Syntora processes sensitive business communications — sales calls, customer conversations, deal data. Protecting this information is a fundamental requirement, not an afterthought. This page details how we handle data security, privacy, and regulatory compliance.

1. Anonymization by default — Personal data (names, phone numbers, addresses) is automatically masked during AI analysis. The neural network works with cleaned transcripts, not raw personal data.
2. Minimum necessary access — We request read-only CRM access. We never modify your data.
3. Russian data residency — All processing and storage happens on servers located in Russia.
4. Encryption everywhere — Data is encrypted both in storage and during transmission.

All data transmitted between your systems and Syntora uses TLS 1.3 — the latest transport layer security protocol. This applies to:

• CRM API connections
• Telephony recording transfers
• Messenger data synchronization
• Web interface and report delivery

All stored data is encrypted with AES-256, the same standard used by financial institutions and government agencies. This includes:

• Call transcriptions
• Analysis results and scoring data
• Deal context databases
• Action plans and historical reports

All Syntora infrastructure runs on Yandex Cloud — a certified Russian cloud provider with data centers located in Moscow.

What this means for you:

• Your data never leaves Russian territory
• Processing happens on certified servers that meet Russian regulatory requirements
• No data is sent to foreign cloud providers (AWS, Google Cloud, Azure)

For clients on the Full Management plan, we offer a dedicated isolated server — your data is physically separated from other clients' data.

Russia's Federal Law No. 152-FL "On Personal Data" sets requirements for how personal data must be collected, processed, stored, and protected. Syntora complies with 152-FL through:

Before any communication reaches the AI analysis layer, it goes through anonymization:

1. Automatic masking — Phone numbers, email addresses, physical addresses, and card numbers are replaced with tokens
2. Name substitution — Customer names are replaced with identifiers (Customer A, Customer B)
3. Sensitive content filtering — Patterns matching financial data or personal identifiers are flagged and masked

The AI analyzes conversation quality, not personal information. It evaluates how objections were handled, not who raised them.

• Role-based access — Different team members see different levels of data (manager view vs. executive summary)
• Audit logging — All data access is logged with timestamps and user identification
• Session management — Automatic session expiration and re-authentication requirements
• Two-factor authentication — Available for all account types

• NDA available — We sign non-disclosure agreements upon request, standard for all clients
• Data processing agreement — Formal agreement defining exactly what data we process and how
• Dedicated server option — Physical data isolation on the Full Management plan

Client-initiated deletion: You can request full data deletion at any time. We process deletion requests within 5 business days and provide written confirmation.

Q: Can Syntora employees see my sales calls? A: Analysis is automated. Human access to raw call data is restricted to technical support scenarios and requires explicit client authorization.

Q: What happens to my data if I cancel the service? A: All data is deleted within 30 days of service termination. You can export reports and action plans before cancellation.

Q: Do you share data with third parties? A: No. Your data is never shared with, sold to, or accessed by third parties. LLM analysis uses API calls that do not retain your data for model training.

Q: How do you handle data breaches? A: We maintain an incident response plan with client notification within 24 hours of a confirmed breach, in accordance with regulatory requirements.

For more questions, see the full FAQ.

Back to Documentation | Technology Stack | Pricing | syntora.ru