Privacy Policy.

Synthax Codes SRL (“Synthax”, “we”, “us”, “our”) is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your personal information when you visit synthax.codes or engage our services.

We are registered as a Moldova IT Park resident (SRL) in Chișinău, Republic of Moldova. Moldova’s data protection legislation is aligned with GDPR principles under EU Association Agreement commitments.

By using our website or services, you agree to the practices described in this policy. If you do not agree, please discontinue use of our website.

Information you provide directly

• Contact details — name, email address, phone number, and company name when you submit a contact form, book a call via Calendly, or email us directly.
• Project information — technical requirements, budget range, timelines, and business context shared during discovery calls, proposals, or engagements.
• Communication records — emails, messages, meeting notes, and documents exchanged during the course of a project or inquiry.
• Newsletter subscription — email address when you subscribe to our insights or updates.

Information collected automatically

• Analytics data — pages visited, time on site, referral source, and general geographic region via privacy-friendly analytics. We do not track individuals across websites.
• Technical data — IP address (anonymised), device type, operating system, browser version, and screen resolution for security monitoring and performance optimisation.
• Tool usage data — queries submitted to our free tools (DNS Lookup, SSL Checker, etc.) are processed in real-time and not stored or linked to your identity.

Information we do not collect

• Payment card numbers or banking details (all payments are processed by third-party providers).
• Social media profiles unless voluntarily shared.
• Data from children under the age of 16.
• Biometric data, health data, or any special category data.

We process your personal data for the following purposes:

• Service delivery — responding to inquiries, preparing proposals, executing project work, and communicating about active engagements.
• Business operations — invoicing, contract management, and maintaining records required by law.
• Website improvement — analysing aggregate usage patterns to improve content, performance, and user experience.
• Communication — sending project updates, relevant insights (only if subscribed), and responding to support requests.
• Security — protecting our website and services from abuse, fraud, and unauthorised access.
• Legal compliance — fulfilling obligations under applicable law, including tax and financial reporting.

We process data based on: (a) your consent, (b) performance of a contract, (c) our legitimate business interests, or (d) legal obligation. You may withdraw consent at any time by contacting us.

We do not sell, rent, or trade your personal data. We may share limited information with:

• Infrastructure providers — hosting (DigitalOcean), CDN (Cloudflare), and email delivery services that process data on our behalf under strict contractual obligations.
• Scheduling tools — Calendly processes your name and email when you book a call. Calendly’s privacy policy governs their handling of your data.
• Analytics — privacy-friendly analytics that do not use personal identifiers or track users across websites.
• Payment processors — invoicing and payment are handled by third-party providers. We never see or store your card details.
• Legal authorities — only when required by law, court order, or to protect against fraud or security threats.

All third-party providers are selected for their privacy practices and are contractually required to protect your data.

Essential cookies

Required for basic website functionality: session management, security tokens (Cloudflare Turnstile), and load balancing. These cannot be disabled without breaking the site.

Analytics cookies

Privacy-friendly analytics that track aggregate page views and referral sources without personal identifiers. These respect your browser’s Do Not Track setting.

Third-party embeds

When you interact with embedded content (e.g., Calendly scheduling widget), those services may set their own cookies. These are governed by their respective privacy policies.

What we don’t use

We do not use advertising cookies, retargeting pixels, social media trackers, or any cookie-based profiling. We do not participate in ad networks or data exchanges.

Regardless of your location, you have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you.
• Correction — request correction of inaccurate or incomplete data.
• Deletion — request deletion of your personal data, subject to legal retention requirements.
• Portability — receive your data in a structured, machine-readable format.
• Restriction — request that we limit processing of your data in certain circumstances.
• Objection — object to processing based on legitimate interests.
• Withdraw consent — withdraw previously given consent at any time.

To exercise any of these rights, email contact@synthax.codes. We will respond within 30 days.

• Inquiry data — contact form submissions and email inquiries are retained for 24 months after the last interaction, then deleted.
• Project records — contracts, invoices, and project documentation are retained for 5 years for legal and tax compliance, as required by Moldovan law.
• Newsletter subscribers — email addresses are retained until you unsubscribe. Every email includes an unsubscribe link.
• Analytics data — aggregate analytics are retained indefinitely but contain no personal identifiers.
• Tool queries — queries to our free tools are processed in real-time and not stored.

We implement appropriate technical and organisational measures to protect your data:

• All data transmitted to and from our website is encrypted via TLS (HTTPS).
• Our infrastructure is protected by Cloudflare’s DDoS mitigation and Web Application Firewall.
• Access to personal data is restricted to personnel who require it for their role.
• We conduct regular security reviews of our systems and processes.
• Third-party providers are evaluated for their security practices before engagement.

No system is 100% secure. If you believe your data has been compromised, contact us immediately at contact@synthax.codes.

We may update this privacy policy to reflect changes in our practices or legal requirements. Material changes will be communicated via a notice on our website. The “last updated” date at the top of this page indicates when the policy was last revised.

Continued use of our website after changes constitutes acceptance of the updated policy.

For any questions about this privacy policy or to exercise your data rights:

We aim to respond to all privacy inquiries within 5 business days.