Compliance & subprocessors

Syncanix’s compliance program: GDPR and CCPA support with a DPA available, SOC 2 and ISO 27001 in progress, and the subprocessors we rely on.

Syncanix is built to enterprise compliance standards, and we’re transparent about what’s in place today versus what’s underway. Here’s where things stand.

Syncanix is designed for GDPR and CCPA/CPRA from the ground up: EU data residency, data-subject rights, and a Data Processing Agreement available to customers who need one.

Certifications

We’re transparent about certification status — we never claim a certification we don’t hold:

SOC 2 (Type I & II): In progress. Our controls are tracked toward a SOC 2 audit; it is not yet certified.
ISO 27001: In progress, tracked alongside SOC 2. Not yet certified.
EU AI Act (Article 50): In progress. The product is designed to meet the transparency obligations for AI systems.
HIPAA & FedRAMP: Out of scope for the current release.

Subprocessors

Syncanix relies on a short list of trusted vendors to run the service — for cloud hosting, model access, authentication, billing, error tracking, and email. All customer data and retrieval stays within AWS in Frankfurt.

Next steps

Privacy & your rightsMemory, personal data, and data requests.AI transparencyWhich models we use and how AI use is disclosed.

GDPR & CCPA

Certifications

Subprocessors

Next steps