Summary

What Syra does with your data

  • We use your account info to authenticate you and provide the service.
  • We process your inputs (including via AI systems) to generate your decision memo and show it back to you.
  • We log security events (like login attempts) to prevent abuse.
Data we collect

Information you provide

Depending on how you use Syra, we may collect:

  • Account details (email, username, password hash).
  • Content you submit (your idea text and related prompts).

Generated output

We store generated memos so you can view your history in the app.

Security signals

We store login / refresh attempts, session identifiers, and basic device info to detect fraud.

How we use data

Purposes

  • Provide the service: create accounts, sign in, run the decision workflow, and return results.
  • Security: rate limits, abuse detection, session integrity, and incident investigation.
  • Reliability: error diagnostics and performance monitoring.

AI processing notice: user inputs may be processed by AI systems (including third-party AI model providers) to generate outputs.

Legal basis

Legal Basis for Processing

Where applicable (including under the GDPR) and to align with India’s Digital Personal Data Protection Act, 2023 (DPDP Act), we rely on the following legal bases:

  • Contract: to provide Syra (account creation, authentication, generating and returning outputs).
  • Legitimate interests: to secure Syra (security logs, fraud detection, abuse prevention, and service integrity).
  • Consent: for optional processing where we ask for it (for example, if we add marketing emails later).
Sharing

When we share information

We don’t sell personal information. We share data only when needed to run Syra or comply with law, including with:

  • Cloud infrastructure providers (hosting, databases, storage, content delivery).
  • AI model providers (to process prompts and generate outputs).
  • Security / monitoring providers (to detect abuse, monitor uptime, and investigate incidents).
  • Legal requests where we’re required to comply.
  • Safety to protect users, prevent fraud, or respond to security incidents.
Retention

How long we keep data

We keep data for as long as needed to provide the service and meet security / legal obligations:

  • Account data: retained until you delete your account.
  • Generated content and history: retained until you delete it or delete your account.
  • Security logs: may be retained longer to prevent fraud, enforce rate limits, and investigate abuse.
Your choices

Access and control

  • You can avoid including sensitive personal information in your prompts.
  • You can request deletion of your account and associated data (see “Deletion”).
Deletion

How to delete your data

To request deletion, email us at syra.console@gmail.com from your account email and include your username. We will delete your account and associated content unless we need to retain certain information for legal or security reasons.

  • What gets deleted: your account profile and stored content/history associated with the account.
  • Timeframe: we aim to complete deletion within 30 days of verifying your request.
International transfers

International Data Transfers

Syra may process and store data in countries other than where you live, including where our cloud infrastructure or AI model providers operate. When we transfer data internationally, we use appropriate safeguards designed to protect your information.

Children

Children’s Privacy

Syra is not intended for children under 13. If you are under 16, you should use Syra only with involvement and consent of a parent or legal guardian, where required by applicable law. If you believe a child has provided personal data, contact us and we will take appropriate steps to delete it.

Security

Security measures

We use administrative, technical, and organizational measures to protect data, including access controls, monitoring, and encryption where appropriate. No method of transmission or storage is 100% secure, but we work to protect your information and reduce risk.

Cookies

Authentication cookies

Syra uses cookies to keep you signed in and protect against CSRF. These are strictly functional (not advertising).

Updates

Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page and, where appropriate, provide additional notice in the app.

Jurisdiction

Governing law

This Privacy Policy is governed by the laws of India. Any disputes relating to this policy will be subject to the jurisdiction of courts located in India, unless applicable law requires otherwise.

Contact

Questions

If you have questions about this policy, contact us at syra.console@gmail.com.