Legal

Privacy policy.

The short version: we sell software, not data. We collect the minimum needed to run the service, and in self-hosted deployments your data never reaches us at all.

1. Who we are

Symt (“we”, “us”) provides location-intelligence software and APIs at symt.ai, console.symt.ai, and api.symt.ai. For data processed by our managed service, Symt acts as a processor on your behalf; for account and website data, we are the controller.

2. What we collect

  • Account data — name, work email, organization, and billing details when you create a console account.
  • Service telemetry — API request metadata (endpoint, status, latency, volume) used for billing, rate limiting, abuse prevention, and reliability. We do not use the coordinates in your requests to build datasets, profiles, or models.
  • Website data — server logs (IP, user agent, page) retained briefly for security. The marketing site sets no advertising trackers and loads nothing from third-party CDNs.

3. What we never do

  • We do not sell personal data. To anyone. Ever.
  • We do not use customer request content to train models or enrich our map data without your written agreement.
  • We do not move managed-region data out of the region you selected.

4. Self-hosted deployments

When you run Symt on your own infrastructure, requests, traces, and datasets are processed entirely within your environment. Sovereign deployments can run with zero egress; optional license telemetry is documented, minimal, and can be disabled for air-gapped installations.

5. Legal bases & regional compliance

We process personal data to perform our contract with you, to meet legal obligations, and for legitimate interests such as security. Our practices are designed to align with the Saudi Personal Data Protection Law (PDPL) and the EU GDPR, including data residency commitments and processing agreements available on request.

6. Retention & security

Account data is kept for the life of the account plus statutory periods; telemetry is aggregated or deleted on rolling windows. Data in transit is encrypted with TLS, data at rest with industry-standard encryption, and access is role-scoped and logged.

7. Your rights

You may request access, correction, export, or deletion of your personal data at privacy@symt.ai. We respond within the timelines required by applicable law.

8. Changes

We will post material changes here and notify account owners by email. Last updated: July 2026.