Privacy Policy
Important: This document is a practical privacy notice for visitors and customers of Synthetic Data Generator (“DataGen”, “we”, “us”). It is not personalised legal advice. If you need counsel for your organisation’s compliance programme, consult a qualified professional.
1. Who this applies to
This policy applies when you use our public website, documentation pages, blog, optional HTTP API, and related features we operate at the domain where this policy is published (the “Services”).
2. What we collect
Depending on how you use the Services, we may process:
- Usage and diagnostics — pages viewed, approximate location derived from IP, timestamps, device/browser type, and similar technical data collected through analytics and server logs.
- Analytics (Google Analytics 4) — we use Google Analytics to understand aggregate traffic and product interest. Google may process data under its own terms as a service provider. You can control ad-related settings via Google’s tools and your browser.
- API and account-related data — if you obtain or use an API key, we process authentication identifiers, request metadata, quotas, and operational logs needed to provide the API securely and to prevent abuse.
- Content you submit — for example feedback you send through the app, support messages, or fields you enter when generating synthetic datasets. Synthetic data you generate is handled according to our technical architecture; avoid submitting real personal data of living individuals unless you have a lawful basis to do so.
- Cookies and local storage — we may use cookies or similar technologies for session continuity, preferences, security, and measurement.
3. Why we use information (purposes)
We use personal and technical data to:
- Provide, secure, and improve the Services;
- Measure product interest and reliability (including analytics);
- Detect, investigate, and prevent fraud, abuse, or unlawful activity;
- Communicate operational or policy updates where appropriate;
- Comply with legal obligations and enforce our terms.
4. Legal bases (EEA/UK visitors)
Where the GDPR or UK GDPR applies, we rely on one or more of: contract (providing the Services you request), legitimate interests (security, analytics at an appropriate level, product improvement), legal obligation, and, where required, consent (for example for certain cookies or marketing communications if we offer them).
5. Sharing and processors
We share data with vendors who help us run the Services (for example hosting, analytics, email delivery, or error reporting). They process data on our instructions and must safeguard it. We may also disclose information if required by law, to protect rights and safety, or as part of a business transfer subject to appropriate safeguards.
6. International transfers
Our infrastructure or subprocessors may be located outside your country. Where required, we use appropriate safeguards (such as standard contractual clauses) for transfers of personal data.
7. Retention
We keep information only as long as needed for the purposes above, including security, dispute resolution, and legal compliance. Retention periods vary by data category; technical logs are typically rotated on a shorter cycle than contractual records.
8. Your rights
Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability. You may also lodge a complaint with your local supervisory authority. To exercise rights, contact us using the details in your service agreement or the contact channel published on the site.
9. Children
The Services are not directed to children under 16 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children.
10. Security
We implement reasonable administrative, technical, and organisational measures to protect information. No method of transmission or storage is completely secure.
11. Changes
We may update this policy from time to time. Material changes will be indicated by updating the “Last updated” date and, where appropriate, an on-site notice.
12. Contact
For privacy questions, use the contact or feedback options linked from the application, or the business contact details associated with your deployment.