Privacy Policy

1 Who We Are

Synprism ("Synprism", "we", "us", or "our") is an AI integration and consulting firm headquartered in Tennessee, United States. We operate the website located at synprism.io (the "Site").

This Privacy Policy describes how we collect, use, disclose, and safeguard information when you visit our Site or contact us through our contact form. Please read it carefully.

2 Information We Collect

Information You Provide Directly

When you submit our contact form, we collect the following personally identifiable information ("PII"):

• First and last name
• Email address
• Company or organization name (optional)
• Service interest (the category you select)
• Message content (what you write to us)

Information Collected Automatically

When you visit our Site, certain technical information may be collected automatically through Cloudflare's infrastructure, including:

• IP address (anonymized by Cloudflare)
• Browser type and version
• Pages visited and time spent
• Referring website

This data is used solely for security, performance, and analytics purposes by Cloudflare and is not linked to your personal identity by Synprism. We do not use third-party analytics tools (e.g., Google Analytics) on this Site.

Information We Do NOT Collect

• Payment or financial information
• Social Security numbers or government IDs
• Sensitive personal categories (health, race, religion, etc.)
• Location data beyond what is inherent in an IP address

3 How We Use Your Information

We use the information we collect for the following purposes:

• To respond to your inquiry — Your name, email, and message are used solely to reply to you regarding your interest in our services.
• To provide and improve our services — Understanding what services people are interested in helps us improve our offerings.
• To comply with legal obligations — We may use your information as required by applicable law.

We do not use your information for:

• Unsolicited marketing or spam
• Automated profiling or decision-making
• Sale or rental to third parties
• Targeted advertising

Our legal basis for processing your information (under GDPR) is legitimate interest — specifically, responding to a business inquiry you have initiated — and in some cases, your consent as implied by submitting the form.

4 How We Share Information

We do not sell, trade, or rent your personal information to third parties. We may share information only in the following limited circumstances:

Service Providers

We use Resend (resend.com) to deliver email notifications of form submissions to our internal team. Resend processes your submission data solely to transmit the email and does not store or use it for any other purpose. Resend is GDPR-compliant.

Infrastructure

Our Site is hosted on Cloudflare Pages and our contact form is processed by a Cloudflare Worker. Cloudflare processes traffic through its global network. See Cloudflare's Privacy Policy.

Legal Requirements

We may disclose your information if required to do so by law, court order, or governmental authority, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email if such a transfer occurs and your data is subject to a materially different privacy policy.

5 Data Retention

We retain contact form submissions in our email inbox for as long as necessary to fulfill the purpose for which they were collected — typically the duration of our business relationship or correspondence with you, plus a reasonable period thereafter for record-keeping.

You may request deletion of your data at any time (see Your Rights below). Upon a valid deletion request, we will remove your information from our active systems within 30 days.

6 Security

We take reasonable technical and organizational measures to protect your personal information, including:

• HTTPS encryption on all pages (enforced via Cloudflare SSL)
• Cloudflare WAF and DDoS protection
• Form data transmitted via encrypted API calls
• API keys stored as encrypted secrets, never in source code

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. In the event of a data breach that affects your rights, we will notify you as required by applicable law.

7 Your Rights

Regardless of where you are located, you have the following rights with respect to your personal information:

• Right to Access — Request a copy of the personal information we hold about you.
• Right to Correction — Request that we correct inaccurate or incomplete information.
• Right to Deletion — Request that we delete your personal information ("right to be forgotten").
• Right to Restriction — Request that we limit how we use your information.
• Right to Object — Object to our processing of your information based on legitimate interest.
• Right to Portability — Request your data in a structured, machine-readable format.
• Right to Withdraw Consent — If processing is based on consent, you may withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at privacy@synprism.io. We will respond within 30 days. We will not discriminate against you for exercising your rights.

8 California Privacy Rights (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with additional rights:

Categories of Personal Information Collected

In the past 12 months, we have collected the following categories of personal information: Identifiers (name, email address) and Commercial information (service interest). We have not collected any other CCPA-defined categories.

No Sale of Personal Information

We do not sell your personal information. We do not share your personal information with third parties for cross-context behavioral advertising.

How to Exercise Your Rights

California residents may submit requests to know, delete, or correct their personal information by contacting us at privacy@synprism.io. We will verify your identity before processing the request.

Shine the Light

California Civil Code Section 1798.83 allows California residents to request information about third-party disclosures for direct marketing purposes. Synprism does not share personal information with third parties for their direct marketing purposes.

9 International Users & GDPR

Synprism is based in Tennessee, USA. If you are visiting from the European Economic Area (EEA), United Kingdom, or Switzerland, please be aware that your information will be transferred to and processed in the United States.

We rely on the following legal bases under the GDPR for processing your personal data:

• Legitimate interests (Article 6(1)(f)) — responding to your business inquiry
• Consent (Article 6(1)(a)) — implied by voluntarily submitting our contact form

If you are in the EEA/UK and believe our processing violates applicable law, you have the right to lodge a complaint with your local data protection authority (DPA).

Our Data Protection contact is reachable at privacy@synprism.io.

10 Cookies & Tracking Technologies

Our Site uses no first-party cookies and no third-party tracking scripts (e.g., Google Analytics, Meta Pixel, or advertising trackers).

Cloudflare may set a security cookie (__cf_bm) as part of its bot management service. This cookie does not track you across websites and expires within 30 minutes. For more information, see Cloudflare's cookie documentation.

Because we use no tracking cookies, a cookie consent banner is not currently required for our Site.

11 Children's Privacy

Our Site is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@synprism.io and we will delete it promptly.

12 Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page. For material changes, we will make reasonable efforts to notify affected users (e.g., via email if you have contacted us).

Your continued use of the Site after any changes constitutes acceptance of the updated policy. We encourage you to review this page periodically.

13 Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: