Privacy Policy

Reviewed and Approved 26Oct2022

This Privacy Policy (the “Privacy Policy”) governs all aspects of SYNOTEK, LLC’s collection, use, maintenance and disclosure of personal information from all users (each a “User” and collectively, “Users”) of its corporate website and its services.

INTRODUCTION

SYNOTEK, LLC is a cybersecurity and compliance professional services firm providing consulting services. SYNOTEK, LLC is the data controller of personal data as defined herein, which means they determine what personal data is needed and how it is used.

The purpose of this policy is to provide users with transparency with respect to SYNOTEK, LLC’s collection and use of personal data. SYNOTEK, LLC is committed to protecting the confidentiality of information entrusted to it by users and has prepared this Privacy Policy to inform users of SYNOTEK, LLC’s practices and policies concerning the collection, use, processing, maintenance and disclosure of personal data. Below are the contents of this policy by section:

CONTENTS OF THIS POLICY

Information Collection

What Information SYNOTEK, LLC Collects

Information Use

Legal Bases for Processing

Data Retention

Disclosure of Personal Data

Safeguards

Enforcement and Dispute Resolution

Rights of the Data Subject Residing in the European Union

Children’s Data

Changes to Policy

Contact Information

Disclaimer

INFORMATION COLLECTION

HOW SYNOTEK, LLC COLLECTS PERSONAL DATA

SYNOTEK, LLC collects personal data such as a first and last name, phone number, email address, and other contact information:

When a message is sent through the www.SynoTekLLC.com website.

When a user subscribes to a mailing list.

When a user registers for a webinar, event and/or whitepaper.

Through resume submissions, contracting and/or employment inquiries.

When SYNOTEK, LLC provides a customer service

SYNOTEK, LLC may collect personal data of an entity that SYNOTEK, LLC provides or receive services from.

SYNOTEK, LLC may collect information that is already public: This includes various social media platforms and networks. The data is dependent upon user privacy settings with the social network.

WHAT INFORMATION SYNOTEK, LLC COLLECTS

When information is provided through the www.SynoTekLLC.com website, or sent in an email, or while entering into a contract with SYNOTEK, LLC it may collect the following personal data:

first and last name;

phone number;

email address;

other contact information in response to surveys about SYNOTEK, LLC service offerings.

INFORMATION USE

SYNOTEK, LLC may use personal information it has collected through its website and service offerings for any of the following:

To provide services to users or clients of SYNOTEK, LLC or one of its subsidiaries, affiliates and business partners.

To determine users’ interest in services or to inform users about services offered by SYNOTEK, LLC or one of its subsidiaries, affiliates and business partners.

LEGAL BASES FOR PROCESSING

LEGITIMATE INTEREST

The processing is based on SYNOTEK, LLC’s legitimate interests or the legitimate interests of a third party unless the requirement to protect the individual’s personal data overrides those legitimate interests.

CONSENT

An individual provides express consent to SYNOTEK, LLC’s practices described in this privacy policy by voluntarily providing personal information.

CONTRACT

Processing is required for the performance of a contract in which SYNOTEK, LLC has been engaged to perform services.

DATA RETENTION

SYNOTEK, LLC will retain personal data for as long as reasonably necessary to fulfill the purpose for which it was originally collected unless a longer retention period is required based on applicable law, regulation, and/or professional standards.

DISCLOSURE OF PERSONAL DATA

SYNOTEK, LLC uses all information collected from a user for internal purposes only. SYNOTEK, LLC does not and will not sell or rent an individual’s personal data to anyone. SYNOTEK, LLC may, from time to time, send personal data about a user to other persons or entities that perform services on behalf of SYNOTEK, LLC (“Service Providers”), but only when:

The Service Provider has agreed to use such information solely for the purposes of providing services to SYNOTEK, LLC;

The Service Provider agrees to protect such information in the same manner as the policies set forth in this policy statement;

SYNOTEK, LLC needs to share the user’s information to provide the service the user has requested;

SYNOTEK, LLC needs to send the information to a Service Provider who works on behalf of SYNOTEK, LLC to provide a service to the individual.

