Privacy policy

Last Updated: December 18, 2025

⚠️ BETA TESTING NOTICE: This service is currently in BETA TESTING phase. This Privacy Policy may be updated as the service develops. We will notify users of significant changes.

1. Introduction

This Privacy Policy describes how eSynapses ("we", "us", "our") collects, uses, and protects your personal data when you use our service.

Key Principles:

  • We collect only essential data necessary to provide the service
  • We do not sell or share your data with third parties (except as required for service operation)
  • You have rights under GDPR to access, correct, and delete your data
  • Your data is stored securely on EU servers

Contact for privacy matters: support@esynapses.com

2. Data Controller

The entity controlling your personal data has not been finalized and may change. Current contact:

  • Email: support@esynapses.com
  • Website: https://esynapses.com

3. What Data We Collect

3.1 Account Data

When you register for an account, we collect:

  • Email address (required for login and communication)
  • Password (stored encrypted, never in plain text)
  • Registration date
  • Account preferences

3.2 Usage Data

When you use the service, we collect:

  • Articles submitted for analysis (URL, content, metadata)
  • Analysis results (generated reports)
  • Usage statistics (number of analyses, dates)
  • Session data (login times, activity)

3.3 Technical Data

We automatically collect:

  • IP address (for security and analytics)
  • Browser type and version
  • Device information (operating system, screen size)
  • Cookies (session management, preferences)
  • Access logs (for security and debugging)

3.4 Payment Data (When Active)

If you make purchases:

  • Payment information is processed by third-party payment processors (e.g., Stripe)
  • We do not store credit card numbers
  • We only store: transaction ID, amount, date, status

4. How We Use Your Data

4.1 Service Provision

  • Create and manage your account
  • Process article analysis requests
  • Generate and deliver analysis reports
  • Manage credits and subscriptions

4.2 Communication

  • Send service-related notifications (analysis complete, low credits, etc.)
  • Respond to support requests
  • Send important updates about the service
  • Marketing communications (only with your consent)

4.3 Service Improvement

  • Analyze usage patterns to improve features
  • Debug technical issues
  • Develop new features
  • Improve AI models and methodology

4.4 Legal Compliance

  • Comply with legal obligations
  • Respond to legal requests
  • Protect against fraud and abuse
  • Enforce Terms of Service

5. Legal Basis for Processing (GDPR)

Purpose Legal Basis
Account creation and management Contract performance
Service provision (analysis) Contract performance
Payment processing Contract performance
Service improvement Legitimate interest
Marketing communications Consent
Legal compliance Legal obligation

6. Data Sharing & Third Parties

6.1 When We Share Data

We may share your data with:

  • AI Service Providers (e.g., Anthropic, OpenAI) - for article analysis
    • Only article content is sent (no personal identification)
    • Subject to their privacy policies
  • Hosting Providers (servers in EU)
    • Data stored securely on EU servers
    • GDPR-compliant providers
  • Payment Processors (e.g., Stripe)
    • Only when you make purchases
    • Subject to their privacy policies
  • Legal Authorities
    • Only when legally required
    • Court orders, law enforcement requests

6.2 When We DON'T Share Data

We DO NOT:

  • Sell your data to third parties
  • Share your data for advertising purposes
  • Provide data to data brokers
  • Use your data for unrelated purposes

7. Data Security

7.1 Security Measures

  • Encryption: Passwords encrypted, HTTPS for all connections
  • Access Control: Limited employee access to data
  • Server Security: EU servers with industry-standard security
  • Regular Backups: Data backed up regularly
  • Monitoring: Security monitoring and logging

7.2 Beta Testing Risks

During BETA testing:

  • Security measures are still being refined
  • Data loss or breaches may occur (though we work to prevent them)
  • We recommend not submitting highly sensitive information

8. Data Retention

8.1 How Long We Keep Data

Data Type Retention Period
Account data Until account deletion + 30 days
Analysis results Until account deletion + 30 days
Payment records 7 years (legal requirement)
Access logs 90 days
Support tickets 2 years

8.2 Account Deletion

When you delete your account:

  • Account data deleted within 30 days
  • Analysis results deleted within 30 days
  • Payment records retained for legal compliance (7 years)
  • Anonymized usage data may be retained for analytics

9. Your Rights (GDPR)

Under GDPR, you have the right to:

9.1 Access

Right to access your data

  • Request a copy of all personal data we hold about you
  • We will provide data in portable format (JSON, CSV)
  • Free of charge, within 30 days

9.2 Rectification

Right to correct your data

  • Request correction of inaccurate data
  • Update your email, password, preferences in account settings

9.3 Erasure ("Right to be Forgotten")

Right to delete your data

  • Request deletion of your account and data
  • We will delete within 30 days (except legally required retention)
  • Contact: support@esynapses.com

9.4 Restriction of Processing

Right to limit how we use your data

  • Request we stop processing your data (but keep it stored)
  • Applies in specific circumstances (disputed accuracy, unlawful processing, etc.)

9.5 Data Portability

Right to receive your data in portable format

  • Request your data in JSON or CSV format
  • Transfer to another service

9.6 Object to Processing

Right to object to certain processing

  • Object to marketing communications (opt-out anytime)
  • Object to processing based on legitimate interest

9.7 Withdraw Consent

Right to withdraw consent

  • Withdraw consent for marketing, cookies, etc.
  • Does not affect prior processing based on consent

9.8 Lodge a Complaint

Right to complain to supervisory authority

  • Slovenia: Information Commissioner (www.ip-rs.si)
  • Your country's data protection authority

To exercise your rights, contact: support@esynapses.com

10. Cookies

10.1 What Cookies We Use

Cookie Type Purpose Duration
Session Cookie Keep you logged in Until logout or 30 days
Preference Cookie Remember your settings 1 year
Consent Cookie Remember you accepted cookies 1 year
Analytics Cookie (if enabled) Usage statistics 2 years

10.2 Managing Cookies

  • You can disable cookies in your browser settings
  • Essential cookies (session) are required for service to work
  • Non-essential cookies require your consent

11. Children's Privacy

The service is not intended for children under 16.

  • We do not knowingly collect data from children under 16
  • If we learn we have collected such data, we will delete it
  • If you believe your child has provided data, contact us immediately

12. International Data Transfers

Your data may be transferred to:

  • AI Service Providers (may be outside EU)
    • Only article content sent (no personal identification)
    • Adequate safeguards in place (standard contractual clauses)
  • Payment Processors (if outside EU)
    • GDPR-compliant providers
    • Adequate safeguards in place

Primary data storage: EU servers

13. Changes to This Policy

We may update this Privacy Policy as the service develops.

  • Significant changes: We will notify you by email
  • Minor changes: Posted on website with updated date
  • Continued use after changes = acceptance of new policy

Always check the "Last Updated" date at the top.

14. Contact Us

For privacy-related questions or to exercise your rights:

  • Email: support@esynapses.com
  • Website: https://esynapses.com

Response time: We aim to respond within 7 days, and fulfill requests within 30 days (as required by GDPR).

© 2024 eSynapses. All rights reserved.
Last Updated: December 18, 2024