SynapseIndia Outsourcing Pvt. Ltd. is an offshore software development and technology services company headquartered at:
B6, NSEZ, Noida, Uttar Pradesh – 201305, IndiaWe are the data controller for personal data collected through www.synapseindia.com. For data processed on behalf of our clients as part of service delivery, we act as a data processor and are governed by separate Data Processing Agreements (DPAs) with each client.
Privacy contact: legal@synapseindia.com
Data Protection Officer: legal@synapseindia.com
When you fill in a contact, enquiry, or project discussion form, we collect:
When you apply for a job through our Careers page, we collect:
When you visit the website, our systems and third-party tools may automatically collect:
This data is collected only after you have given consent via our cookie consent banner, except for strictly necessary data required to deliver the website.
We may receive personal data about you from:
We only process your personal data where we have a valid legal basis. The applicable bases are:
| Purpose | Legal Basis | Framework Reference |
|---|---|---|
| Responding to your enquiry or request | Legitimate interest / Pre-contractual necessity | GDPR Art. 6(1)(b)(f) · DPDP §7 |
| Providing contracted services to clients | Performance of contract | GDPR Art. 6(1)(b) · DPDP §7 |
| Marketing communications (where opted in) | Consent | GDPR Art. 6(1)(a) · DPDP §6 |
| Website analytics and performance (non-essential cookies) | Consent | GDPR Art. 6(1)(a) · ePrivacy |
| Recruitment and job applications | Legitimate interest / Pre-contractual | GDPR Art. 6(1)(b)(f) · DPDP §7 |
| Fraud prevention and legal compliance | Legal obligation | GDPR Art. 6(1)(c) |
We use your personal data for the following purposes:
We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects.
We share personal data with the following categories of trusted third-party processors, each bound by a Data Processing Agreement or equivalent contractual protections:
| Processor / Category | Purpose | Location |
|---|---|---|
| Google LLC (Analytics, Workspace) | Website analytics, email, cloud storage | USA — SCCs apply |
| Meta Platforms (Business Tools) | Advertising & retargeting (consent-gated) | USA — SCCs apply |
| CRM provider | Lead management and sales CRM | USA — SCCs apply |
| AWS / Cloud hosting provider | Website and data hosting infrastructure | Multiple — SCCs / DPA apply |
| Email marketing platform | Marketing communications (opt-in only) | Per platform — DPA applies |
| Recruitment platform | Job application management | Per platform — DPA applies |
SynapseIndia is headquartered in India. India has not received an adequacy decision under EU/UK GDPR. When we process personal data of individuals in the European Economic Area (EEA), United Kingdom, or other jurisdictions with transfer restrictions, we ensure appropriate safeguards are in place:
You may request a copy of the applicable transfer mechanism by contacting us at the address below.
We retain personal data only for as long as necessary for the purpose for which it was collected, or as required by law:
| Data Category | Retention Period | Basis |
|---|---|---|
| Contact form enquiries | 24 months from last contact | Legitimate interest |
| Active client project data | Duration of contract + 7 years | Legal obligation |
| Job applications (unsuccessful) | 6 months from rejection date | Legitimate interest |
| Job applications (hired) | Duration of employment + 7 years | Legal obligation |
| Marketing email consent records | Until consent withdrawn + 3 years | Legal obligation |
| Website analytics data | 26 months (GA4 default) | Consent |
| Cookie consent records | 12 months | Legal compliance |
Depending on your location, you may have the following rights regarding your personal data. We will respond to all valid requests within 30 days.
Rights under GDPR (EU / UK visitors)
Rights under DPDP Act 2023 (Indian residents)
Rights under CCPA (California residents)
To exercise any of these rights, contact us at:
legal@synapseindia.com — please include your full name, country of residence, and a description of your request.
We implement appropriate technical and organisational measures to protect your personal data, including:
In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and, where required, inform affected individuals without undue delay.
Our website and services are directed at business professionals and are not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such data, please contact us immediately at legal@synapseindia.com and we will delete it promptly.
Our website may contain links to third-party websites (e.g., client case studies, partner pages, social media). This Privacy Policy does not apply to those sites. We recommend reviewing the privacy notices of any third-party sites you visit.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will update the 'Effective date' at the top and, where appropriate, notify you by email or prominent notice on the website. We encourage you to review this page periodically.