The protection and security of your personal data, sensitive (special categories) personal data and non-
personal data are important to SynoInt. Therefore, SynoInt is committed to respecting and protecting the privacy of each data subject.
Data subjects trust us with their personal information and we are responsible for ensuring that we work every day to justify that trust.
Below is information how SynoInt works in the area of privacy, how complies with the General data protection regulation and other applicable international and local legal acts, what essential information data subjects must know using SynoInt platforms, solutions, systems, services and websites.
Definitions No. 1
“SynoInt group of companies” / “SynoInt” means and consists of:
“SynoInt systems and platforms” means all the SynoInt systems and platforms and services which are provided by the SynoInt, such as SynoPanel, SynoTool, SynoScore, SynoAnswers, SynoAudience, SynoRewards, SynoLibrary, SynoManager, Surveyo24, SynoIndustry, etc. to data subjects such as clients, customers, purchasers, users, respondents, panellists, websites visitors, other parties and third-parties.
“Services” means services of SynoInt systems and platforms which are provided by the SynoInt to data subjects.
“Day” means any business day, which is not Saturday or Sunday or national holiday.
Definitions No. 2
“Personal data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Special categories of personal data” means sensitive personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
“Non-personal data” means any information and data which not personal data is, and from which can not identify data subject.
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Data subject” means individual person whose personal data and special categories of personal data was processed / is processed / will be processed by data controller and / or data processor.
“Data controller” means:
“Data processor” means:
Amazon (AWS) https://aws.amazon.com/ (server provider)
Interneto vizija https://klientams.iv.lt/ (server provider)
Cint https://www.cint.com/ (service provider)
Google https://www.google.com/ (service provider)
Microsoft https://www.microsoft.com/ (service provider)
Baltneta https://www.balt.net/ (service provider)
“Consent of the data subject” means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
“Personal data breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.
“General data protection regulation” means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“GDPR”).
Information we collect
Purposes for which we process information
SynoInt processes personal data, sensitive (special categories) personal data and non-personal data for purposes of:
1. Market and public opinion research;
2. Costumer’s and consumer’s insights;
3. Loyalty and rewards programs;
4. Provide statistical information;
5. Provide data collection, processing and reporting solutions;
6. Submitting the best deals and get acquainted with SynoInt services;
7. Administer and manage agreements, contracts, projects, other documents, services, etc.;
8. Implementation the requirements and provisions of the legislation.
Period of storage of information
SynoInt stores your personal data, sensitive (special categories) personal data and non-personal data for no longer than it is required by the data processing goals or is stated in legal regulations if there is a longer data duration provisioned. We aim not to store outdated or irrelevant information and ensure that personal data and other information would be updated consistently and correctly.
The term of data storage may be from 1 (one) to 10 (ten) years, unless the law specifies and / or is agreed otherwise.
SynoInt periodically reviews all stored data and makes sure that inaccurate or out-of-date data is not processed.
Using children`s personal data
SynoInt websites, services of SynoInt systems and platform and other services, are not untended for minors.
SynoInt complies with General data protection regulation and also with Law on the legal protection of personal data of the Republic of Lithuania where indicated that persons under the age of 14 (fourteen) are considered to be minors.
In view of this, SynoInt takes the position, that minors should not visiting in SynoInt websites and using SynoInt Services.
SynoInt confirms that we do not collect information and data from / about data subjects who are minors. If there are any cases when children want to visit in SynoInt websites and use SynoInt services or other SynoInt activities, they have to submit consents and permissions from their parents and implement other requirements specified in the General data protection regulation and on the Law of the legal protection of personal data of the Republic of Lithuania.
If we learn that a child under age 14 (fourteen) has improperly provided us with information, we will notify the child’s parent or legal guardian and thereafter delete the child’s personal information from our records.
Legal grounds for using your personal data
SynoInt will only use your personal data where we have a legal ground to do so. We determine the legal grounds based on the purposes for which we have collected and used your personal data. In every case, the legal ground will be one of the following:
Principles of data processing
SynoInt ensures that personal data, sensitive (special categories) personal data and non-personal data shall be:
Implementation procedure of data subject rights
SynoInt ensures that according to the General data protection regulation would be implemented all rights of data subjects:
1. Right to be informed (General data protection regulation Art. 13 and 14);
2. Right to access (General data protection regulation Art. 15);
3. Right to rectification (General data protection regulation Art. 16);
4. Right to erasure (Right to be forgotten) (General data protection regulation Art. 17);
5. Right to restriction of processing (General data protection regulation Art. 18);
6. Notification obligation (General data protection regulation Art. 19);
7. Right to data portability (General data protection regulation Art. 20);
8. Right to object (General data protection regulation Art. 21);
9. Automated decision – making (General data protection regulation Art. 22).
If you would like to implement any of these rights, or if you think that we process incorrect personal data about you, or you have any other questions regarding your rights, please contact by e-mail firstname.lastname@example.org.
