Synthetyx ("we," "our," or "us") provides a synthetic conversation simulation platform designed to help teams test AI agents before production deployment. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service at synthetyx-prod.web.app (the "Service").
We are committed to protecting your privacy and being transparent about how we handle your data. Please read this policy carefully to understand our practices.
2. Information We Collect
2.1 Account Information
When you create an account, we collect and store:
Email address
First name and last name
Display name
Profile photo (optional)
Account creation and last login timestamps
2.2 Simulation Data
When you run simulations, we collect and store the following data associated with your account:
Agent Prompts: The system prompts you configure for your AI agents
Simulation Configuration: Settings including the AI model used, number of conversations, maximum turns, and whether context was provided
Result Files: CSV files containing generated conversation transcripts, including any context data from your uploaded files
Usage Metrics: Estimated costs and token usage for your simulations
Timestamps: When each simulation was run
2.3 Uploaded Files
When you upload CSV files containing test scenarios or context data, these files are processed on our servers to run your simulations. The original uploaded files are deleted after processing, but the resulting conversation outputs (which may include data derived from your uploads) are stored as described in Section 2.2.
2.4 API Keys
You provide third-party API keys (such as OpenAI) to power conversation simulations. These API keys are transmitted to our servers to make API calls on your behalf, but they are not stored in our database. API keys exist only in memory during the processing of your request and are discarded immediately after use.
2.5 Automatically Collected Information
When you access the Service, we may automatically collect:
Device type and browser information
IP address
Pages visited and features used
Error logs for troubleshooting
Performance metrics
3. How We Use Your Information
We use the information we collect to:
Provide, operate, and maintain the Service
Create and manage your account
Process and run your conversation simulations
Store your simulation history so you can access past results
Communicate with you about updates, security alerts, and support
Monitor and analyze usage trends to improve the Service
Detect, prevent, and address technical issues
Comply with legal obligations
4. Data Processing Architecture
To be transparent about how your data flows through our system:
Server-Side Processing: Simulations are processed on our backend servers hosted on Google Cloud Run, not in your browser.
API Proxying: When running simulations, your API key is sent to our server, which then makes calls to the AI provider (e.g., OpenAI) on your behalf. This is necessary for security and rate limiting.
Cloud Storage: Simulation results are stored in Google Cloud Storage, organized by user ID, and accessible only to you.
Database: Account information and simulation metadata are stored in Google Firestore.
5. Third-Party Services
5.1 Google Cloud Platform
We use Google Cloud Platform services including Firebase Authentication, Firestore, Cloud Storage, and Cloud Run. Your data is processed and stored in accordance with Google Cloud's security practices and data processing terms.
5.2 AI Model Providers
When you run simulations, we send requests to third-party AI providers (such as OpenAI) using your API key. The prompts and context data you provide are transmitted to these providers to generate responses. Your use of these AI services is also governed by their respective privacy policies and terms of service. We encourage you to review the privacy practices of any AI provider whose API you use.
6. Data Security
We implement appropriate technical and organizational measures to protect your information:
All communications are encrypted using HTTPS/TLS
Authentication is handled through Firebase Authentication
API keys are not stored persistently and exist only in memory during request processing
Result files use signed URLs that expire after one hour
Rate limiting protects against abuse
Firestore security rules ensure users can only access their own data
However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
7. Data Retention
Account Information: Retained for as long as your account is active. You may request deletion at any time.
Simulation Data and Results: Stored indefinitely until you delete individual simulations or your entire account.
Uploaded CSV Files: Deleted from our servers immediately after processing is complete.
API Keys: Not stored; discarded immediately after each request.
Server Logs: Retained for troubleshooting purposes in accordance with standard cloud logging practices.
8. Your Rights and Choices
You have control over your data:
Access: View your profile and simulation history directly in the application.
Download: Download your simulation results as CSV files at any time.
Delete Simulations: Delete individual simulations and their associated result files.
Delete Account: Delete your entire account, which removes your profile, all simulations, and all stored files.
Data Portability: Request a copy of your data by contacting us.
To exercise additional rights or if you have questions, please contact us using the information in Section 11.
9. Important Considerations for Users
Sensitive Data in Test Scenarios: If you upload CSV files containing personally identifiable information (PII), customer data, or other sensitive information as test context, this data will be:
Processed on our servers
Sent to third-party AI providers as part of prompts
Included in stored result files
We strongly recommend using anonymized or synthetic test data rather than real customer information.
10. Children's Privacy
The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.
11. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us at:
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new Privacy Policy on this page and updating the "Effective Date." Your continued use of the Service after changes constitutes acceptance of the updated policy.