Unless SYNOTEK, LLC informs a user otherwise, a service provider does not have any right to use the personal information SYNOTEK, LLC provides to them beyond what is necessary to assist SYNOTEK, LLC, or in response to a legal obligation including without limitation a subpoena, court order or SYNOTEK, LLC believes that the law requires disclosure, or where the information is currently in the public domain. Upon lawful requests by public authorities, including to meet national security or law enforcement requirements, SYNOTEK, LLC may disclose personal information as required by law.

SYNOTEK, LLC may share personal information with other third parties (different from those described above) in other limited circumstances. In these instances, we will, where required by applicable law, obtain the individual’s consent to share personal information in this way.

OPTING OUT AND UNSUBSCRIBING FROM THE MAILING LIST

All SYNOTEK, LLC marketing communications will contain an easy way to opt out from receiving future messages, such as a link through which you can unsubscribe.

If an individual would like to opt out of receiving marketing messages, they may send SYNOTEK, LLC an email at CIO@SynoTekLLC.com.

SAFEGUARDS

SYNOTEK, LLC holds personal data in the United States at this time. SYNOTEK, LLC keeps a user’s personal data for as long as SYNOTEK, LLC determines necessary to fulfill the objective for which it was collected. Personal information is maintained on SYNOTEK, LLC systems that are protected using industry standard security measures to ensure the confidentiality, availability, and integrity of the personal information. Unfortunately, however, SYNOTEK, LLC cannot and does not guaranty that the information submitted to, maintained by, or transmitted from SYNOTEK, LLC is or will always be completely secure, as transmission of information over the internet is oftentimes susceptible to potential interception, misuse, willful and/or negligent acts or omissions, misrouting, or possible loss.

ENFORCEMENT AND DISPUTE RESOLUTION

SYNOTEK, LLC will investigate and attempt to resolve all disputes and complaints regarding SYNOTEK, LLC’s use and disclosure of personal data in accordance with this Privacy Policy.

If a resident of the European Union that has a concern that SYNOTEK, LLC has not addressed satisfactorily, or believes SYNOTEK, LLC is not processing the individual’s personal data in accordance with applicable law or in accordance with this privacy notice, the individual has the right to file a complaint with the Data Protection Authority in the member state in which the individual resides.

RIGHTS OF THE DATA SUBJECT RESIDING IN THE EUROPEAN UNION

Residents of the European Union have certain rights under European data protection law with respect to personal data, including the right to request access to, correct, amend, delete, limit the use of, or withdraw your consent for the processing of your personal data at any time. They may also have the right to receive a copy of the individual’s personal information in a commonly used and machine-readable format and to transmit such information to another controller.

A resident of the European Union can submit a Data Subject Access Request, by sending an email at CIO@SynoTekLLC.com.

SYNOTEK, LLC will respond in accordance with applicable laws and professional standards applicable to SYNOTEK, LLC. SYNOTEK, LLC is open about the personal information SYNOTEK, LLC collects and has implemented mechanisms to enable an individual to exercise any rights they might have with respect to the individual’s personal data.

After receiving a request and sufficient information to verify the individual’s identity, SYNOTEK, LLC will provide a copy of the personal data SYNOTEK, LLC has about the individual which they are entitled to receive under applicable law. SYNOTEK, LLC will also confirm the purposes for which such personal information is being used, its recipients and the origin of the information.

An individual may write to SYNOTEK, LLC at any time requesting amendments to certain personal information that they consider to be incorrect or irrelevant, or to request that SYNOTEK, LLC blocks, erases or otherwise removes the personal data. SYNOTEK, LLC will update, block, erase or remove an individual’s personal data upon request in line with applicable law.

