Cookie Policy

1. Introduction

This Cookie Policy explains how Syntari International, Inc. ("Syntari," "we," "us," or "our") uses cookies and similar tracking technologies on our websites, platform, and services (collectively, the "Services").

This Policy should be read together with our Privacy Policy and Terms of Service.

By using our Services, you consent to the use of cookies as described in this Policy. Where required by law, we will obtain your explicit consent before placing non-essential cookies on your device.

Important: You can manage your cookie preferences at any time through our Cookie Preferences Center or your browser settings.

2. What Are Cookies and Similar Technologies?

2.1 Cookies

Cookies are small text files stored on your device (computer, tablet, or mobile) when you visit a website. They help websites remember your preferences, understand how you use the site, and improve your experience.

2.2 Similar Technologies

We also use similar technologies that function like cookies:

• Web beacons/Pixel tags: Tiny graphics with unique identifiers that track user behavior (e.g., email opens, ad impressions)

• Local storage: Technologies like HTML5 that store data locally on your browser

• Session storage: Temporary storage that exists only during a browsing session

• SDKs (Software Development Kits): Code integrated into mobile apps for analytics and functionality

• URL tracking: Parameters in URLs that track how you navigate our Services

• Fingerprinting: Techniques that identify devices based on configuration settings

For simplicity, we refer to all these technologies as "cookies" in this Policy unless specifically noted.

3. Types of Cookies We Use

We categorize cookies based on their purpose and who sets them:

3.1 By Purpose

3.2 By Party

• First-Party Cookies: Set by Syntari directly

• Third-Party Cookies: Set by our partners (Google, Stripe, HubSpot, etc.) to enable specific functionality or analytics

4. Detailed Cookie Categories

4.1 Strictly Necessary Cookies

These cookies are essential to provide you with Services and cannot be disabled.

Examples:

• Authentication: Remember your login status so you don't need to log in on each page

• Security: Detect and prevent fraudulent activity, protect against malicious attacks, secure transactions

• Load balancing: Distribute traffic across our servers for optimal performance

• Session management: Maintain your active session as you navigate the platform

• CSRF protection: Prevent cross-site request forgery attacks

• Payment processing: Enable secure Stripe payment transactions

Legal Basis (GDPR/UK GDPR): Necessary for contract performance (Art. 6(1)(b) GDPR)
Legal Basis (CCPA/CPRA): Exempt from "sale" definition as essential for service functionality

Third-Party Services:

• Stripe (payment processing): Stripe Cookie Policy

• Google OAuth (authentication): Google Privacy Policy

4.2 Performance & Analytics Cookies

Help us understand how visitors interact with our Services so we can improve functionality and user experience.

What We Track:

• Pages visited and time spent on each page

• Click paths and navigation patterns

• Error messages and technical issues

• Device type, browser type, operating system

• Referral sources (how you found us)

• Aggregated usage statistics

We Do NOT Track:

• Individual keystrokes or form input

• Screen recordings without explicit notification

• Cross-device tracking (unless consented)

Third-Party Services:

• Google Analytics: Google Analytics Privacy

  • IP anonymization enabled

  • Retention: 26 months (configurable)

  • Purpose: Traffic analysis, user behavior insights

Your Rights:

• Opt-out via Cookie Preferences Center

• Use browser "Do Not Track" signals (honored where technically feasible)

• Install Google Analytics Opt-Out Browser Add-on

Legal Basis (GDPR/UK GDPR): Consent (Art. 6(1)(a)) OR Legitimate interest (Art. 6(1)(f))
Legal Basis (CCPA/CPRA): Requires opt-out mechanism

4.3 Functional Cookies

Remember your preferences to personalize your experience.

Examples:

• Language preference: Display content in your preferred language

• Region settings: Show location-specific content and pricing

• Theme selection: Remember light/dark mode preference

• Saved filters: Remember your dashboard customizations

• Chat widget state: Maintain conversation history in support chat

• Video player settings: Remember volume, playback speed, subtitles

Duration: Typically 6 months to 2 years

Third-Party Services:

• Intercom (customer support chat): Intercom Privacy

Your Rights:

• Can be disabled via Cookie Preferences Center

• Note: Disabling may require re-selecting preferences on each visit

Legal Basis (GDPR/UK GDPR): Consent (Art. 6(1)(a))
Legal Basis (CCPA/CPRA): Requires opt-out mechanism

4.4 Targeting & Advertising Cookies

Used to deliver relevant advertisements and measure campaign effectiveness.

