Privacy Policy

Introduction

Synthica is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our synthesis laboratory services, visit our website, or communicate with us.

We comply with the Personal Data Protection Act 2012 (PDPA) of Singapore and follow data protection principles in all our operations. By engaging with our services, you consent to the data practices described in this policy.

For questions about this policy or our data practices, please contact us at [email protected]

Data We Collect

We collect personal data that you provide directly to us and information automatically collected when you use our services or visit our website.

Information You Provide

• Contact Information: Name, email address, phone number, business address, and job title when you submit inquiries or engage our services.
• Business Information: Company name, industry sector, operational details you share during element assessment or synthesis consultations.
• Communication Records: Content of messages, emails, and phone conversations with our laboratory team.
• Service Engagement Data: Information about the services you request, project specifications, and synthesis requirements.

Information Collected Automatically

• Website Usage: IP address, browser type, device information, pages visited, time spent on pages, referring website addresses.
• Cookies and Tracking: We use cookies and similar technologies to understand website usage and improve your experience. See our Cookie Policy for details.
• Analytics Data: Aggregated statistics about website traffic and user behavior through analytics services.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent: You have given clear consent for us to process your personal data for specific purposes.
• Contract: Processing is necessary to fulfill our service agreement with you or to take steps at your request before entering into an agreement.
• Legitimate Interest: Processing is necessary for our legitimate business interests, such as improving our services, provided these interests do not override your rights and freedoms.
• Legal Obligation: Processing is necessary to comply with Singapore law or other applicable regulations.

How We Use Your Data

We use your personal data for the following purposes:

Service Delivery

• Conducting element assessments and synthesis implementations as requested
• Communicating about your projects and providing updates
• Delivering training and documentation for implemented systems
• Providing ongoing support under enterprise laboratory platform engagements

Business Operations

• Responding to inquiries and managing customer relationships
• Processing service agreements and invoicing
• Maintaining records of our business relationships
• Improving our synthesis methodology and service quality

Marketing Communications

• Sending information about our services if you have opted in
• Sharing relevant insights about AI synthesis developments
• Inviting you to laboratory events or webinars

You can opt out of marketing communications at any time by contacting us or using unsubscribe links in our emails.

Legal and Security

• Complying with legal obligations and regulatory requirements
• Protecting our rights and interests in legal proceedings
• Detecting and preventing fraud or security issues
• Ensuring the security and integrity of our systems and services

Data Sharing and Disclosure

We may share your personal data with the following parties:

Service Providers

We engage third-party service providers to support our operations, including hosting services, analytics providers, communication platforms, and professional advisors. These providers are bound by data protection agreements and can only use your data as instructed by us.

AI Platform Partners

When implementing synthesis solutions, we may need to share relevant data with AI platform providers to configure and operate systems. We ensure these partners maintain appropriate security measures and comply with data protection requirements.

Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or if we believe such action is necessary to comply with legal obligations, protect our rights, or ensure user safety.

We do not sell your personal data to third parties.

Data Security

We implement comprehensive security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. Our security practices include:

• Encryption: Data is encrypted both in transit and at rest using industry-standard protocols.
• Access Controls: Strict access limitations ensure only authorized personnel can access personal data.
• Security Monitoring: Continuous monitoring systems detect and respond to potential security threats.
• Regular Audits: Periodic security assessments and updates to maintain protection standards.
• Staff Training: Our team receives regular training on data protection and security best practices.

While we maintain robust security measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but remain committed to protecting your data using reasonable and appropriate measures.

Data Retention

We retain your personal data for as long as necessary to fulfill the purposes described in this policy or as required by law. Retention periods vary depending on the type of data and purpose:

• Client Records: Maintained for seven years after project completion for business and legal purposes.
• Communication Records: Retained for three years to support ongoing client relationships and service quality.
• Marketing Data: Kept until you opt out or request deletion, whichever occurs first.
• Website Analytics: Aggregated data retained indefinitely; individual data purged after 26 months.

After retention periods expire, we securely delete or anonymize personal data so it can no longer identify you.

Your Rights

Under Singapore PDPA and applicable data protection laws, you have the following rights regarding your personal data:

• Access: Request access to the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete personal data.
• Withdrawal of Consent: Withdraw your consent for data processing where we rely on consent as the legal basis.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Data Portability: Receive your personal data in a structured, commonly used format.
• Object to Processing: Object to processing based on legitimate interests.
• Restrict Processing: Request that we temporarily stop processing your data in certain circumstances.

To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days.

You also have the right to lodge a complaint with the Personal Data Protection Commission (PDPC) in Singapore if you believe we have not handled your personal data appropriately.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your experience and understand usage patterns. For detailed information about our cookie practices, including the types of cookies we use and how to manage your preferences, please review our Cookie Policy.

You can control cookies through your browser settings, though disabling certain cookies may affect website functionality.

International Data Transfers

Your personal data is primarily stored and processed in Singapore. If we need to transfer data to other countries for service delivery or business operations, we ensure appropriate safeguards are in place, including:

• Using service providers in countries with adequate data protection standards
• Implementing contractual protections such as Standard Contractual Clauses
• Ensuring compliance with cross-border data transfer regulations

Children's Privacy

Our services are designed for businesses and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If we discover we have inadvertently collected such data, we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When we make significant changes, we will notify you by posting the updated policy on our website with a new "Last Updated" date.

We encourage you to review this policy regularly to stay informed about how we protect your personal data.

Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: