Privacy & GDPR Policy

Overview

Synapse Flux Lab (project in development) (“we”, “us”) is committed to protecting the personal data that prospective customers and visitors share with us. This Privacy & GDPR Policy explains what information we collect through sflwebsite, how we use it, and the safeguards we apply in line with the EU General Data Protection Regulation (GDPR).

Data Controller

Synapse Flux Lab (project in development) is the controller responsible for personal data collected through this website. You can reach our privacy team by using the contact form on our homepage.

Personal Data We Collect

We process the following categories of personal data when you interact with us:

  • Contact details you provide, including your name, email address, job title, company name, and message.
  • Any additional information you voluntarily share in the message field.
  • Your consent decision that authorises us to follow up about RAG Loom.
  • Language preference stored locally in your browser so the site remembers whether to display English or German content.
  • Technical data generated by our security tools, such as Cloudflare Turnstile tokens, IP address, and basic browser metadata used to prevent automated abuse.

How We Use Your Data

  • Respond to your enquiry and provide information you requested about RAG Loom.
  • Send onboarding details, waitlist updates, or product announcements when you give consent.
  • Protect our systems and contact forms against fraudulent or malicious activity.
  • Maintain internal records that demonstrate how we handle inbound requests and consents.

Legal Basis for Processing

  • Consent (Art. 6(1)(a) GDPR) for follow-up communication, onboarding emails, and marketing updates.
  • Legitimate interest (Art. 6(1)(f) GDPR) to respond to business enquiries, operate our website, and secure our services.
  • Compliance with legal obligations (Art. 6(1)(c) GDPR) when we must retain information to meet regulatory or tax requirements.

Retention

We store contact enquiries for up to 24 months after our last interaction, unless you request earlier deletion. If we enter into a commercial relationship, we may store relevant communications for the duration of the partnership and applicable limitation periods. You can clear your language preference at any time by deleting Synapse Flux Lab (project in development) data from your browser's local storage.

Service Providers and Processors

We share personal data only with carefully selected processors who support our services under data processing agreements:

  • Cloudflare Pages hosts this website and routes traffic securely through global edge locations.
  • Cloudflare Turnstile protects the contact form against bots by processing technical data (such as IP address and device characteristics).
  • Google Fonts supplies typography assets, which requires your IP address to deliver files from servers that may be located outside the EU/EEA.

Each provider is contractually obliged to safeguard your data and rely on appropriate transfer mechanisms such as Standard Contractual Clauses when data leaves the EU/EEA.

International Transfers

When service providers operate in countries without an EU adequacy decision, we implement additional safeguards including Standard Contractual Clauses and technical controls to ensure your personal data receives an equivalent level of protection.

Your GDPR Rights

Subject to the conditions of the GDPR, you have the right to:

  • Request access to the personal data we hold about you.
  • Request correction of inaccurate or incomplete personal data.
  • Request deletion of your personal data (“right to be forgotten”).
  • Request restriction of processing in certain circumstances.
  • Receive your data in a structured, commonly used format and transmit it to another controller.
  • Object to processing based on legitimate interest and withdraw consent at any time.
  • Lodge a complaint with your local data protection authority if you believe we process your data in breach of the GDPR.

How to Exercise Your Rights

Submit your request via our contact form. We may need to verify your identity before completing your request. We aim to respond within 30 days and will inform you if additional time is necessary.

Policy Updates

We may update this policy to reflect changes in our services or legal requirements. Significant updates will be highlighted on this page, and we will adjust the “Last updated” date accordingly.

Contact

If you have any questions about this Privacy & GDPR Policy, or about how Synapse Flux Lab (project in development) handles your data, please reach out through our contact form.