Synnect Global Partners LLP (“Synnect”, “we”, “our”, or “us”) is committed to protecting and respecting your privacy and handling personal data responsibly. We are an India-based firm providing outsourced accounting, bookkeeping, payroll, tax compliance, audit support and related financial back-office services to accounting firms and businesses located outside India. This Privacy Policy explains how we collect, use, store, share and safeguard personal data when you engage our services, visit our website, or otherwise interact with us. Our approach is designed to align with global data protection standards, including the UK General Data Protection Regulation (UK GDPR), EU GDPR and general international privacy best practices.
Synnect may act both as a data controller and a data processor. We act as a data controller when we process personal data for our own business operations, such as managing client relationships, billing, marketing and website administration. We primarily act as a data processor when we handle personal data on behalf of our clients in the course of delivering outsourced services. In those situations, our clients remain the data controllers and we process personal data strictly in accordance with their documented instructions and contractual agreements.
We may collect personal data that you provide directly to us, including names, business contact details, job titles, identification information where required for verification, billing and payment information, and records of communications. While delivering services to clients, we may process personal data belonging to their customers, employees or suppliers, which can include financial and accounting records, payroll information, tax records, transaction data and other related business information. When individuals visit our website, certain technical information such as IP address, browser type, device information, pages visited and usage patterns may be collected automatically through cookies or similar technologies to improve functionality, performance and security.
We use personal data to provide agreed services, manage and administer client relationships, process payments, communicate with clients and prospective clients, comply with legal and regulatory obligations, protect against fraud and security risks, and improve our services and website. We do not sell personal data to third parties. Where applicable under data protection laws, we rely on lawful bases such as contractual necessity, legitimate business interests, legal obligations and consent where required.
Because Synnect operates from India and serves clients internationally, personal data may be transferred across borders. We implement appropriate safeguards for international data transfers, including data processing agreements, confidentiality obligations, secure IT systems, access controls and, where required, standard contractual clauses or equivalent safeguards. We limit access to personal data to authorised personnel and service providers who need it to perform their duties and who are contractually obligated to maintain confidentiality and security.
We may share personal data with employees, contractors, cloud service providers, IT vendors, and professional advisors such as legal or compliance consultants where necessary for business operations and service delivery. We may also disclose information where required by law, regulation or lawful request from authorities. All third-party providers are required to maintain appropriate data protection and security standards.
We implement appropriate technical and organisational measures to protect personal data from unauthorised access, misuse, alteration or loss. These measures include secure systems, role-based access controls, password protection, encryption where appropriate, secure file transfer practices and staff training on confidentiality and data protection. While we take reasonable steps to protect information, no method of electronic transmission or storage can be guaranteed to be completely secure.
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, accounting or regulatory requirements. In most cases, data is retained for a period of six to seven years unless a longer retention period is required by law or contractual obligations.
Depending on applicable data protection laws, individuals may have rights to request access to personal data, request correction of inaccurate information, request deletion, restrict or object to certain processing activities, request data portability and withdraw consent where processing is based on consent. Requests relating to personal data should be directed to us using the contact details below. Where we process data on behalf of clients, requests may be forwarded to the relevant client as the data controller.
Our website may use cookies to enhance functionality, analyse usage and maintain security. Users can control cookies through their browser settings. Our website may also contain links to third-party websites, and we are not responsible for the privacy practices of those sites.
We may update this Privacy Policy periodically to reflect changes in legal requirements or business practices. The most current version will always be available on our website and will include the latest revision date.
If you have any questions about this Privacy Policy or our data protection practices, please contact Synnect Global Partners LLP at [manoj.sharma@synnectglobal.com] or at our registered office address [Eldeco Centre, Block A, Wework, Shivalik Colony, Malviya Nagar, New Delhi, South Delhi, Delhi - 110017, India].
If you'd like, I can now draft a short website version + cookie policy + DPA, which together form the full privacy pack most UK/EU clients expect.