LEGAL DOCUMENT

Privacy Policy

Effective Date: May 12, 2026 · Governs all SyncTrip Platform services

SyncTrip respects your privacy. This Policy explains how we collect, use, share, and protect your personal information in compliance with India's Digital Personal Data Protection Act, 2023 (DPDP Act) and IT (SPDI) Rules, 2011. By using the Platform, you consent to the practices described here.

Contents

1. Information We Collect 2. How We Use Your Information 3. How We Share Your Information 3A. Biometric & Face Verification Data 4. Data Retention 5. Your Rights and Choices 6. Security 7. International Data Transfers 8. Children's Privacy 9. Updates to This Policy

Information We Collect

a. Information You Provide

Account details: Name, email, phone number, profile photo, gender, age (for verification), and activity preferences.

Group & Activity details: Activity type (trips, riders, movies, sports, outings), destinations, dates, group preferences, and itineraries.

Face Verification Data: When accessing group chat, you may be required to submit a selfie for one-time face verification. This image is processed solely to verify your identity against your profile photo. Raw selfie images are deleted within 24 hours of processing. Verification status (pass/fail) may be retained for account integrity purposes.

Communications: Chat messages and shared plans within groups.

b. Automatically Collected

Usage data: Device info, IP address, browser type, pages viewed, and interaction logs.

Location data (SyncMaps): If you enable SyncMaps, your real-time location is collected and shared with nearby SyncTrip users on the map. By default, location is shared at approximate precision (~500 meters). You may switch to precise sharing (~150 meters) or hidden mode (not visible to others) at any time within the app. Location is collected only while SyncMaps is active.

Analytics: Interaction logs via tools like Google Analytics.

c. From Third Parties

Face verification data constitutes sensitive personal data under the DPDP Act 2023 and IT (SPDI) Rules, 2011. We do not collect other sensitive personal data (e.g., health, financial details) unless voluntarily shared.

How We Use Your Information

Core services: Group creation and management, activity coordination (trips, riders, movies, sports, outings), chat, and itinerary collaboration.

Face Verification: To verify your identity before enabling chat access within groups, ensuring only profile-verified users can communicate.

SyncMaps & Proximity: To display your approximate or precise location (per your chosen setting) to other nearby SyncTrip users and enable in-person meetups for group activities.

Platform improvement: Analytics, feature development, and performance monitoring.

Communications: Notifications, updates, and support.

Safety: Detect fraud, enforce policies, and protect the community.

Marketing: Optional promotional emails (opt-out available at any time).

How We Share Your Information

With Group Members: When you join or create a group (trips, riders, movies, sports, outings), your profile and relevant activity details are visible to other members of that group.

SyncMaps Visibility: Your location on SyncMaps is visible to nearby SyncTrip users at the precision level you have chosen (hidden, approximate ~500m, or precise ~150m). You control this at all times.

Service Providers: Hosting (e.g., AWS), analytics, payment processors (if introduced). All providers are bound by confidentiality obligations.

Legal Requirements: When required by law, court order, or to protect rights and safety.

Business Transfers: In case of merger, acquisition, or asset sale, with appropriate notice to users.

We do not sell your personal data.

Biometric & Face Verification DataSENSITIVE DATA

SyncTrip collects facial image data solely for the purpose of verifying your identity before granting chat access within groups. This constitutes sensitive personal data under the DPDP Act 2023 and IT (SPDI) Rules, 2011. We commit to the following: • Raw selfie images are deleted within 24 hours of verification processing. • We do not use facial data for recognition beyond one-time identity verification. • We do not share facial data with any third party. • Verification status (pass/fail) may be retained for account security during your account's lifetime. • You may refuse face verification, but group chat access will be restricted. • You may request deletion of any stored verification data by contacting synctripofficial@gmail.com.

Data Retention

We retain your data for as long as your account is active or as needed for legal and compliance purposes. • Deleted accounts: Data is anonymized or removed within 30 days (except where required for legal holds or backups). • Face verification images: Deleted within 24 hours of processing. • Verification status: Retained for account integrity for the duration of your account. • Location data: Not stored persistently beyond the active SyncMaps session unless required for dispute resolution.

Your Rights and Choices

Under applicable laws (including the DPDP Act 2023): • Access, correct, or delete your personal data. • Withdraw consent at any time (may limit certain features). • Opt out of marketing communications. • Request data portability. • File complaints with the Data Protection Board of India. • Location precision control: Change your SyncMaps visibility (hidden, approximate, precise) at any time within the app. • Face verification data: Request deletion of stored verification data at any time. Contact synctripofficial@gmail.com to exercise any of these rights. We respond within 30 days.

Security

We use industry-standard security measures including encryption in transit and at rest, access controls, and regular security audits. Face verification data is handled with heightened security given its sensitive nature. No system is fully secure. You are responsible for maintaining the security of your device and account credentials. Report any suspected unauthorized access immediately to synctripofficial@gmail.com.

International Data Transfers

Data may be processed outside India (e.g., on cloud infrastructure) with appropriate safeguards such as standard contractual clauses, ensuring your data receives equivalent protection.

Children's Privacy

SyncTrip is strictly for users aged 18 and above. We do not knowingly collect data from minors. Face verification is used as an additional safeguard. If during verification or through a credible report we determine a user may be a minor, their account will be immediately suspended pending review. If you believe a minor has registered, contact us immediately at synctripofficial@gmail.com.

Updates to This Policy

We may update this Policy as our features and legal obligations evolve. Material changes will be notified via email or in-app notification at least 7 days before taking effect. Continued use after changes constitutes acceptance.

Questions about this Policy?

Grievance Officer to be appointed as per IT Rules, 2011.
Data Protection Board of India complaints accepted.

synctripofficial@gmail.com