Legal review draft
Privacy Policy
Last updated: May 22, 2026
This page is a structured draft for review before publication. It is not final legal advice or approved legal copy.
1. Who We Are
Desler Digital Enterprises LLC, operating Synchronex from Hawaii, USA.
2. Data We Collect
Account information, profile fields, brand kernel content, decisions, worker runs, connector OAuth tokens stored encrypted, BYOK metadata, usage and cost events, push subscriptions, billing identifiers, and support/audit logs.
3. Data We Do Not Collect
Plaintext API keys after encryption, plaintext connector tokens after encryption, and Gmail/Slack/message content unless a worker or connector action explicitly requests it for the product workflow.
4. How We Use Data
To provide Synchronex, inject worker context, run approvals, execute connector workflows, enforce plan limits, process billing, secure accounts, and improve reliability.
5. AI Providers and BYOK
Placeholder for Anthropic, OpenAI, Google, platform-managed routing, BYOK routing, and model-provider processing terms.
6. Third-Party Services
Supabase for database/auth, Stripe for billing, Vercel for hosting, PostHog for analytics/error events, Sendinel for email delivery, Axiom/Vercel logs for observability, and user-connected providers.
7. Data Retention
User data remains until deleted by the user or account deletion flow. Billing records may be retained as legally required. Logs and analytics follow operational retention windows.
8. User Rights
Export, deletion, correction, credential revocation, and GDPR requests for EU users.
9. Security
RLS, encrypted secrets, TLS, least-privilege service access, approval gates, and audit logging.
10. International Transfers
Placeholder for US-hosted infrastructure and vendor subprocessors.
11. Children
Synchronex is not intended for children.
12. Changes to This Policy
Placeholder for update notices and effective dates.
13. Contact
Questions and privacy requests: kevin@synchronex.ai.