Last updated: April 24, 2025
Welcome to synthoart.com (the “Platform”), operated by DivineNode Limited (“DivineNode”, “we”, “us”, or “our”). This Privacy Policy outlines the principles and practices we follow in the collection, use, processing, and protection of personal data, in accordance with the UK General Data Protection Regulation and Data Protection Act 2018 (commonly – “GDPR”).
To the extent that any information relates to an identified or identifiable natural person and is protected under applicable data protection legislation, such information shall be referred to in this Policy as “Personal Data.”
By accessing or using our Platform, you confirm that you have read, understood, and agree to the terms of this Privacy Policy. If you have any questions or concerns regarding your personal data, we encourage you to contact us via the details provided below.
1. Data Controller
The data controller responsible for your personal data is:
DivineNode Limited
Company registration number: 16388447
Registered address: 167 - 169 GREAT PORTLAND STREET 5TH FLOOR LONDON ENGLAND W1W 5PF
As the data controller, DivineNode determine the purpose and manner in which your personal data is processed, and we are responsible for ensuring that such processing complies with applicable data protection laws.
2. Categories of Personal Data Processed
DivineNode may collect and process the following categories of personal data:
- Contact Data – name, email address, phone number, postal address.
- Account Data – account ID, login credentials, preferences, settings, profile images, and activity logs.
- Identity Data – full name, date of birth, and identification documents (e.g., ID card or passport).
- User-Generated Content – images, text, or other materials created using the Platform.
- Compliance Data – information required to fulfill legal obligations, such as AML/KYC requirements.
- Transaction Data – order history, payment details, billing and usage history.
- Payment Data – card details, bank account numbers, and transaction identifiers.
- Communication Data – support tickets, chat logs, emails, and customer service records.
- Marketing Data – preferences, participation in surveys or promotions, and ad engagement metrics.
- Technical Data – IP address, device identifiers, browser type, and access logs.
- Support Data – any data shared during interactions with our support team.
- Visitor Data – CCTV recordings and visitor logs at our premises, where applicable.
If you need further information or clarification about the types of data we collect and their uses, please contact us. We are committed to transparency and ensuring you understand our data processing practices.
3. Legal Basis and Purposes of Processing
DivineNode process your personal data for specific purposes and under defined legal bases, including:
- Account Creation and Service Provision – to create and manage your user account and deliver our services (Performance of a contract).
- Identity Verification and Security – to prevent unauthorized access and ensure user authenticity (Legal obligation; Legitimate interests).
- Legal Compliance – to satisfy regulatory obligations (AML, KYC, CFT) (Legal obligation).
- Order and Transaction Fulfillment – to process and deliver purchases and manage financial transactions (Performance of a contract).
- Customer Service and Communication – to respond to inquiries and provide support (Performance of a contract; Legitimate interests).
- Marketing and Promotions – to send promotional communications with your consent (Consent; Legitimate interests).
- Risk and Fraud Management – to detect, prevent, and address fraud or misuse (Legal obligation; Legitimate interests).
- System Security and Technical Support – to ensure service reliability and resolve technical issues (Performance of a contract).
- Product Development and Service Improvement – to enhance user experience through analysis and feedback (Legitimate interests).
- Dispute Resolution – to address legal claims and defend our interests (Legal obligation; Legitimate interests).
4. Methods of Data Collection
DivineNode collect personal data through the following channels:
- Direct Collection – data you submit when creating an account, contacting us, or using our services.
- Automated Technologies – data collected via cookies, analytics tools, and similar tracking technologies. For details, refer to our [Cookie Policy].
- Third-Party Sources – including payment providers, regulatory authorities, and public databases.
5. Required vs. Optional Data
Some personal data is essential to access and use our Platform. Required data will be clearly indicated at the point of collection. Optional data, while not necessary for service provision, may enhance your user experience. You are not obliged to provide optional information, and it will not affect your access to core functionalities of the Platform.
6. Data Sharing
We may share your personal data with:
- Authorized Service Providers – including IT services, payment processors, and marketing partners.
