Privacy Policy

Last updated: 2026-04-30. Applies to the Platform iOS and macOS app, bundle app.synctogether.platform.

What we collect

• Email address — only when you create an account.
• User content you create in the app: notes, workflows, entity records, chat messages, calendar events.
• Authentication identifiers — a tenant ID and a user ID issued by our authentication service. We do not collect or use Apple's IDFA or device advertising identifiers.
• Diagnostic data — crash reports and performance metrics, anonymized, used to improve stability.

What we do not collect

• Location data.
• Health data.
• Browsing history outside the app.
• Third-party advertising identifiers.
• Contact list or address book.

Where data is stored

Personal data such as your notes, workflow drafts, and OAuth tokens for connected accounts is stored on your device and in your iCloud private database when iCloud is enabled. Multi-tenant data such as your entity records, CRM, and synced mail is stored on our self-hosted backend infrastructure that we operate ourselves; we do not use AWS, Azure, Google Cloud, or any third-party cloud provider for this storage.

Third-party services

If you connect Gmail, Outlook, Google Calendar, or Google Photos via OAuth, those services receive only the tokens you explicitly grant during their consent flow. We never see your account passwords. You can disconnect any connected service at any time in the app's Settings.

Sharing and sale of data

We do not sell your data. We do not share your data with advertisers, data brokers, or third parties for marketing purposes. Data leaves our infrastructure only when you explicitly request it (for example, when sending an email through your connected mail account).

Data retention and deletion

We retain your data for as long as your account is active. To request deletion of your account and all associated data, email support@synccy.com. We will process the deletion request within 30 days.

Children

Platform is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us so we can delete it.

Changes to this policy

If we materially change this policy, we will update the "Last updated" date above and, where required by law, notify you in the app.

Waitlist data on this website

When you join the waitlist on platform.synccy.com, we collect:

• Your email address.
• Submission timestamp.
• Hashed IP address (sha256 with a server-side salt, never plain IP) for GDPR-compliant consent record.
• User-agent string, for fraud detection.
• Consent text version you agreed to.

Waitlist data is stored in our own SQLite database on EU-located hardware. We do not share it with any third party. Deleted on request to support@synccy.com.

Contact

Questions about this policy: support@synccy.com.