Privacy Policy
Last updated: April 5, 2026
AI Syndicate ("Syndicate Gate", "we", "us", or "our"), incorporated as 17232063 CANADA INC., operates the Syndicate Gate software platform and related services located at syndicategate.ca (the "Service"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how your personal data is collected, used, disclosed, and protected when you visit or use our Service.
1. Introduction
This Privacy Policy applies to all users of Syndicate Gate, including visitors to our marketing website, registered users of our platform, and developers who integrate with our API. By using Syndicate Gate, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not use our Service.
2. Information We Collect
We collect information to provide better services to all our users. The types of information we collect include:
- Account Data: Information such as your name, email address, company name, and billing information when you register for an account or upgrade to a paid plan.
- API Credentials: API keys and access tokens that you generate through our dashboard. We store these securely using SHA-256 hashing.
- Usage Data: We collect telemetry data on your usage of our APIs, including token counts, latency metrics, endpoints accessed, and provider selection. This data is used for billing, rate limiting, and service optimization.
- Technical Data: IP addresses, browser types, operating system information, device information, and referring URLs used to access our services.
- Communication Data: Any communications you send to us, including support requests, feedback, and correspondence.
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our Service and user experience.
- Process transactions and send related information, including confirmations, invoices, and billing notifications.
- Send technical notices, updates, security alerts, and support messages.
- Respond to comments, questions, and requests for customer service.
- Monitor and analyze trends, usage, and activities in connection with our services to prevent fraud, abuse, and ensure security.
- Enforce our terms of service and manage user accounts.
- Comply with legal obligations and respond to lawful requests from authorities.
4. Zero-Retention Logging & Data Processing
Important: As a runtime execution enforcement service, Syndicate Gate routes approved AI requests to upstream AI providers (e.g., OpenAI, Anthropic, Google). We want to be clear about our data handling practices:
- No Training on Your Data: We do not train our own models or any third-party models on your prompts, completions, or any content you process through our Service.
- Zero-Retention by Default: Prompt and completion bodies are processed in memory and are not stored persistently in our databases. By default, we do not retain the actual content of your AI requests.
- Optional Audit Logging: Users may optionally enable audit logging for compliance purposes, which stores request metadata (timestamps, API keys, token counts, provider) but not payload content.
- Data Residency: Our infrastructure ensures data residency in your chosen region, with strict access controls.
5. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to track the activity on our Service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
- Essential Cookies: Required for authentication and maintaining your session.
- Analytics Cookies: Used to understand how users interact with our website (e.g., Google Analytics).
- Marketing Cookies: Used to track visitors across websites for advertising purposes.
6. Sharing of Information
We do not sell, trade, or otherwise transfer your personal information to outside parties except in the following circumstances:
- Service Providers: We may share information with third-party vendors who assist us in operating our Service, conducting our business, or serving our users (e.g., Stripe for billing, Resend for email delivery, cloud hosting providers). These parties have agreed to keep your information confidential.
- Legal Requirements: We may disclose information when required by law, such as in response to subpoenas, court orders, or other legal processes.
- Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.
- Upstream AI Providers: When you use our Service, your prompts are necessarily transmitted to the AI providers you select (e.g., OpenAI, Anthropic). This is necessary for the Service to function and is governed by the terms of those providers.
7. Data Security
We implement appropriate technical and organizational security measures to protect your personal information, including:
- Encryption of sensitive data in transit and at rest.
- API keys stored using SHA-256 hashing (never stored in plaintext).
- Row-level security (RLS) for multi-tenant data isolation.
- Regular security audits and vulnerability assessments.
- Access controls limiting employee access to personal information.
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.
8. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:
- Account Data: Retained for the duration of your account and for up to 30 days after account deletion for record-keeping.
- Billing Data: Retained for a minimum of 7 years as required by financial regulations.
- Usage Logs: Retained for 90 days for security and performance analysis.
- Audit Logs: If enabled, retained according to your selected retention period (default: 1 year).
9. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal information:
- Access: You may request a copy of the personal information we hold about you.
- Correction: You may request correction of inaccurate or incomplete personal information.
- Deletion: You may request deletion of your personal information, subject to legal retention requirements.
- Data Portability: You may request your data in a machine-readable format.
- Objection: You may object to certain processing of your personal information.
- Withdrawal of Consent: Where processing is based on consent, you may withdraw consent at any time.
To exercise these rights, please contact us at privacysyndicategate.ca.
10. International Data Transfers
Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. By using our Service, you consent to such transfer. We will take reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy.
11. Children's Privacy
Our Service is not intended for use by individuals under the age of 13 (or the age of digital consent in their jurisdiction). We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to remove that information from our servers.
12. Third-Party Services
Our Service may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of each third-party website, service, or application you visit.
13. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
14. Governing Law
This Privacy Policy shall be governed by and construed in accordance with the laws of the Province of Ontario, Canada, and the federal laws of Canada applicable therein, without regard to conflict of law provisions.
15. Contact Us
If you have any questions about this Privacy Policy, please contact us:
- Email: privacysyndicategate.ca
- Mail: 17232063 CANADA INC. (AI Syndicate), Toronto, Ontario, Canada