1. Who We Are
Synect Limited (“Synect”, “we”, “us”, “our”) is a private limited company incorporated in Ireland (CRO Number: 814346) under the Companies Act 2014.
Registered address: The Tara Building, 11–15 Tara Street, Dublin 2, D02 RY83,
Ireland.
Contact: hello@synectgroup.com
We operate synect.tech, an AI automation services platform for Irish SMEs. We are the data controller for personal data collected through this website and in connection with our services.
2. What Data We Collect, and Why
We collect personal data only for specific, legitimate purposes. The table below explains what we collect, why, and our lawful basis under GDPR.
| Data | Purpose | Lawful basis |
|---|---|---|
| Name, email address, phone number | To respond to discovery call enquiries and service requests | Contract (Art. 6(1)(b)) |
| Company name and website | To scope and deliver AI automation projects | Contract (Art. 6(1)(b)) |
| Business workflow and process information | To build and configure AI automations for your business | Contract (Art. 6(1)(b)) |
| Communications (emails, call notes) | To manage our working relationship with you | Contract / Legitimate Interests (Art. 6(1)(f)) |
| Website usage data (cookies, analytics) | To understand how visitors use our site and improve it | Consent (Art. 6(1)(a)) |
| IP address and browser data | Security and fraud prevention | Legitimate Interests (Art. 6(1)(f)) |
We do not collect sensitive personal data (special category data under Article 9 GDPR) through this website or in the delivery of our services.
3. How We Use Your Data
We use your personal data to:
- Respond to your discovery call booking or enquiry form submission
- Scope, build, and deliver your AI automation project
- Communicate with you during and after project delivery
- Send project-related updates and support communications
- Improve our website and services
- Comply with our legal obligations
We will never sell your personal data to third parties. We will never use your data for unsolicited marketing without your explicit consent.
4. AI-Powered Services — Important Disclosure
Synect delivers AI automation projects using AI models and tools, including those provided by Synect.ai (our own platform) and third-party AI providers. By engaging our services, you acknowledge that:
- Deliverables are built using artificial intelligence tools
- Business information you share with us during scoping may be used to configure AI systems (e.g. knowledge bases, system prompts) that form part of your deliverable
- AI-generated outputs are reviewed by our team before delivery
- We do not use your business data to train third-party AI models
This disclosure is made in accordance with EU AI Act Article 50 (transparency obligations).
AI can produce inaccurate or incomplete results. We recommend that AI-generated outputs are reviewed by a qualified professional before you rely on them.
5. Who We Share Your Data With
We share data only where necessary to deliver our services. All third-party providers are contractually bound to protect your data.
| Recipient | Purpose | Location |
|---|---|---|
| Synect.ai (our platform) | Delivering AI automation builds | Ireland (EU) — Supabase eu-west-1 |
| Brevo (email provider) | Sending and receiving emails | EU |
| Usercentrics GmbH | Cookie-consent management (recording your banner choice) | EU (Germany) |
| Google Analytics / GA4 | Website analytics (with your consent) | EU (data residency configured) |
| N8N Cloud | Workflow automation (where applicable) | EU |
We do not transfer your personal data outside the European Economic Area (EEA) without appropriate safeguards in place.
6. How Long We Keep Your Data
We keep your personal data only for as long as necessary:
| Data type | Retention period |
|---|---|
| Enquiry / discovery call data (no project) | 6 months from last contact |
| Client project data | Duration of project + 2 years |
| Financial records (invoices, payments) | 7 years (Revenue / Companies Act requirement) |
| Website analytics data | 14 months (GA4 default) |
| Email communications | 2 years from project completion |
After these periods, data is securely deleted or anonymised.
7. Your Rights Under GDPR
As a data subject under the GDPR, you have the following rights. To exercise any of them, contact us at hello@synectgroup.com. We will respond within 30 days.
- Right of Access — Request a copy of the personal data we hold about you
- Right to Rectification — Ask us to correct inaccurate or incomplete data
- Right to Erasure — Ask us to delete your personal data (“right to be forgotten”)
- Right to Restriction — Ask us to limit how we use your data
- Right to Portability — Receive your data in a structured, machine-readable format
- Right to Object — Object to processing based on legitimate interests
- Right to Withdraw Consent — Where we rely on consent, you can withdraw it at any time without affecting prior processing
8. Cookies & Consent
Our website uses cookies. We use:
- Strictly necessary cookies — Required for the website to function (no consent needed)
- Analytics cookies — To understand how visitors use our site (consent required)
Consent management (Usercentrics)
We use Usercentrics (Usercentrics GmbH, Germany) to present our cookie banner and record your consent choice. The consent record itself is strictly necessary and does not require separate consent. No non-essential cookies or trackers run until you opt in via the banner.
Analytics (Google Analytics 4)
With your consent, we load Google Analytics 4 (provider:
Google Ireland Ltd). GA4 sets _ga and _ga_<id>
cookies (approximately 13-month lifetime) to measure how visitors use the
site. It does not log your full IP address, and we do not use this data to
identify you personally. Until you click “Accept”, Google Analytics does not
load and makes no requests.
You can withdraw or change your consent at any time by selecting “Cookie settings” in the footer to reopen the banner, or by adjusting your browser settings. We do not use advertising or cross-site tracking cookies.
9. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. These include:
- HTTPS encryption on all web communications
- Access controls limiting who can view client data
- Secure EU-based data storage
- Regular review of our data handling practices
In the event of a personal data breach that is likely to affect your rights, we will notify the Irish Data Protection Commission (DPC) within 72 hours and inform affected individuals without undue delay, in accordance with GDPR Article 33.
10. Legal Basis Summary
| Processing activity | Legal basis |
|---|---|
| Responding to enquiries | Contract |
| Delivering AI automation projects | Contract |
| Client communications | Contract / Legitimate Interests |
| Website analytics | Consent |
| Security and fraud prevention | Legitimate Interests |
| Financial record-keeping | Legal obligation |
11. Your Right to Complain
If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC):
Data Protection Commission, 6 Pembroke Row, Dublin 2, D02 X963, Ireland.
Website: www.dataprotection.ie · Phone: +353 (0)1 765 0100
We would, however, appreciate the opportunity to address your concerns before you contact the DPC — please reach out to us first at hello@synectgroup.com.
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. For significant changes, we will notify active clients directly by email. We recommend reviewing this policy periodically.
13. Contact Us
For any questions about this Privacy Policy or how we handle your data:
Synect Limited, The Tara Building, 11–15 Tara Street, Dublin 2, D02 RY83,
Ireland.
Email: hello@synectgroup.com · Website: synect.tech