Skip to main content
SyncHQ Pro™Every Customer. One AI Platform.
Back to Legal

DPDPA 2023 Compliance

How SyncHQ Pro™ complies with India's Digital Personal Data Protection Act, 2023

Last updated: February 2026

What is the DPDPA 2023?

The Digital Personal Data Protection Act, 2023 (DPDPA) is India's comprehensive data protection law. It regulates how organizations collect, store, process, and share personal data of individuals (Data Principals) in India. SyncHQ Pro is committed to full compliance with the DPDPA.

Your Rights as a Data Principal

  • Right to access your personal data we hold

  • Right to correction and erasure of your data

  • Right to grievance redressal

  • Right to nominate another person to exercise your rights

  • Right to withdraw consent at any time

Lawful Basis for Processing

We process your personal data based on your explicit consent provided during account registration and service usage. You may withdraw consent at any time by contacting our Data Protection Officer or using the account settings in SyncHQ Pro.

Data We Collect

  • Account information: name, email, phone number, company name

  • Business data: customer records, job details, invoices (stored on your behalf)

  • Usage data: feature usage, login timestamps, device information

  • Payment data: processed securely by Stripe/Razorpay (we do not store card numbers)

Data Storage & Security

  • Data stored on Microsoft Azure infrastructure

  • AES-256 encryption at rest

  • TLS 1.2+ encryption in transit

  • Regular security audits and vulnerability assessments

  • Access controls with role-based permissions

Cross-Border Data Transfer

Your data may be processed on Azure servers outside India for service delivery purposes. Any cross-border transfers comply with DPDPA Section 16 requirements and are protected by appropriate security measures.

Data Retention

We retain your personal data only for as long as necessary to provide our services and comply with legal obligations. Upon account deletion, your data is permanently removed within 30 days, except where retention is required by law.

Grievance Redressal

If you have concerns about how we handle your data, contact our Data Protection Officer at privacy@servicesynchq.com. We will respond to your grievance within 7 business days.

Contact Our Data Protection Officer

For any DPDPA-related queries, data access requests, or grievances:

Email: privacy@servicesynchq.com

Company: DECISYN™