Data Collection and Processing
This website (synthector.com) is a static informational site hosted on GitHub Pages. It has three separate public-site flows:
- Synthetic walkthrough: static synthetic examples with limited first-party aggregate interaction metrics.
- Sandbox access request form: a request form for email verification, manual review, follow-up, and abuse control.
- Controlled token-gated sandbox: a limited browser panel for users who have received a manually issued sandbox token.
These flows are handled differently, as described below.
Synthetic Walkthrough
The synthetic walkthrough uses static synthetic examples. It records limited first-party aggregate interaction metrics to evaluate whether the public demo is useful and understandable. These metrics are application-level labels about demo interaction, not browser storage identifiers or user profiles.
Examples of collected demo events include:
- Lab viewed
- Workflow selected
- Advanced risk profile changed
- Evidence view opened
- Evidence kit clicked
- Sandbox access CTA clicked
- Technical-fit CTA clicked
Application-level metrics may include:
- Event type
- Selected synthetic workflow category
- Selected risk categories
- Selected view mode
- First-party campaign labels s_src and s_cmp
The public demo metrics endpoint does not collect or store:
- Raw text
- Minimized or redacted output
- User-entered content
- Detected substrings
- Offsets
- Email addresses
- Names
- Cookies
- Local or session storage identifiers
- Full user agents
- Third-party analytics identifiers
Sandbox Access Requests
If you request controlled sandbox access, the form collects the details you submit so the request can be verified, reviewed manually, and followed up on. Do not include sensitive or confidential information in this form.
Sandbox access request fields may include:
- Work email address
- Company
- Role
- Workflow category
- Brief use case
- Consent status
- First-party campaign labels s_src and s_cmp
Sandbox access requests are used for email verification, manual review, follow-up, and backend abuse controls. The public form includes a bot honeypot field and does not issue tokens, create accounts, upload files, or process demo text through the Synthector engine.
Controlled Sandbox
The controlled sandbox is separate from the synthetic walkthrough and the sandbox access request form. It requires a manually issued sandbox token and is intended only for synthetic or non-confidential text. Do not enter real personal, customer, employee, patient, financial, or confidential data.
When you run the controlled sandbox, the browser panel calls:
- https://7cbk6j8646.execute-api.eu-central-1.amazonaws.com/prod/sandbox/redact-ui
Each run sends only the sandbox token, the selected workflow category, and the current text to that controlled sandbox endpoint. The panel keeps the token, input, and returned output only in page state while the page is open. It does not store the token, input, or output in cookies, browser storage APIs, or the URL.
The controlled sandbox does not send the token, input, or output to the public demo metrics endpoint. Synthector does not retain raw controlled sandbox input text or minimized output text. Backend token usage is tracked with token hash and prefix metadata, expiry metadata, daily and total usage counters, and last-used metadata.
Operational logs for the controlled sandbox should not include request bodies, raw tokens, input text, or output text. The panel may return minimized output and evidence-style metadata to help interpret the run; that browser-displayed metadata is not a cryptographic attestation.
No Third-Party Analytics or Browser Storage Identifiers
This site does not use:
- Cookies
- Browser storage identifiers
- Third-party analytics tools
- Tracking pixels
- Advertising services
- User tracking or profiling
Synthector's first-party website metrics do not collect full user-agent strings.
Server Logs
Infrastructure providers may process standard technical connection data necessary to deliver, secure, and operate the site. GitHub Pages may collect standard technical logs such as IP address, browser information, and request metadata as part of hosting the site. That handling is governed by GitHub's Privacy Statement.
Email Communication
If you contact us at contact@synthector.com, we use your email address and message only to respond. If you submit a sandbox access request, we use your email address for verification, manual review, and follow-up. We do not share that information or use it for unrelated purposes.
GDPR Compliance
We aim to keep website handling limited and clear:
- Transparency: This policy explains what the site does and does not do
- Data minimization: Public demo metrics are limited to aggregate interaction labels
- Purpose limitation: Demo metrics are used to evaluate usefulness; email is used to respond to inquiries, verify sandbox access requests, review requests manually, and follow up; controlled sandbox token metadata is used to operate token access and usage limits
- Storage limitation: Unverified sandbox requests are kept for 14 days, rejected or inactive sandbox requests are kept for 90 days, and verified business requests are kept for up to 365 days unless deletion is requested. Raw controlled sandbox input text and minimized output text are not retained by Synthector.
Synthector API Service
If you use the Synthector API service separately from this website, the current sync text path is described as follows:
- Transient handling: Raw customer text is processed in memory
- No intentional sync-path persistence: Raw or minimized customer text is not intentionally persisted by default
- Returned output: Minimized text is returned to the caller
- Operational state: Metadata-only evidence, metering, aggregate statistics, and standard logs may be retained
Third-Party Services
This site is hosted on GitHub Pages and loads IBM Plex fonts from Google Fonts. It does not embed third-party analytics, advertising scripts, or other third-party widgets for tracking.
Changes to This Policy
Updates to this policy will appear on this page with a revised "Last updated" date.
Contact Information
For privacy questions, contact:
Christopher R. Runowski
Email: contact@synthector.com