Back to Home
Legal Documentation

Privacy Policy

SyncVeil is committed to protecting your privacy. We collect only the data necessary to provide secure services.

1. Information We Collect

We believe in data minimization. We only collect information that is strictly necessary to provide our services. The types of personal information we collect include:

  • Account Information: When you register, we collect your email address. This is used solely for authentication, account recovery, and critical security alerts. We do not require your real name or physical address.
  • Encrypted Content: Files you upload to the SyncVeil Vault are encrypted on your device (client-side encryption) before they are transmitted to our servers. We store the encrypted binary data but do not possess the decryption keys required to view the content.
  • Usage Logs: We maintain minimal access logs, including IP addresses and timestamps of login attempts. These logs are retained for 30 days solely to detect anomalous behavior and prevent brute-force attacks.
  • Payment Information: If you subscribe to a paid plan, payment processing is handled by our third-party provider (Stripe). SyncVeil does not store full credit card numbers or banking details.

2. Zero-Knowledge Architecture

What We Cannot See

We define our service by what we cannot see. Your password derives the encryption key for your data locally on your device. SyncVeil employees, contractors, and infrastructure providers cannot access your stored files, even if legally compelled, because we mathematically cannot decrypt them without your private key.

3. How We Use Your Information

We use the collected information for the following specific purposes:

  • To provide, operate, and maintain the SyncVeil platform.
  • To improve, personalize, and expand our services based on aggregate, non-identifiable usage patterns.
  • To communicate with you regarding updates, security alerts, and administrative messages.
  • To prevent fraudulent activity and ensure the security of our infrastructure.

4. Data Retention

We retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

5. Third-Party Sharing

We do not sell, trade, or otherwise transfer your personally identifiable information to outside parties for marketing purposes. We use trusted third-party infrastructure providers (such as AWS and Google Cloud) solely for hosting encrypted data blobs and running our application logic. These providers adhere to strict security certifications (SOC 2, ISO 27001).

6. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your personal data:

  • The right to access: You have the right to request copies of your personal data.
  • The right to rectification: You have the right to request that we correct any information you believe is inaccurate.
  • The right to erasure: You have the right to request that we erase your personal data, under certain conditions.
  • The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you.

7. Contact Us

If you have any questions about this Privacy Policy, please contact us:

privacy@syncveil.com

Last updated: October 25, 2025