An individual may at any time ask SYNOTEK, LLC to delete their personal information. SYNOTEK, LLC will consider and where necessary comply with the request in accordance with applicable law, as explained above.

INTERNATIONAL PERSONAL DATA TRANSFERS

SYNOTEK, LLC complies with the EU-U.S. Privacy Shield Framework (“Privacy Shield”) as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from the European Union to the United States pursuant to Privacy Shield. SYNOTEK, LLC has certified to the Department of Commerce that it adheres to the Privacy Shield Principles with respect to personal data that is transferred from the European Union and its Member States to the United States. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.

In compliance with the Privacy Shield Principles, SYNOTEK, LLC commits to resolve complaints about our collection or use of your personal information. European Union individuals with inquiries or complaints regarding our Privacy Shield policy should first contact SYNOTEK, LLC at: CIO@SynoTekLLC.com

SYNOTEK, LLC commits to cooperate with the panel established by the EU data protection authorities (“DPAs”) and comply with the advice given by the panel with regard to human resources data transferred from the EU in the context of the employment relationship.

SYNOTEK, LLC has further committed to refer unresolved Privacy Shield complaints to International Centre for Dispute Resolution, International Division American Arbitration Association (“ICDR-AAA”), an alternative dispute resolution provider located in the United States. If an individual does not receive timely acknowledgment of their complaint from SYNOTEK, LLC, or if SYNOTEK, LLC has not resolved the individual’s complaint, the individual is requested to contact or visit http://go.adr.org/privacyshield.html for more information or to file a complaint. The services of the ICDR-AAA are provided at no cost to the individual.

The Federal Trade Commission has jurisdiction over compliance with the Privacy Shield for SYNOTEK, LLC.

If the individual’s Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, the individual may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.

In the context of an onward transfer, SYNOTEK, LLC has responsibility for the processing of personal information it receives under the Privacy Shield and subsequently transfers to a third party acting as an agent on its behalf. SYNOTEK, LLC shall remain liable under the Principles if its agent processes such personal information in a manner inconsistent with the Principles, unless the organization proves that it is not responsible for the event giving rise to the damage.

CHILDREN’S DATA

SYNOTEK, LLC defines a child as a natural person who is under the age of 16 years old. SYNOTEK, LLC does not collect children’s data, whether knowingly, actively, or otherwise, and SYNOTEK, LLC does not actively market to children. If SYNOTEK, LLC discovers that SYNOTEK, LLC has collected a child’s data, the data is deleted immediately.

Where SYNOTEK, LLC knows a child is above the age of 16, but considered a minor under applicable law, SYNOTEK, LLC will obtain parental/guardian consent prior to using that child’s personal information.

CHANGES TO THE POLICY

SYNOTEK, LLC reserves the right to update this policy periodically to keep up with regulatory and industry standards. If there is a substantial change in the way SYNOTEK, LLC uses personal data, any such changes shall be effective from the date of posting of any revisions hereto as well as to any existing information then being retained by SYNOTEK, LLC. In certain circumstances, SYNOTEK, LLC may need to request an individual’s consent to continue to process their personal data, based on any changes in SYNOTEK, LLC’s processing basis, methods and/or interest.

CONTACT INFORMATION

Please direct all inquiries regarding this privacy policy or SYNOTEK, LLC’s data collection and processing practices to CIO@SynoTekLLC.com

CORPORATE MAILING ADDRESS:

SynoTek, LLC

28568 Park Avenue

Pine, Colorado 80470

DISCLAIMER

SYNOTEK, LLC is the owner and controller of this website. SYNOTEK, LLC does not consent to the use and/or reproduction of the content and information on this website without SYNOTEK, LLC’s consent, pursuant to applicable copyright law.

SYNOTEK, LLC is not responsible, nor does SYNOTEK, LLC have control of third-party websites/links to and from the www.SynTekLLC.com website.