Privacy Policy

Last updated: November 2025

Introduction

Sinas B.V. ("Sinas", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our backend-as-a-service platform.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Name and email address
  • Company name and billing information
  • Authentication credentials

1.2 Usage Data

We automatically collect information about your use of our services:

  • API requests and responses (excluding sensitive data)
  • Service usage metrics and performance data
  • Error logs and debugging information
  • Device and browser information

1.3 Customer Data

Data you store in our databases, file storage, or process through our APIs remains your property. We process this data solely to provide our services to you.

2. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our services
  • Process your transactions and send related information
  • Send technical notices, updates, and security alerts
  • Respond to your comments and questions
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and fraud

3. Data Storage and Security

All data is stored exclusively in EU data centers. We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption at rest and in transit (TLS 1.3)
  • Regular security audits and penetration testing
  • Access controls and authentication measures
  • Automated backups and disaster recovery procedures
  • SOC 2 Type II and ISO 27001 compliance

4. Data Sharing and Disclosure

We do not sell your personal data. We may share information only in the following circumstances:

  • Service Providers: With third-party vendors who help us operate our platform (e.g., hosting providers, payment processors)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

5. Your Rights (GDPR)

Under GDPR, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a machine-readable format
  • Object: Object to certain processing of your data
  • Restriction: Request restriction of processing

To exercise these rights, contact us at privacy@sinas.eu

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Account data is deleted within 30 days of account closure, unless required by law.

7. Cookies and Tracking

We use essential cookies to operate our website. We do not use advertising or tracking cookies. You can control cookie preferences through your browser settings.

8. International Data Transfers

All data processing occurs within the European Economic Area (EEA). We do not transfer personal data outside the EEA.

9. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes via email or through our platform.

11. Contact Us

For questions about this Privacy Policy or our privacy practices, contact:

Sinas B.V.
Data Protection Officer
Email: privacy@sinas.eu
Address: [EU Address]