Privacy Policy

Last updated: May 13, 2026

1. Introduction

Welcome to SyncFlo. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our workforce management platform.

By using SyncFlo, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you provide directly to us, including but not limited to:

  • Account details such as name, email address, phone number (if provided), and job-related information
  • Department, site, and organizational information used to manage assignments and approvals
  • Information you enter while using the platform (e.g., attendance, leave/approvals, tickets, assignments)
  • Files and other content you upload or attach while using the platform
  • Authentication credentials, which are handled securely by Supabase

2.2 Usage Information

We automatically collect certain information when you use our platform:

  • Log data (IP address, approximate location derived from IP, browser type, and access times)
  • Device information (device type, operating system, and browser version)
  • Usage patterns and feature interactions
  • Security and session data used for multi-device sign-in

2.3 Business Information

As a workforce management platform, we may collect:

  • Attendance and time tracking data
  • Leave requests and approvals
  • Expense claims and financial information
  • Project assignments and resource allocation
  • Ticket and service request information
  • Performance metrics and evaluations

3. How We Use Your Information

We use the collected information for various purposes:

  • To provide, maintain, and improve our workforce management services
  • To process and manage attendance, leave requests, and expense claims
  • To facilitate communication between employees and management
  • To generate reports and analytics for organizational purposes
  • To authenticate users and ensure platform security
  • To send notifications, updates, and important announcements
  • To comply with legal obligations and enforce our terms of service
  • To detect, prevent, and address technical issues and security threats

4. Data Storage and Security

We implement appropriate technical and organizational security measures to protect your personal information:

  • Data encryption in transit and at rest
  • Secure authentication and access controls
  • Regular security audits and vulnerability assessments
  • Role-based access control to limit data exposure
  • Secure cloud infrastructure with industry-standard protections

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • Within Your Organization: Information may be accessible to authorized personnel within your organization based on their roles and permissions
  • Service Providers: We may share data with trusted third-party service providers who assist in operating our platform (e.g., cloud hosting, file storage, notification delivery, and communication tools)
  • Legal Requirements: We may disclose information if required by law or in response to valid legal requests
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred
  • With Your Consent: We may share information with your explicit consent

6. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal information (subject to legal and contractual obligations)
  • Portability: Request a copy of your data in a portable format
  • Objection: Object to certain processing activities
  • Withdrawal of Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact your organization's administrator or our support team using the contact information provided below.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to support core platform functions, and we use browser storage (including `localStorage`/`sessionStorage`) to keep your preferences and session state:

  • Authentication & Security: Cookies and session storage used by Supabase for sign-in and security
  • App Preferences: Local storage used to remember export settings, filters, and other in-app choices
  • Operational Data Flows: Temporary browser/session identifiers used to help keep multi-device sign-in stable

You can manage browser storage and cookies through your browser settings. Disabling storage may affect sign-in and some platform features.

8. Third-Party Services

Our platform may integrate with third-party services, including:

  • Supabase (authentication and data storage)
  • AWS S3 (file and attachment storage, including signed URL delivery)
  • OneSignal (push notification delivery) and related notification infrastructure
  • Email/communication services used to deliver messages and notifications
  • OpenAI (for optional AI assistance features within the platform, when enabled)

These third-party services have their own privacy policies. We encourage you to review their policies to understand how they handle your information.

9. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When your information is no longer needed, we will securely delete or anonymize it in accordance with our data retention policies.

10. Children's Privacy

SyncFlo is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. We take appropriate measures to ensure your information is protected in accordance with this Privacy Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

SyncFlo Support Team

Email: m.umar@darmassader.com

Please include "Privacy Policy Inquiry" in your subject line for faster processing.

← Back to Login

By using SyncFlo, you acknowledge that you have read and understood this Privacy Policy.