Privacy Policy

We protect your data with HIPAA, GDPR, and enterprise-grade security. This policy explains what we collect, how we use it, and your rights.

Effective date: September 17, 2025

1. Overview

AiSynk provides direct, enterprise-grade integrations designed to minimize latency and maximize compliance. We process data as a service provider and handle personal information in accordance with HIPAA, GDPR, and applicable privacy laws.

2. Information We Collect

  • Account and contact data: name, company, job title, email, phone.
  • Usage and device data: log data, diagnostics, analytics, and security telemetry.
  • Integration metadata: system identifiers, configuration details, and operational logs necessary to deliver the service.
  • Customer content: data you transmit through enabled integrations. We process this under your instructions and applicable agreements.

3. How We Use Information

  • Provide and maintain the services, including deployment, monitoring, and support.
  • Ensure security, fraud prevention, and abuse detection.
  • Comply with legal obligations and industry standards (HIPAA, GDPR, SOC 2).
  • Improve performance, reliability, and user experience.
  • Communicate about product updates, billing, and service notifications.

4. Legal Bases for Processing (GDPR)

  • Performance of a contract and pre-contractual steps.
  • Legitimate interests in operating, securing, and improving the services.
  • Compliance with legal obligations.
  • Consent where required (e.g., certain marketing communications).

5. HIPAA

For healthcare customers, we act as a Business Associate under HIPAA and will execute a Business Associate Agreement (BAA) where applicable. Protected Health Information (PHI) is processed solely to provide contracted services and according to your documented instructions.

6. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy, to comply with legal obligations, resolve disputes, and enforce agreements. Customer content retention follows the terms of your agreement and configuration.

7. Sharing and Transfers

  • Service providers subject to confidentiality and security obligations.
  • Legal and regulatory authorities when required by law.
  • Corporate transactions (mergers, acquisitions) with appropriate safeguards.
  • Cross-border transfers under lawful mechanisms (e.g., SCCs where applicable).

8. Security

We implement administrative, technical, and physical safeguards, including encryption in transit, access controls, network segmentation, continuous monitoring, and regular security assessments, aligned to SOC 2 and sector best practices.

9. Your Rights

  • Access, correction, deletion, and portability (subject to law and agreements).
  • Restriction or objection to processing in certain circumstances.
  • Withdraw consent where processing is based on consent.

To exercise rights, contact us using the details below. We will verify requests consistent with applicable law.

10. Children

Our services are not directed to children under 16, and we do not knowingly collect personal information from them.

11. Changes to This Policy

We may update this Privacy Policy to reflect operational, legal, or regulatory changes. We will post the updated policy with a new effective date and, where required, provide additional notice.

12. Contact Us

For privacy or security inquiries, or to exercise your rights, contact us at:

Email: admin@rizzler.ai

Phone: +1 (214) 732-4227

Address: 123 Tech Plaza, Suite 400, San Francisco, CA 94105

Company contact details referenced from rizzdial.com.