What we collect, why, and the controls you have. Your footage never leaves your computer.
SynCut is operated by 1001619859 Ontario Incorporated (“SynCut,” “we,” “us”), an Ontario, Canada corporation. For any privacy question or request, contact contact@syncut.io.
a. Account information. Your email address (we email you a one-time code to sign in) and basic account status (plan tier, sign-in timestamps).
b. Usage data — the “Data Vault.” Depending on your region and your choices (see Section 6), we collect events about how you interact with SynCut: searches and filters you apply; tracks you preview, share, or select; the sync mode you choose; and derived, non-content characteristics of your edit (for example, the number and spacing of cut points, detected tempo, and an abstract “edit profile/cluster”). We use this to train and improve our music-matching engine. We do not collect your video or audio files, your project files, or the content of your media — only these derived signals and interaction events.
c. Technical & diagnostic data. Crash reports and error logs (via our error-monitoring provider), app version, and basic operating-environment data, used to keep SynCut working.
d. Payment data (paid plans). Processed by our payment provider (Stripe). We receive confirmation and limited billing details (e.g., plan, last 4 digits, country) but do not store your full card number.
We use the information above to: (a) provide and secure SynCut and your account; (b) improve our music-matching recommendations (the core purpose of the Data Vault); (c) provide support and respond to you; (d) process payments and prevent fraud; and (e) comply with legal obligations.
We may also create irreversibly anonymized, aggregated data from these usage signals. Because such data cannot be linked back to you, we may retain and use it indefinitely, including to improve SynCut and in aggregate with our music-catalog partners.
Our legal bases depend on where you live. For the essential, minimal data needed to run and secure SynCut and your account, we rely on performance of our contract with you. For the usage data described in Section 3(b), we rely on our legitimate interests plus notice in the United States, Australia, and Canada outside Quebec, and on your explicit consent in the EU, the UK, and Quebec (e.g., GDPR/UK GDPR and Quebec Law 25). You can withdraw consent at any time and exercise the rights in Section 8.
Regional defaults. In the United States, Australia, and Canada outside Quebec, this usage data is collected by default and you can opt out at any time in SynCut’s Settings. In the EU, the UK, and Quebec, we collect it only if you opt in.
We don’t sell your personal information. We share data only with service providers that help us run SynCut, under contract and only as needed:
| Provider | Purpose | Approx. data location |
|---|---|---|
| Supabase | Database & authentication | United States |
| Railway | Backend / API hosting (api.syncut.io) | United States |
| Backblaze B2 | Encrypted database backups | EU (Germany) |
| Sentry | Error & crash monitoring | United States |
| Stripe | Payment processing (paid plans) | United States / global |
| Music catalogs | When you choose to license a track, your request goes to the catalog under its terms | Varies |
We may also disclose information if required by law or to protect rights and safety, and in connection with a corporate transaction (merger, acquisition), subject to this Policy.
Subject to your local law (Canada PIPEDA, Quebec Law 25, GDPR/UK GDPR, California CCPA/CPRA, and others), you may have the right to: access the personal data we hold about you; correct it; delete it; withdraw consent; object to or restrict certain processing; data portability; and, for California residents, to opt out of any “sale”/“sharing” of personal information (use the “Do Not Sell or Share My Personal Information” control in SynCut’s Settings, or email us). To exercise any right, email contact@syncut.io; we’ll respond within the time your law requires.
We’re based in Canada and use providers in the United States and the EU (see Section 7). Using SynCut means your data may be transferred to and processed in those countries, which may have different data-protection laws. Where required, we use appropriate safeguards for such transfers.
We keep account data for the life of your account and for a reasonable period afterward to meet legal, tax, and security obligations. Identifiable usage data is kept for 12–24 months depending on your region, then deleted or anonymized. Anonymized, aggregated data may be kept indefinitely. You can request deletion of your identifiable data at any time by emailing contact@syncut.io, subject to legal retention requirements.
We protect data with measures including encrypted connections, access controls, and encrypted backups (our database backups are encrypted at rest). No system is perfectly secure, but we work to protect your information and will notify you and regulators of a breach where the law requires.
SynCut is not directed to children. We don’t knowingly collect personal information from anyone under 16. If you believe a child has provided us data, contact us and we’ll delete it.
We may update this Policy. For material changes we’ll provide notice (email and/or in-app) and update the “Last updated” date.
Privacy questions or requests: contact@syncut.io — 1001619859 Ontario Incorporated, Ontario, Canada.