How They Work:

• Track your visits to our website and other sites

• Build a profile of your interests based on browsing behavior

• Deliver personalized ads on third-party platforms (Google, LinkedIn, Facebook)

• Measure ad performance (impressions, clicks, conversions)

• Prevent ad fraud and verify legitimate impressions

We Do NOT:

• Sell your personal data for monetary compensation

• Share data with data brokers

• Create profiles based on sensitive categories (health, religion, race) unless you explicitly provide such information

Third-Party Advertising Partners:

• Google Ads: Google Ads Privacy

• LinkedIn Insight Tag: LinkedIn Cookie Policy

• Facebook Pixel: Facebook Data Policy

• HubSpot: HubSpot Privacy Policy

Your Rights:

• Opt-Out Options:

  • Use our Cookie Preferences Center

  • Visit Digital Advertising Alliance Opt-Out

  • Visit Network Advertising Initiative Opt-Out

  • Use Google Ads Settings

  • Enable "Limit Ad Tracking" on mobile devices

California Residents (CCPA/CPRA):

• Do Not Sell or Share My Personal Information: Click here to opt-out

• This includes opting out of targeted advertising cookies

• We honor Global Privacy Control (GPC) signals automatically

Legal Basis (GDPR/UK GDPR): Consent (Art. 6(1)(a)) - Required before cookie placement
Legal Basis (CCPA/CPRA): Right to opt-out of "sale" or "sharing"

5. How Long Do Cookies Last?

We regularly review cookie durations to ensure they align with their intended purpose and are not retained longer than necessary.

6. Managing Your Cookie Preferences

6.1 Cookie Preferences Center

Manage your preferences through our Cookie Preferences Center:

Cookie Preferences Center ← Click to manage now

You can:

• Accept or reject cookies by category

• View detailed lists of cookies we use

• Access links to third-party privacy policies

• Update preferences at any time

Note: Your preferences are stored in a cookie (ironic, we know). If you clear all cookies, you'll need to reset your preferences.

6.2 Browser Settings

You can also control cookies through your browser settings:

• Chrome: Manage Cookies

• Firefox: Manage Cookies

• Safari: Manage Cookies

• Edge: Manage Cookies

Important: Blocking all cookies may prevent you from accessing essential features like login and payment processing.

6.3 Mobile App Settings

For our mobile applications (if applicable):

• iOS: Settings > Privacy > Tracking → Disable "Allow Apps to Request to Track"

• Android: Settings > Google > Ads → Opt out of Ads Personalization

6.4 Do Not Track (DNT)

Some browsers offer "Do Not Track" (DNT) signals. We honor DNT signals where technically feasible, particularly for analytics and advertising cookies.

Note: DNT implementation varies by browser and is not yet standardized.

6.5 Global Privacy Control (GPC)

We honor Global Privacy Control (GPC) signals automatically for users in jurisdictions where required (California, Colorado, Connecticut, Virginia, etc.).

If your browser sends a GPC signal, we will:

• Disable non-essential cookies

• Opt you out of data "selling" or "sharing"

• Apply your preference across all devices where we can identify you

Learn more: https://globalprivacycontrol.org/

7. Jurisdiction-Specific Rights

7.1 European Economic Area (EEA), UK, and Switzerland (GDPR/UK GDPR)

Your Rights:

• Access: Request a copy of personal data collected via cookies

• Rectification: Correct inaccurate data

• Erasure: Request deletion of your data ("right to be forgotten")

• Restriction: Limit how we process your data

• Portability: Receive your data in a machine-readable format

• Object: Object to processing based on legitimate interests

• Withdraw Consent: Withdraw cookie consent at any time

Legal Bases:

• Strictly necessary cookies: Contractual necessity (Art. 6(1)(b))

• All other cookies: Consent (Art. 6(1)(a)) or Legitimate interest (Art. 6(1)(f))

Data Transfers: When we transfer your data outside the EEA/UK, we use:

• Standard Contractual Clauses (SCCs)

• Adequacy decisions by the European Commission

• Other legally compliant transfer mechanisms

Contact Our Data Protection Officer (DPO):

• Email: dpo@syntari.ai

Supervisory Authority:

• EU residents: Contact your local Data Protection Authority

• UK residents: Information Commissioner's Office (ICO)

