Privacy policy

The controller of your personal data is Syntagent d.o.o., Radmile Matejčić 10, 51000 Rijeka, Croatia. Contact for privacy matters: [email protected].

This policy describes how we process personal data when you use our public website (including product information) and when you use AI support after signing in with Google.

Account (Google sign-in): identifiers provided by your Google account that we need for authentication (such as a stable user id, email address, display name, and profile image URL if you allow it). We do not receive your Google password.

AI support: messages you send in the support chat, metadata needed to deliver the thread (timestamps, message ids), and optional context you choose to share (for example project or workspace descriptions, decisions, or agreed next steps).

Technical data: standard server and security logs (for example IP address in truncated form, user agent, request timestamps) used to operate and protect the service.

To authenticate you, to provide the AI support channel you requested, to maintain continuity of collaboration so you do not have to repeat information unnecessarily, and to secure our systems against abuse and fraud.

Where the GDPR applies, we rely primarily on performance of a contract (providing the support service you access after sign-in) and, where applicable, legitimate interests in securing and improving our services, balanced against your rights.

We keep support-related content for as long as needed to fulfil the purposes above and to meet legal, security, or dispute-resolution requirements. Retention periods may evolve; material changes will be reflected in this policy or communicated where appropriate.

Authorised Syntagent personnel involved in delivering support and operating the platform may access the data described above. We do not sell your personal data. We use service providers (for example hosting and infrastructure) under agreements that require them to protect data and process it only on our instructions.

If personal data is processed outside the European Economic Area, we implement appropriate safeguards required by applicable law (such as standard contractual clauses) where relevant.

Depending on applicable law, you may have the right to access, rectify, erase, restrict processing, object to certain processing, and data portability in relation to your personal data.

To exercise these rights or ask questions, contact [email protected]. You may also lodge a complaint with a supervisory authority (in Croatia, the Croatian Personal Data Protection Agency — AZOP).

We implement technical and organisational measures appropriate to the risk, including access controls and encryption in transit where industry-standard for the services we use.

We may update this policy from time to time. The Last updated date at the top reflects the latest revision. Continued use of the site or AI support after changes constitutes acceptance of the updated policy where permitted by law.

This document is provided for transparency and operational clarity. It is not tailored legal advice for every jurisdiction. You should obtain independent legal review before relying on it for regulated or high-risk processing.