We will deal with your request within 30 days. If your request is complicated or if you have a large number of requests, it may take us longer. We will let you know if we need longer than 30 days to respond. If you ask us to delete your personal data or restrict how it is used, there may be exceptions to the right to erasure for specific legal reasons which, if applicable, we will set out for you in response to your request. We also have to inform, that we need specific information from you to help us confirm your identity, so please fill in all required information about you and submit your request as clear and understandable as possible.
If you are unable to resolve the issues with SynoInt and if SynoInt engagement or a lack there of worries you that this privacy report or legal regulations requirements are not being adhered to, you have the right to contact State data protection inspectorate of the Republic of Lithuania (supervisory authority) or other institutions which are responsible for the supervision and control of legal acts which regulate personal data protection and implementation of data subjects rights.
Security of your personal data
SynoInt has implemented appropriate technical and organisational controls to protect your personal data against unauthorised processing and against accidental loss, damage or destruction.
But we must inform, that you are responsible for choosing a secure password when we ask you to set up a password to access parts of our sites, SynoInt systems and platforms. You should keep this password confidential and you should choose a password that you do not use on any other site. You should not share your password with anyone else, including anyone who works for us. Unfortunately, sending information via the internet is not completely secure. Although we will do our best to protect your personal data once with us.
We also ask you to read more about the SynoInt security in Security policy on https://www.synoint.com/security-policy/.
International data transfers
Whenever we transfer your personal data out of the European Economic Area (EEA), we ensure similar protection and put in place at least one of these safeguards:
However, SynoInt informs you, that regardless of the fact that each SynoInt company is located in another country, your personal data can only be accessed by the SynoInt companies with which you have contracted, given permissions and consents, etc.
Typically, such personal data transfers from one country to another are usually just in exceptional cases.
In most cases, SynoInt only provide non-personal data to other countries.
Who we share your personal data with
Depending on where you live, we may share your personal data but just in exceptional cases. We do not share your personal data with other people or organisations that are not directly linked to us except under the following circumstances:
Concepts and meanings of your consents
In SynoInt systems and platforms and services, you can see the consents and permissions which we ask you to mark.
In below we provide a broader and more detailed explanation of these consents and permissions:
“I agree to participate in surveys and other market research activities” means that you freely and indecently agree to provide your opinion, personal data, answers to various questions which we ask in surveys and questionnaires and you can get a reward for it.
“I agree to the collection and / or sharing my mobile advertising identifiers or other identifiers” means you agree to help us analysing your information better, more detailed, clear understand your answers and provide better services.
“I agree to the use of third-party cookies for market research purposes” means you agree to get more special targeted and relevant surveys which should be more interesting for you.
“I agree to share my profile information with third-parties for market research purposes” means you agree to get more surveys from our partners, from other parties, and also it means that you will get more rewards for this. High probability because the profile data can be shared, then the surveys should be more relevant to you.
“I agree to share my sensitive data for market research purposes” means you agree that in surveys could be questions about your special categories of personal data. In this case, also surveys would be more adapted for you and more informative for us. It is likely that you will receive more surveys that are relevant to you.
“I agree to receive rewards for participation in surveys and other market research activities” means you agree that you can earn points by completing surveys or other easy tasks through our partners. Each survey or task earns you points for completing it, so you can decide how much you want to do and earn. The points earned can then be exchanged for different attractive rewards available from our partners. Chosen rewards will be sent to your registration e-mail.
“I agree to get news and notifications about market research and other market research activities” means you agree to get information from us about our services, offers, suggestions, news and changes.
Most of your consents can easily be revoked at any time by writing an email to email@example.com (if it is related to the processing of your personal data) or firstname.lastname@example.org (if it is related to other goals), or you can easily revoke most of your consents in SynoInt systems and platforms by yourself.
Data protection officers (DPO)
We would like to inform that in adherence to the General Data protection regulation, SynoInt has been assigned the following Data protection officers:
More you can read in Data protection officers on www.synoint.com/dpo.
If you would like to contact SynoInt Data protection officers, you have questions related to the processing of your personal data, the protection of personal data, or other matters related to personal data, please contact by e-mail email@example.com.
Applicable law and changes