• To respond to inquiries, process service requests, and deliver contracted IT and business solutions.
• To manage client accounts, billing, project delivery, and support communications.
• To provide IT infrastructure management, cloud services, cybersecurity monitoring, and development services.

• To send promotional communications, newsletters, event invitations, and product updates (with your consent where required by law).
• To conduct lead generation and outreach activities in connection with our marketing and sales services.
• To personalize website content and advertising based on your interests and browsing behaviour.

• To comply with applicable laws, regulations, and legal obligations in India and internationally.
• To enforce our Terms of Service and protect the rights, property, and safety of Syntrio and its users.
• To respond to lawful requests from government authorities or legal proceedings.

• To analyse website traffic and user behaviour to improve our website, products, and services.
• To conduct market research and develop new service offerings.
• To measure the effectiveness of our marketing campaigns.

• Contractual Necessity: Processing required to fulfil a contract with you or take pre-contractual steps.
• Legitimate Interests: Processing that serves our legitimate business interests, such as improving services and preventing fraud.
• Consent: Where you have provided explicit consent, such as for marketing communications.
• Legal Obligation: Where processing is necessary for compliance with legal requirements.

You may withdraw consent at any time where consent is the legal basis for processing, without affecting the lawfulness of processing prior to withdrawal.

We engage trusted third-party vendors and partners to assist in delivering our services. These include cloud hosting providers, payment processors, CRM platforms, analytics tools, and communication platforms. All service providers are contractually obligated to process your data only as instructed and to maintain appropriate security measures.

In the event of a merger, acquisition, reorganisation, or sale of assets, your personal information may be transferred as part of the transaction. We will notify you of any such change and the choices available to you.

We may disclose personal information when required by law, court order, or to protect the legal rights, safety, or property of Syntrio, our clients, or the public.

We may share your information with other third parties when you have provided explicit consent to do so.

Syntrio operates across India and the United States, and your personal data may be transferred to and processed in countries outside your country of residence. Where data is transferred from the EEA, UK, or other regions with data transfer restrictions, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, or other legally recognised transfer mechanisms.
By using our services, you acknowledge that your data may be transferred to and stored in countries that may have different data protection laws than your own. We will always ensure a comparable level of protection is maintained.

• Contractual Necessity: Processing required to fulfil a contract with you or take pre-contractual steps.
• Legitimate Interests: Processing that serves our legitimate business interests, such as improving services and preventing fraud.
• Consent: Where you have provided explicit consent, such as for marketing communications.
• Legal Obligation: Where processing is necessary for compliance with legal requirements.

You may control and manage cookies through your browser settings or by adjusting your preferences using cookie consent tools on our website. Please note that disabling certain cookies may affect the functionality and experience of our website.
For more information on how we use cookies, please refer to our Cookie Policy available on our website.

• The nature and sensitivity of the data and the purposes for which it was collected.
• Contractual obligations and the duration of our business relationship.
• Applicable legal, regulatory, tax, or accounting requirements.
• Whether we have a legitimate business interest in retaining the data.

When personal data is no longer required, we securely delete or anonymise it in accordance with our data disposal procedures.

• Encryption of data in transit using TLS/SSL protocols.
• Secure access controls and role-based permissions for our systems.
• Regular security assessments, vulnerability scanning, and penetration testing.
• Employee training on data privacy and security best practices.
• Incident response and breach notification procedures.

While we strive to protect your personal information, no security system is impenetrable. In the event of a data breach that affects your rights and freedoms, we will notify you and relevant authorities as required by applicable law.

• Right to Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete personal data.
• Right to Erasure (Right to be Forgotten): Request deletion of your personal data under certain circumstances.
• Right to Restriction: Request that we restrict the processing of your personal data.
• Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format.
• Right to Object: Object to the processing of your personal data for direct marketing or legitimate interests.
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
• Right to Lodge a Complaint: File a complaint with a supervisory authority if you believe your rights have been violated..

To exercise any of these rights, please contact us using the details in Section 14. We will respond to your request within the timeframe required by applicable law (typically within 30 days).

Our website and services are not directed at children under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected personal data from a child, we will take immediate steps to delete such information. If you believe we have collected personal data from a minor, please contact us immediately.

Our website may contain links to third-party websites, services, or applications. This Privacy Policy does not apply to such third-party services, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services you interact with. The inclusion of a link does not constitute endorsement of the third party or its privacy practices.

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by posting the updated policy on our website and updating the ‘Effective Date’ at the top of this document. We may also notify you via email or prominent notice on our website.
Your continued use of our website or services after the effective date of the updated Privacy Policy constitutes your acceptance of the revised terms. We encourage you to review this Privacy Policy periodically.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

This Privacy Policy is governed by and construed in accordance with the laws of India, including the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and any other applicable data protection legislation in force from time to time.
For users in the European Union, this policy is also consistent with the requirements of the General Data Protection Regulation (GDPR). For users in other jurisdictions, we endeavour to comply with applicable local data protection laws.
Any disputes arising in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts located in Trivandrum, Kerala, India, unless otherwise required by applicable law.