store your data longer, except as required by applicable laws.


5. Data storage, retention, and deletion

We retain personal data that we collect from you where we have an ongoing legitimate business need to do so (e.g., to provide you with a service you have requested or to comply with applicable legal, tax, or accounting requirements). We retain customer data for a maximum period of 2 years following the end of our contractual relationship. However, we will retain personal data related to accounting for a maximum period of 10 years.

When we no longer need to process your personal data for legitimate business needs, we will either delete or anonymize it. If this is not possible (e.g., because your personal data has been stored in backup archives), we will securely store your personal data and isolate it from any further processing until deletion is possible.



6. International data transfers

Your personal data may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws different from those of your country (and, in some cases, may not offer the same protection).

Specifically, our servers are located in France, and our third-party service providers operate in the EU and the US. This means that when we collect your personal data, we may process it in any of these countries.

However, we have taken appropriate measures to require that your personal data remains protected in accordance with this Policy. This includes implementing the European Commission’s standard contractual clauses for transfers of personal data with our third-party service providers and partners. Additional details can be provided upon request.



7. Your data protection rights

You have the following data protection rights:

  • If you wish to access, correct, update, or request deletion of your personal data, you can do so at any time by contacting us at: [email protected].
  • Additionally, in certain circumstances, as stipulated in applicable data protection legislation, you can object to the processing of your personal data, ask us to restrict the processing of your personal data, or request the portability of your personal data. You can exercise these rights by contacting us at the email address mentioned above.
  • If we have collected and processed your personal data with your consent, you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted before your withdrawal, nor will it affect the processing of your personal data conducted in reliance on lawful processing grounds other than consent.
  • You have the right to opt out of marketing communications we send you at any time. You can exercise this right by clicking on the "unsubscribe" or "opt-out" link in the marketing emails we send you.
  • If you have a complaint or concern about how we process your personal data, we will aim to address these concerns. If you believe that we have not adequately addressed your complaint or concern, you have the right to lodge a complaint with a data protection authority about our collection and use of your personal data. For more information, please contact your local data protection authority.


8. Links to other websites

The Site may contain hyperlinks to websites owned and operated by third parties. These websites have their own privacy policies, and we encourage you to review them. They will govern the use of personal data you submit while visiting these websites.

We accept no responsibility or liability for the privacy practices of these third-party websites, and your use of these websites is at your own risk.


Last updated: 04/07/2024