7.2 California, Colorado, Connecticut, Virginia, Utah (US State Laws)

Your Rights under CCPA/CPRA/CPA/CTDPA/VCDPA/UCPA:

Right to Know: Request details about personal information collected via cookies

Right to Delete: Request deletion of your personal information

Right to Opt-Out of Sale/Sharing: Opt out of "sale" or "sharing" of personal information for targeted advertising

• Click here: Do Not Sell or Share My Personal Information

Right to Correct: Request correction of inaccurate personal information

Right to Limit Use of Sensitive Personal Information: We do not use cookies to collect sensitive personal information

Non-Discrimination: We will not discriminate against you for exercising your privacy rights

Authorized Agent: You may designate an authorized agent to make requests on your behalf

How to Exercise Rights:

• Email: privacy@syntari.ai

Verification: We may verify your identity before fulfilling requests

Response Time: We aim to respond within 45 days (may extend to 90 days for complex requests)

7.3 Brazil (LGPD)

Your Rights:

• Confirmation of data processing

• Access to your data

• Correction of incomplete or inaccurate data

• Anonymization, blocking, or deletion

• Portability to another service provider

• Deletion of data processed with consent

• Information about public/private entities with whom we share data

• Information about the possibility of denying consent

Contact: privacy@syntari.ai

National Data Protection Authority (ANPD): https://www.gov.br/anpd

7.4 Canada (PIPEDA)

Your Rights:

• Access to personal information collected via cookies

• Request correction of inaccurate information

• Withdraw consent for non-essential cookies

Contact: privacy@syntari.ai

Privacy Commissioner of Canada: https://www.priv.gc.ca

7.5 Australia (Privacy Act)

Your Rights:

• Access and correct personal information

• Request deletion where not required for legal purposes

Contact: privacy@syntari.ai

Office of the Australian Information Commissioner (OAIC): https://www.oaic.gov.au

8. Third-Party Cookies and Services

We work with third-party service providers who may set their own cookies. We do not control these third-party cookies.

Current Third-Party Services:

We may update this list as we add or remove third-party services. Check this Policy regularly for the most current information.

9. Cookies and Children's Privacy

Our Services are not directed to children under 16 years of age (or under 13 in the United States). We do not knowingly collect personal information from children through cookies.

If you believe a child has provided us with personal information via cookies, contact us at privacy@syntari.ai and we will delete it promptly.

10. Security

We implement appropriate technical and organizational measures to protect data collected via cookies, including:

• Encryption in transit (TLS/SSL)

• Encryption at rest where appropriate

• Access controls and authentication

• Regular security assessments

• Vendor security requirements

However, no internet transmission is 100% secure. Use our Services at your own risk.

11. International Data Transfers

Syntari is based in the United States. When you use our Services, your data (including cookie data) may be transferred to, stored, and processed in:

• United States

• European Union (for EU customers)

• Other countries where our service providers operate

We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses (SCCs)

• Adequacy decisions

• Data Processing Agreements (DPAs)

12. Changes to This Cookie Policy

We may update this Cookie Policy periodically to reflect:

• Changes in our cookie practices

• New legal requirements

• Service improvements or new features

• Third-party service updates

When we make changes:

• We will update the "Last Updated" date at the top

• Material changes will be notified via:

  • Email to registered users

  • Prominent notice on our website

  • Cookie banner update requiring new consent (where required by law)

Your continued use of our Services after changes constitutes acceptance, unless law requires fresh consent.

13. Contact Us

Questions or Concerns? Contact us:

Email: privacy@syntari.ai
Mail: Syntari International, Inc.
Attn: Privacy Team
1 Marina Park Drive Suite 1410
Boston, MA 02210

Data Protection Officer (DPO): dpo@syntari.ai

14. Additional Resources

• Privacy Policy: https://syntari.ai/privacy

• Terms of Service: https://syntari.ai/terms

• Cookie Preferences Center: Manage Cookies

• Do Not Sell or Share My Personal Information (CCPA): Opt-Out

• Data Processing Agreement (DPA): https://syntari.ai/dpa

APPENDIX A: Detailed Cookie List

Strictly Necessary Cookies

Analytics & Performance Cookies

Functional Cookies

Advertising Cookies

Note: This list is representative and may not be exhaustive. Third parties may update their cookies. Check the Cookie Preferences Center for the most current list.