- Legal and Regulatory Authorities – when required to comply with applicable laws and enforcement obligations.
DivineNode do not sell your personal data. All sharing is conducted with appropriate legal safeguards and under strict confidentiality agreements.
7. International Data Transfers
Your data may be transferred to countries outside the European Economic Area (EEA). Where such transfers occur, we implement safeguards such as:
- European Commission’s Standard Contractual Clauses;
- Binding corporate rules; or
- Transfers based on adequacy decisions.
These mechanisms ensure your personal data remains protected at a level consistent with EU standards.
8. Data Retention
DivineNode retain personal data only for as long as necessary to fulfill the purposes outlined in this Policy or to comply with legal obligations. Retention periods vary depending on the data category and applicable law, typically ranging from 5 to 10 years. After these periods, data is securely deleted or anonymized.
9. Data Security
DivineNode implement industry-standard technical and organizational measures to protect your personal data, including:
- Encryption during transmission and storage
- Access control protocols for authorized personnel only
- Regular security audits and assessments
- Secure infrastructure and PCI DSS-compliant partners
Your cooperation is vital—use strong passwords, enable Two-Factor Authentication, and be cautious with suspicious messages or public networks.
10. Your Data Protection Rights
As a data subject, you have the following rights:
- Right of Access: You have the right to request access to your personal data and obtain a copy of the information we hold about you.
- Right to Rectification: You are entitled to request the correction of any inaccurate or incomplete personal data we hold about you.
- Right to Erasure: You may request the deletion of your personal data, subject to certain legal obligations and limitations.
- Right to Restrict Processing: Under specific circumstances, you may request that we restrict the processing of your personal data.
- Right to Object: You have the right to object to the processing of your personal data where it is based on our legitimate interests or is used for direct marketing purposes.
- Right to Data Portability: You may request to receive your personal data in a structured, commonly used, and machine-readable format, and you may also request that we transfer this data to another data controller where technically feasible.
- Right to Withdraw Consent: Where the processing of your personal data is based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please contact DivineNode using the contact details provided in this document. Upon receiving your request, we will inform you of any such limitations and the outcome of your request. Additionally, we may require you to provide sufficient information to verify your identity before we can process your request to ensure the security of your data.
11. Sensitive Data and User-Generated Content
You are responsible for the nature and content of the data you submit to the Platform. DivineNode urge you not to upload sensitive information unless strictly necessary. Exercise discretion and ensure that you fully understand the implications of disclosing such data.
12. Automated Decision-Making
DivineNode do not engage in automated decision-making, including profiling, that produces legal or similarly significant effects on you.
13. Complaints
If you have concerns regarding the way DivineNode handle your personal data, we welcome the opportunity to address them directly and encourage you to contact us first. However, if for any reason it is not feasible to reach out to us, or if you prefer, you may also lodge a complaint with the supervisory authority in your jurisdiction. In England and Wales the relevant authority is the Information Commissioner's Office (ICO).
ICO contact details:
Website: https://ico.org.uk/global/contact-us/
Data protection Complaint Mechanism: https://ico.org.uk/make-a-complaint/data-protection-complaints/?answers=g
Phone: +0303 123 1113
14. Updates
DivineNode may update this Privacy Policy periodically to reflect changes in our data processing practices or to comply with legal requirements. The latest version of this Privacy Policy will always be available on our website, and any major changes will be communicated to you through the appropriate channels. We kindly ask you to review this Privacy Policy regularly to stay informed about how we protect your personal data and to be aware of any updates or modifications.
15. Minors’ Data Protection
DivineNode’s Platform are not intended for use by individuals under the age of 18. We do not knowingly collect, process, or store personal data from minors. In the event that we become aware of the inadvertent collection of personal data from a minor, we will take prompt and appropriate measures to delete such data from our records. If you are a parent or guardian and have reason to believe that your child under the age of 18 has provided us with personal data, we urge you to contact us immediately so that we can address the issue and ensure the removal of any such data from our systems.
16. Contact Information
For any questions or concerns regarding this Privacy Policy or our data processing practices, please contact us at: support@synthoart.com.