Enquiry
SynapseIndia - Custom Software Development Company
Technologies
Emerging Technologies
eCommerce Services
CMS Development
CRM Development
Website Development
Mobile App Development
Microsoft Solutions
Website Designing

Privacy Policy

Effective date: 4 June 2026

This Privacy Policy explains how SynapseIndia Outsourcing Pvt. Ltd. ("SynapseIndia", "we", "us", "our") collects, uses, stores, shares, and protects your personal data when you visit www.synapseindia.com, submit enquiries, or engage with our services. It applies to all visitors, prospective clients, job applicants, and existing clients worldwide. Please read it carefully.

Who We Are


SynapseIndia Outsourcing Pvt. Ltd. is an offshore software development and technology services company headquartered at:

B6, NSEZ, Noida, Uttar Pradesh – 201305, India

We are the data controller for personal data collected through www.synapseindia.com. For data processed on behalf of our clients as part of service delivery, we act as a data processor and are governed by separate Data Processing Agreements (DPAs) with each client.

Privacy contact: legal@synapseindia.com

Data Protection Officer: legal@synapseindia.com

What Personal Data We Collect


Data You Provide Directly

When you fill in a contact, enquiry, or project discussion form, we collect:

  • Full name
  • Business email address
  • Phone number
  • Company name
  • Services you select
  • Project details or message content

When you apply for a job through our Careers page, we collect:

  • Full name, email, phone number
  • CV / resume
  • Work history, education, and skills
  • Any additional information you choose to include

Data Collected Automatically

When you visit the website, our systems and third-party tools may automatically collect:

  • IP address and approximate geographic location
  • Browser type, version, and operating system
  • Pages visited, time on page, and navigation path
  • Referring URL
  • Device identifiers

This data is collected only after you have given consent via our cookie consent banner, except for strictly necessary data required to deliver the website.

Data from Third Parties

We may receive personal data about you from:

  • Meta or other platforms when you contact us via those channels
  • Business referrals from existing clients or partners
  • Publicly available professional directories

Legal Basis for Processing


We only process your personal data where we have a valid legal basis. The applicable bases are:

Purpose Legal Basis Framework Reference
Responding to your enquiry or request Legitimate interest / Pre-contractual necessity GDPR Art. 6(1)(b)(f) · DPDP §7
Providing contracted services to clients Performance of contract GDPR Art. 6(1)(b) · DPDP §7
Marketing communications (where opted in) Consent GDPR Art. 6(1)(a) · DPDP §6
Website analytics and performance (non-essential cookies) Consent GDPR Art. 6(1)(a) · ePrivacy
Recruitment and job applications Legitimate interest / Pre-contractual GDPR Art. 6(1)(b)(f) · DPDP §7
Fraud prevention and legal compliance Legal obligation GDPR Art. 6(1)(c)

How We Use Your Data


We use your personal data for the following purposes:

  • To respond to your contact form enquiries and project discussions
  • To provide software development, RPA, AI/ML, and other services you have contracted
  • To send service-related communications (project updates, invoices, support)
  • To send marketing emails, newsletters, or case studies — only where you have explicitly opted in
  • To evaluate job applications and manage the recruitment process
  • To improve our website and services through analytics (consent-gated)
  • To comply with applicable legal obligations

We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects.

Third-Party Data Processors


We share personal data with the following categories of trusted third-party processors, each bound by a Data Processing Agreement or equivalent contractual protections:

Processor / Category Purpose Location
Google LLC (Analytics, Workspace) Website analytics, email, cloud storage USA — SCCs apply
Meta Platforms (Business Tools) Advertising & retargeting (consent-gated) USA — SCCs apply
CRM provider Lead management and sales CRM USA — SCCs apply
AWS / Cloud hosting provider Website and data hosting infrastructure Multiple — SCCs / DPA apply
Email marketing platform Marketing communications (opt-in only) Per platform — DPA applies
Recruitment platform Job application management Per platform — DPA applies

International Data Transfers


SynapseIndia is headquartered in India. India has not received an adequacy decision under EU/UK GDPR. When we process personal data of individuals in the European Economic Area (EEA), United Kingdom, or other jurisdictions with transfer restrictions, we ensure appropriate safeguards are in place:

  • EU Standard Contractual Clauses (SCCs) — 2021 version — for transfers to processors located in the USA or other non-adequate countries
  • UK International Data Transfer Agreement (IDTA) — for transfers involving UK personal data
  • Binding corporate policies and contractual protections for transfers within the SynapseIndia group

You may request a copy of the applicable transfer mechanism by contacting us at the address below.

Data Retention


We retain personal data only for as long as necessary for the purpose for which it was collected, or as required by law:

Data Category Retention Period Basis
Contact form enquiries 24 months from last contact Legitimate interest
Active client project data Duration of contract + 7 years Legal obligation
Job applications (unsuccessful) 6 months from rejection date Legitimate interest
Job applications (hired) Duration of employment + 7 years Legal obligation
Marketing email consent records Until consent withdrawn + 3 years Legal obligation
Website analytics data 26 months (GA4 default) Consent
Cookie consent records 12 months Legal compliance

Your Rights


Depending on your location, you may have the following rights regarding your personal data. We will respond to all valid requests within 30 days.

Rights under GDPR (EU / UK visitors)

  • Right of access — obtain a copy of your personal data we hold
  • Right to rectification — correct inaccurate or incomplete data
  • Right to erasure ('right to be forgotten') — request deletion of your data
  • Right to restriction of processing — limit how we use your data
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to object — object to processing based on legitimate interests or for direct marketing
  • Right to withdraw consent — at any time, without affecting prior processing
  • Right to lodge a complaint — with your national supervisory authority (e.g., UK ICO, Irish DPC)

Rights under DPDP Act 2023 (Indian residents)

  • Right to access information about processing
  • Right to correction and erasure
  • Right to grievance redressal
  • Right to nominate a representative in the event of incapacity

Rights under CCPA (California residents)

  • Right to know — what personal information is collected, used, shared, or sold
  • Right to delete — request deletion of personal information
  • Right to opt out of sale or sharing — we do not sell personal data
  • Right to non-discrimination — equal service regardless of privacy choices

To exercise any of these rights, contact us at:

legal@synapseindia.com — please include your full name, country of residence, and a description of your request.

Data Security


We implement appropriate technical and organisational measures to protect your personal data, including:

  • TLS/HTTPS encryption for all data in transit
  • Access controls and role-based permissions for internal systems
  • Regular security assessments and vulnerability testing (VAPT)
  • Staff data handling training on an annual basis
  • Incident response and breach notification procedures

In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and, where required, inform affected individuals without undue delay.

Children's Data


Our website and services are directed at business professionals and are not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such data, please contact us immediately at legal@synapseindia.com and we will delete it promptly.

Links to Third-Party Sites


Our website may contain links to third-party websites (e.g., client case studies, partner pages, social media). This Privacy Policy does not apply to those sites. We recommend reviewing the privacy notices of any third-party sites you visit.

Changes to This Policy


We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will update the 'Effective date' at the top and, where appropriate, notify you by email or prominent notice on the website. We encourage you to review this page periodically.

We make things that Change things quickly

Connect to an expert

SynapseIndia Contact
USA :
+1-855-796-2773
UK:
+44 2079934232
India :
+91-120-4290800
SynapseIndia Locations
USA
1178 Broadway, 3rd Floor #1346,
New York, NY 10001, United States
View On Google Maps
 
India
SDF B-6, NSEZ, Sector 81, Noida
201305, Uttar Pradesh, INDIA
Download Corporate Profile
SynapseIndia Corporate Profile
SynapseIndia Corporate Profile