Privacy Notice

SyncSync takes your privacy very seriously. Please read this Privacy Policy carefully as it contains important information on who we are and how and why we collect, store, use and share your personal information. It also explains your rights in relation to your personal information and how to contact us or supervisory authorities in the event you have a complaint.

We collect, use and are responsible for certain personal information about you. When we do so we are subject to the General Data Protection Regulation, which applies across the European Union (including in the United Kingdom) and the Data Protection Act 2018 and we are responsible as ‘controller’ of that personal information for the purposes of those laws.

This Privacy Policy sets out the procedures that are to be followed when dealing with personal information. The procedures and principles set out herein must be followed at all times by us, our employees, agents, contractors, or other parties working on behalf of us.

Key Terms

It would be helpful to start by explaining some key terms used in this policy:

We, us, our ShedSync Limited
Our data privacy manager Administrator
jackie@shedsync.com
Personal information Any information relating to an identified or identifiable individual
Special category personal information

Personal information revealing racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership

Genetic and biometric data

Data concerning health, sex life or sexual orientation

Data Protection Principles

We will comply with data protection law. This says that the personal information we hold about you must be:

  • Used lawfully, fairly and in a transparent way
  • Collected only for valid purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes
  • Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed
  • Accurate and kept up to date
  • Kept in a form that identifies you for only as long as necessary for the purposes we have told you about
  • Destroyed or anonymised when no longer required
  • Not disclosed to any third party without your consent
  • Kept securely

What Personal Information We Collect

We may collect and process the following types of personal information:

  • Identity Data: such as your name or username
  • Contact Data: such as your email address
  • Account Data: login credentials and account preferences
  • Usage Data: information about how you use our website and services
  • Technical Data: including IP address, browser type, and device information
  • User Content: data submitted through forms, including uploaded files and images

How We Collect Your Information

We collect personal information in the following ways:

  • Directly from you when you create an account, submit forms, or contact us
  • Automatically through your use of our website, including cookies and analytics tools
  • From third-party services where applicable (for example, authentication providers)

How We Use Your Personal Information

We use your personal information to:

  • Provide and manage your account
  • Deliver our services, including processing and storing submitted data
  • Communicate with you regarding your account or service updates
  • Improve our website and services
  • Maintain security and prevent fraud
  • Comply with legal obligations

Lawful Basis for Processing

We process your personal information on the following lawful bases:

  • Contract: where processing is necessary to provide our services to you
  • Legitimate Interests: where it is necessary for our business operations, provided your rights do not override those interests
  • Legal Obligation: where we must comply with the law
  • Consent: where you have given clear consent for specific purposes, such as marketing communications

Sharing Your Personal Information

We may share your personal information with trusted third parties where necessary to provide our services or comply with legal obligations. These may include:

  • Hosting and infrastructure providers (such as cloud service providers)
  • Email delivery services
  • Analytics providers
All third parties are required to respect the security of your personal information and to treat it in accordance with the law.

International Transfers

Where your personal information is transferred outside of the United Kingdom or European Economic Area, we ensure appropriate safeguards are in place to protect your data, such as the use of standard contractual clauses or equivalent legal mechanisms.

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including:

  • Account data: retained while your account is active
  • User-submitted data: retained until deleted by you or your organisation
  • Technical and usage data: retained for a limited period for analysis and security purposes
We may retain data for longer where required to comply with legal obligations.

Your Rights

Under data protection law, you have rights including:

  • The right to access your personal information
  • The right to correct inaccurate or incomplete information
  • The right to request deletion of your personal information
  • The right to restrict or object to processing
  • The right to data portability
You can exercise your rights by contacting us using the details provided in this policy.

How to Complain

If you have any concerns about our use of your personal information, you can contact us using the details above. You also have the right to lodge a complaint with the [Information Commissioner's Office](chatgpt://generic-entity?number=0), the UK regulator for data protection issues.

Cookies

We use cookies and similar technologies to improve your experience on our website and to analyse usage. You can control cookies through your browser settings. For more information, please refer to our Cookie Policy.

Data Security

We have implemented appropriate security measures to prevent your personal information from being accidentally lost, used, or accessed in an unauthorised way. These measures include secure hosting, encryption, and access controls.

Children's Data

Our services are not intended for children, and we do not knowingly collect personal information from individuals under the age of 18.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page and, where appropriate, notified to you by email.