Skip to main content
Last Updated: March 6th, 2026

Introduction

This Privacy Policy describes Our policies and procedures regarding the collection, use, storage, protection, and disclosure of Your information when You use the Service provided by Syncara Host. This policy is compliant with the European Union General Data Protection Regulation (GDPR) and Indonesian Law No. 27 of 2022 concerning Personal Data Protection (PDP Law). It informs You about Your privacy rights, our legal obligations, and how applicable laws protect You.
By using our Service, You acknowledge that you have read, understood, and agree to be bound by all terms of this Privacy Policy. This includes the sections on data security measures, incident response procedures, and limitation of liability in accordance with applicable laws.

Interpretation and Definitions

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.
TermDefinition
Data Subject / User / YouThe individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service.
Company / Data ControllerSyncara Host, operating the website syncara.host.
AccountA unique account created for You to access our Service or parts of our Service.
ServiceThe Website and all web hosting, domain registration, cloud storage, and related services provided by Syncara Host.
Personal DataAny information relating to an identified or identifiable natural person as defined under GDPR Article 4(1) and Indonesian PDP Law Article 1(1).
ProcessingAny operation performed on Personal Data, whether or not by automated means.
Usage DataData collected automatically, either generated by the use of the Service or from the Service infrastructure itself.
We process Your Personal Data under one or more of the following legal bases as required by GDPR Article 6 and Indonesian PDP Law Article 20:
  • Contractual Necessity: Processing is necessary for the performance of a contract to which You are party.
  • Legal Obligation: Processing is necessary for compliance with a legal obligation to which the Company is subject.
  • Legitimate Interests: Processing is necessary for the purposes of the legitimate interests pursued by the Company.
  • Consent: You have given clear, affirmative consent to the processing of Your Personal Data.
  • Vital Interests: Processing is necessary to protect the vital interests of You or another natural person.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data — While using Our Service, We may ask You to provide Us with certain personally identifiable information, including:
  • Email address
  • First name and last name
  • Phone number
  • Address (State, Province, ZIP/Postal code, City)
  • Payment information (processed securely through PCI-DSS compliant processors)
Usage Data — Usage Data is collected automatically when using the Service. This may include information such as Your IP address, browser type, pages of our Service that You visit, time spent on those pages, and other diagnostic data. Tracking Technologies and Cookies — We use Cookies and similar tracking technologies to track activity on Our Service and store certain information. We use Essential, Functionality, Analytics, and Advertising Cookies. You can manage your cookie preferences through our settings panel.

Use of Your Personal Data

The Company may use Personal Data for the following purposes:
PurposeLegal Basis
To provide and maintain our ServiceContractual Necessity
To manage Your AccountContractual Necessity
For the performance of a contractContractual Necessity
To contact You regarding updates or contracted servicesContractual Necessity, Legitimate Interest
To provide You with news and special offersLegitimate Interest (with opt-out)
To manage Your requestsContractual Necessity
For legal compliance and protectionLegal Obligation

Data Sharing and Third-Party Disclosures

We may share Your Personal Data in the following situations:
  • With Service Providers: To monitor and analyze use of our Service, process payments, or provide customer support.
  • For business transfers: In connection with any merger, sale of Company assets, financing, or acquisition.
  • With Affiliates and Partners: We require affiliates and partners to honor this Privacy Policy.
  • For legal obligations: Where required by law or in response to valid requests by public authorities.
  • International Data Transfers: Your data may be processed in countries other than Your residence. We implement appropriate safeguards (like Standard Contractual Clauses) for international transfers.

Security of Your Personal Data

The security of Your Personal Data is critically important to Us. We implement comprehensive technical and organizational measures including:
  • Encryption of Personal Data in transit (TLS/SSL) and at rest (AES-256)
  • Regular security assessments and penetration testing
  • Strict access controls and authentication
  • Network security measures (firewalls, IDS/IPS)
  • Incident response procedures
Limitation of Liability: While we implement industry-standard security, no method of transmission is 100% secure. We cannot guarantee absolute security against all potential threats.

Retention of Your Personal Data

We retain Your Personal Data only for as long as necessary. Specific retention periods include:
Data TypeRetention Period
Account informationActive duration + 3 years
Billing information7 years (tax/financial regulations)
Support communications5 years
Website usage data26 months
Backup data30 days

Your Data Protection Rights

You have specific rights under GDPR and Indonesian PDP Law:
  • Right to Access — You can request copies of your personal data.
  • Right to Rectification — You can request correction of inaccurate data.
  • Right to Erasure (Right to be Forgotten) — You can request deletion of your personal data.
  • Right to Restrict Processing — You can request restriction of processing under certain conditions.
  • Right to Object to Processing — You can object to processing based on legitimate interests.
  • Right to Data Portability — You can request transfer of your data in a structured, machine-readable format.
  • Right to Withdraw Consent — You can withdraw consent at any time.
To exercise these rights, please contact Our Data Protection Officer. We will respond to legitimate requests within one month.

Children’s Privacy

Our Service is not intended for anyone under the age of 16. We do not knowingly collect information from children under 16. If We become aware that We have collected Personal Data from a child without verification of parental consent, We take steps to remove that information.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of material changes by posting the new Privacy Policy on this page and updating the “Last updated” date. Your continued use of the Service constitutes acceptance of the modified Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy, You can contact us:
  • Email: privacy@syncara.host
  • Dispute Resolution: This Privacy Policy shall be governed by the laws of the Republic of Indonesia. Disputes shall be subject to the exclusive jurisdiction of the courts located in Jakarta, Indonesia.