Synapic AI
Sign in

Privacy Policy

Last updated: April 10, 2026

This Privacy Policy describes how Synapic AI (the “Service”) handles personal information when you use our web application and related features. The organization that operates this deployment for your team is responsible for how the Service is used in your environment; contact your administrator for organization-specific questions.

What the Service is

The Service is a central workspace for media planning, campaign and client configuration, collaboration, and AI-assisted workflows. Depending on your access, it may include tools for media strategy, reporting, shared campaign views, configuration of media channels and integrations, and activity logging. Features available to you depend on your account and permissions.

Information we process

We process information in order to run and secure the Service, including:

  • Account and profile data: such as your email address, name or display name, role, and authentication identifiers provided through our identity provider (Supabase Auth).
  • Content you or your organization provide: campaign and media-plan data, client records, configuration (for example media channels, placements, integrations), documents, prompts, and other materials you upload or enter into the workspace.
  • Technical and usage data: server and application logs (which may include IP addresses, device or browser type, timestamps, and requested URLs), security-related events, and product analytics to understand how the Service is used and to improve reliability and performance.
  • Shared links: where your organization uses token-based links to share specific campaigns or assets with recipients, access is limited to the content those links expose; do not share links outside your intended audience.

AI features

When you use AI-powered features, your inputs and relevant context may be sent to underlying model providers (for example through Vercel AI SDK or configured API providers) to generate responses. Do not submit personal data or confidential information unless your organization has approved that use. Outputs may be inaccurate or incomplete and should be reviewed by qualified people before business or legal reliance.

Cookies and similar technologies

We use cookies and similar technologies that are necessary for authentication and session management (for example Supabase session cookies). We may use analytics tools (such as Vercel Analytics) that collect aggregated usage information. You can control cookies through your browser settings; disabling essential cookies may prevent sign-in from working.

Why we process information

We process information to:

  • Provide, operate, and improve the Service;
  • Authenticate users and enforce access controls and roles;
  • Maintain security, prevent abuse, and troubleshoot issues;
  • Comply with legal obligations and respond to lawful requests where applicable.

Service providers

We rely on subprocessors that host or support the Service, including Supabase (authentication and database), Vercel (hosting and analytics), and AI infrastructure as configured for your deployment. These providers process data only as needed to deliver their services, under appropriate agreements.

Retention

We retain information for as long as needed to provide the Service and as required by law or your organization's settings. Backup, caching, and deletion timelines may vary by system component.

Security

We implement technical and organizational measures appropriate to the Service, including encryption in transit where supported, access controls, and secure credential handling. No method of transmission or storage is completely secure; use strong passwords and protect your account.

Your rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your personal information, or to object to certain processing. To exercise these rights, contact your workspace administrator or the data protection contact for your organization. We may need to verify your identity before fulfilling a request.

International transfers

Data may be processed in countries where our service providers operate. When personal data is transferred across borders, we rely on appropriate safeguards as required by applicable law.

Children

The Service is not directed at children under 16, and we do not knowingly collect personal information from children.

Changes

We may update this Privacy Policy from time to time. We will post the updated version on this page and revise the “Last updated” date. Continued use of the Service after changes constitutes acceptance of the updated policy where permitted by law.

Contact

For privacy questions related to your organization's use of the Service, contact your administrator. For product-level inquiries about this deployment, use the contact channel your organization provides.