Privacy Policy
PostSync keeps post-production workspace data focused on operational use: projects, contacts, handovers, ingest records, approvals, deliverables, archive proof, and customer support.
Last updated: 24 June 2026
PostSync exists to help post-production teams run cleaner delivery workflows. Personal information should be used for clear operational purposes, protected carefully, kept only as long as needed, and never sold as a production contact list.
This Privacy Policy applies to PostSync websites, workspaces, onboarding forms, contact forms, support requests, project records, recipient views, and related post-production operating features. It covers workspace administrators, internal team members, vendors, clients, reviewers, and people who contact PostSync for demos, sales, support, or partnerships.
For project data uploaded into a customer workspace, the production company, post house, studio, agency, broadcaster, or workspace owner is usually the responsible party or controller. PostSync acts as an operator or processor that provides software, hosting, access, workflow, and support functions. For website enquiries, account administration, billing, support, and product analytics, PostSync may act as the responsible party or controller.
We may process names, roles, departments, phone numbers, email addresses, company details, project assignments, team access records, vendor and client reviewer records, handover notes, ingest records, approval status, delivery records, archive records, support messages, billing and plan details, technical logs, device/browser information, IP address, and authentication/session data.
Production teams should avoid uploading unnecessary sensitive information. If a workspace records sensitive operational notes, legal constraints, talent confidentiality, security requirements, or other restricted information, the workspace owner must ensure it has a lawful basis, gives appropriate notices, limits access, and keeps the information relevant to post-production operations.
We use personal information to provide the platform, create and manage workspaces, support onboarding, maintain project records, manage access, send service communications, support customer requests, secure the service, prevent abuse, maintain backups, improve reliability, manage billing, and comply with legal obligations.
Depending on context, processing may be based on contract performance, legitimate operational interests, consent where required, legal obligations, or the workspace owner's lawful basis for production administration. PostSync is designed to support lawful, fair, reasonable, purpose-specific, minimal, accurate, secure, and accountable handling of personal information.
We may share information with hosting providers, database providers, email delivery services, analytics/security tools, payment providers, professional advisers, and support contractors where needed to operate the service. We do not sell production contact lists, workspace contacts, project records, or recipient data.
PostSync may use cloud infrastructure and service providers located outside South Africa or outside the country where a user is based. Where required, transfers should rely on appropriate safeguards, contractual protections, adequate protection, consent, or another lawful transfer mechanism.
Project data is retained for as long as the workspace owner needs it for post-production operations, reporting, audit, invoicing, legal requirements, delivery proof, or archive proof, unless deleted earlier under workspace settings or an agreed contract. Website enquiries and support records are kept only as long as reasonably needed for the purpose collected.
PostSync uses administrative, technical, and organisational safeguards such as authenticated workspace access, HTTP-only sessions, environment-managed credentials, access control, backups, and operational monitoring. No online service can guarantee absolute security, so workspace owners must also manage users, passwords, permissions, exports, and shared links responsibly.
Depending on applicable law, you may have rights to access, correct, delete, object to, restrict, or port personal information, and to withdraw consent where processing is based on consent. Users should usually contact the workspace owner first; PostSync can help route requests where appropriate.
If you believe personal information has been handled unlawfully, contact the workspace owner or PostSync first so the concern can be reviewed. You may also have the right to complain to the South African Information Regulator or another applicable supervisory authority. We may update this policy as PostSync grows, connects more providers, or adds modules.
For enterprise agreements, payment processing, cross-border deployments, regulated customer data, or signed customer contracts, qualified counsel can adapt this policy to the final company entity, jurisdictions served, subprocessors, and data practices.
