Privacy Policy for Synchronity

Last updated: May 28, 2026

Synchronity ("we", "our", or "us") provides AI-powered e-commerce infrastructure. This Privacy Policy describes how we collect, use, and share information when you interact with our platform, including our APIs, MCP servers, and ChatGPT Custom Actions.

1. Information We Collect

When you use Synchronity to search, shop, or checkout, we collect the following types of information:

• Account Info & Identifiers: Email address, User Identity Tokens (AIT), and authorization credentials.
• Transaction & Cart Info: Items added to your cart, prices, store metadata, and order totals.
• Shipping Information: Shipping names, physical addresses, postal codes, and email addresses provided during the checkout flow.
• Audit & System Logs: Request timestamps, IP addresses, user agents, API endpoints called, and audit logs to track permissions and secure delegation.

2. How We Use Your Information

We use the collected information for the following core purposes:

• To enable autonomous product search, cart synchronization, and checkout processes.
• To securely process checkouts and forward shipping information to the specific e-commerce store you are purchasing from.
• To maintain an immutable security audit trail, ensuring agents operate only within their delegated scopes.
• To monitor system performance, enforce rate limits, and prevent fraud or abuse.

3. How We Share Your Information

We respect your privacy. We only share your data under the following conditions:

• With Connected Storefronts: When you purchase or manage a cart on a merchant store (like a Shopify or WooCommerce partner site), we transmit your cart data and shipping info to that merchant's API to complete your request.
• Legal & Security: If required by law, or if necessary to defend the safety, security, and integrity of our platform.

We do NOT sell, rent, or trade your personal information to third-party advertisers or data brokers.

4. Data Security

Your data is protected using industry-standard protocols:

• All communications are encrypted in transit via Transport Layer Security (TLS/HTTPS).
• Permissions and access controls are cryptographically verified using JWT tokens (AIT).
• We do not store or process your credit card numbers or raw payment details on our gateway. Payment transactions are processed directly via secure merchant checkout systems.

5. Contact Us

If you have any questions, concerns, or requests regarding your data privacy, please contact us at:

Email: [email protected]