Privacy Policy

1. Information We Collect

We collect information directly from you, automatically through your use of the Services, and from authorized third parties. This includes:

• Account & profile data: name, email, password, organization details, billing contacts, and communication preferences.
• Scheduling content: availability windows, meeting titles, invitee information, notes, recordings, and resources you upload or connect through Synkly.
• Usage data: log files, IP addresses, device identifiers, browser type, operating system, referring/exit pages, feature engagement, and timestamps.
• Payment data: partial payment instrument details, transaction identifiers, and invoices processed via PCI-compliant payment providers.
• Third-party integrations: calendar metadata, conferencing links, and contact information retrieved from services you connect (Google, Microsoft, Slack, Zoom, etc.), subject to their permissions.

2. How We Use Information

Synkly processes personal data for the following purposes:

• Provide, maintain, and improve scheduling workflows, automations, and collaboration tools.
• Authenticate users, secure accounts, prevent fraud, and enforce our Terms & Conditions.
• Send service-related communications, transaction notices, security alerts, and product updates.
• Personalize feature recommendations, templates, and onboarding experiences.
• Analyze platform performance, develop new features, and conduct research and usage analytics.
• Comply with legal obligations, respond to lawful requests, and protect Synkly’s legitimate interests.

3. Cookies & Similar Technologies (PECR)

We use cookies and similar technologies to operate the Services, remember preferences, measure performance, and improve features. Where required by PECR, we request your consent for non‑essential cookies and provide controls to change your preferences. You can also manage cookies in your browser settings. Essential cookies (for example, for security and core functionality) are used to deliver the Services you request.

4. Legal Bases for Processing (UK GDPR)

Under the UK GDPR, we process personal data on the following legal bases: (a) performance of a contract when delivering the Services; (b) our legitimate interests in operating, securing, and improving Synkly (balanced against your rights and interests); (c) compliance with legal obligations; and (d) consent where required, such as for certain marketing communications or optional integrations. You may withdraw consent at any time via in‑product settings (where available) or by contacting us.

5. Sharing & Disclosure

We do not sell personal information. We share data only as necessary to deliver the Services or comply with legal requirements:

• Service providers: hosting, analytics, communications, payment processing, and customer success partners bound by contractual confidentiality.
• Integrations & invitees: meeting participants and platforms you explicitly connect or authorize.
• Corporate transactions: in connection with mergers, acquisitions, financings, or asset transfers subject to appropriate safeguards.
• Legal disclosures: when required by law, subpoena, or to protect the rights, safety, and property of Synkly, our customers, or the public.

6. Data Retention

We keep personal data for as long as needed to deliver the Services, comply with our legal obligations, resolve disputes, and enforce agreements. When retention is no longer required, we delete or anonymize information according to our data lifecycle policies, subject to applicable law and legitimate interests.

7. Security

Synkly employs administrative, technical, and physical safeguards (encryption in transit, access controls, monitoring, and regular testing) designed to protect your information. Despite our efforts, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. International Data Transfers

Your information may be accessed from or transferred to countries outside the United Kingdom. Where required, we use appropriate transfer safeguards such as the UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses, together with supplemental measures as necessary to protect personal data.

9. Your Rights & Choices

If you are in the UK, you have rights under the UK GDPR, including the right to access, rectify, erase, restrict or object to processing, and to data portability. You also have the right to withdraw consent where processing is based on consent. You can exercise many of these rights in your account settings or by contacting us. You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk. We will verify identity before fulfilling certain requests.

10. Children’s Privacy

The Services are not directed to children under 16, and we do not knowingly collect personal information from children. If we learn that a child has provided personal data, we will delete it and terminate the account where appropriate.

11. Communications Preferences

You may opt out of promotional emails by following the unsubscribe instructions within the message. We may still send transactional or security-related communications that are necessary to provide the Services.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date above and provide additional notice for significant changes. Your continued use of Synkly after changes take effect signifies your acceptance of the updated Policy.

13. Contact Us

To exercise your rights or ask questions about privacy, contact us at privacy@synkly.com.