Security & Privacy
GDPR Compliance
How Synoveo complies with GDPR
Synoveo is committed to GDPR compliance for our EU users.
Your Rights
Under GDPR, you have the right to:
- Access - Request a copy of your data
- Rectification - Correct inaccurate data
- Erasure - Delete your data ("right to be forgotten")
- Portability - Export your data in standard format
- Restriction - Limit how we process your data
- Object - Object to certain processing
Exercising Your Rights
Export Your Data
Go to Settings → Data & Privacy
Click "Export My Data"
Receive email with download link
Download ZIP with your data
Export includes:
- Account information
- Business configurations
- Sync history
- API key records (not secrets)
Delete Your Account
Go to Settings → Data & Privacy
Click "Delete Account"
Confirm via email
Account deleted within 30 days
Account deletion is permanent. All data is removed and cannot be recovered.
Data We Collect
Account Data
- Email address
- Name (if provided)
- Billing information
Business Data
- Business configurations
- Google location data (cached)
- Sync history
Usage Data
- Feature usage analytics
- Error logs
- Performance metrics
What We Don't Collect
- Credit card numbers (Stripe handles)
- Google password
- Data from other Google services
Data Retention
| Data Type | Retention |
|---|---|
| Account data | Until deletion |
| Sync history | 90 days |
| Error logs | 30 days |
| Analytics | 24 months |
Data Processing
Legal Basis
- Contract - To provide the service
- Legitimate Interest - To improve the service
- Consent - For marketing (opt-in)
Sub-processors
- Railway - Hosting
- Stripe - Payments
- Resend - Email
- Google - Authentication
Contact
For GDPR requests:
- Email: privacy@synoveo.com
- Response within 30 days