Aller au contenu principal
Try Syndy for freeLogin
PricingArticles & Guides

Features

Fee managementOnline paymentsGeneral meetingsIncident trackingProperty accountingCo-owner portalDashboard
Try Syndy for free

Privacy Policy

Last updated: February 2025

1. Data controller

3B Ventures SAS
Simplified Joint Stock Company under Moroccan law
Registered office: 3rd Floor, Apt 11, Lusitania, Corner Rue D'Alger and 2 Rue Abou Bakr Al Baklani, Casablanca 20070
Email: contact@syndy.ma

3B Ventures SAS, publisher of the Syndy platform, is the data controller for personal data collected through the platform, in accordance with Law No. 09-08 on the protection of individuals with regard to the processing of personal data.

With regard to co-owner data entered by the Property Manager through the platform, 3B Ventures SAS acts as a data processor within the meaning of Article 1-10 of Law No. 09-08. The Property Manager, as data controller for this data, is responsible for ensuring the lawfulness of its collection and processing.

2. Data collected

A. Identity data

  • Last name, first name
  • Email address
  • Phone number (optional)
  • Password (hashed and salted - never stored in plain text)

B. Property data

Information relating to units, properties, shared documents, incidents, payments, invoices, general meetings, minutes, etc.

C. Technical data

  • IP address
  • Connection and activity logs
  • Browser type and operating system
  • Language and display preferences
  • Device type (mobile, desktop)

D. AI-generated data

Data automatically extracted from invoices and documents you submit to our artificial intelligence service. This data is processed only to provide you with the requested service and is not retained by the AI provider.

3. Processing purposes

In accordance with Article 3 of Law 09-08, we process your data for the following purposes:

  • User account management: creation, authentication, subscription management.
  • Service provision: property management, accounting, general meetings, incidents.
  • Communication: notifications, payment reminders, important information.
  • Customer support: responding to your requests and technical assistance.
  • Security: protection against fraud and unauthorized access.
  • Service improvement: usage analysis and platform optimization.
  • Legal obligations: retention of accounting data, response to judicial requisitions.

5. Data Transfer

In the course of providing our services, some data may be processed by providers located outside Morocco, in accordance with Articles 43 and 44 of Law 09-08.

These transfers are carried out with appropriate safeguards, including:

  • Our providers hold internationally recognized security certifications.
  • Contractual clauses ensure an adequate level of data protection.
  • Destination countries have data protection legislation recognized as adequate.

6. Hosting & Subcontractors

Your data is hosted on a secure cloud infrastructure, managed by trusted providers subject to strict contractual obligations regarding data protection and confidentiality, in accordance with Article 21 of Law 09-08.

We select our subcontractors based on their security certifications (ISO 27001, SOC 2/3) and their data protection commitments.

7. Retention period

In accordance with the principle of storage limitation (Article 3 of Law 09-08), your data is retained:

  • Account data: Retained as long as your account is active, then 3 years after the last activity or account closure.
  • Accounting and financial data: Retained for 10 years in accordance with Moroccan accounting legal obligations.
  • Technical and security logs: Retained for a maximum of 1 year.
  • Consent data: Retained for 5 years as proof.

Upon expiration of these periods, your data is deleted or irreversibly anonymized.

8. Your Rights (Law 09-08)

In accordance with Articles 7 to 9 of Law 09-08 on the protection of individuals with regard to the processing of personal data, you have the following rights:

  • Right of access (Article 7): You can obtain confirmation that your data is being processed and access all data concerning you.
  • Right of rectification (Article 8): You can have any inaccurate or incomplete data concerning you corrected.
  • Right of deletion (Article 8): You can request the deletion of your data, subject to legal retention obligations.
  • Right of opposition (Article 9): You can object, on legitimate grounds, to the processing of your data.

How to exercise your rights:
You can exercise your rights directly from your "My Profile" section on the platform, or by contacting us at:

contact@syndy.ma

We commit to responding to your request within 30 days.

9. Security measures

In accordance with Article 23 of Law 09-08, we implement appropriate technical and organizational security measures to protect your data:

  • Encryption: All communications are encrypted via HTTPS/TLS.
  • Secure authentication: Passwords hashed with secure algorithms (bcrypt).
  • Access control: Role-based permission system (RBAC).
  • Backup: Regular and automated data backups.
  • Monitoring: Continuous monitoring and anomaly detection.
  • Training: Awareness training for our teams on data protection.

10. Cookies

Our platform uses cookies and similar technologies. For more detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

11. Data Protection (CNDP)

3B Ventures SAS is committed to complying with all provisions of Law No. 09-08 and the directives of the National Commission for the Control of Personal Data Protection (CNDP).

In accordance with Articles 7, 8 and 9 of Law 09-08, you have the right to access, rectify, delete and object to the processing of your personal data. To exercise your rights, contact us at contact@syndy.ma.

www.cndp.ma

12. Contact

For any questions regarding this privacy policy or the processing of your personal data, you can contact us:

3B Ventures SAS
Email: contact@syndy.ma
Subject: Personal data protection