Privacy, Security and Compliance

Built on Trust. Prepared for Scale.

Kyntlo protects business workflows with a practical security program, privacy-first policies, customer controls, and transparent compliance status for subscribers and partners.

Current trust posture

Clear Security Signals for Kyntlo Customers

This page summarizes the controls, policies, and operational practices that support Kyntlo. It is written for customers who need to understand how account access, privacy requests, data handling, and security responsibilities are managed.

Active

Security Program

Kyntlo maintains a documented security posture covering account access, customer responsibilities, incident reporting, vendor usage, and data protection expectations.

Published

Privacy and Legal Pages

Privacy Policy, Terms of Use, Refund Policy, Cookie Policy, Accessibility, and Contact pages are available publicly from the website footer.

Integration Required

App Login and Demo Requests

Website login actions point to the Kyntlo Hub, while demo requests are routed through the public demo form and sales email workflow.

Data handling

Data Hosting, Privacy, and Regional Handling

Kyntlo customers may need to understand where business and contact data is stored, processed, and transferred. Data location can depend on the connected platform, infrastructure providers, communications providers, payment providers, enabled integrations, and account configuration.

Account-specific

Data Hosting and Residency

Customer data is stored and processed inside the platform and infrastructure provider environments used to operate each Kyntlo account. Hosting region and residency requirements should be confirmed before launch.

Important for Europe

EU and UK Customers

European customers can request available hosting-region details, subprocessors, data transfer safeguards, and contract terms before onboarding or during due diligence.

Program ready

GDPR and Privacy Rights

Kyntlo publishes privacy notices and provides request channels for access, correction, deletion, restriction, objection, portability, and consent withdrawal where applicable.

Customer responsibility

CCPA/CPRA and Marketing Rules

Kyntlo customers remain responsible for lawful lists, consent, messaging practices, opt-outs, and honoring applicable consumer privacy requests.

Integration-dependent

Third-Party Processors

Messaging, calendar, payment, analytics, AI, and integration services may process limited data needed to deliver the selected feature or workflow.

Requires written agreement

HIPAA and PHI

Kyntlo should not be used for Protected Health Information unless a written agreement, provider support, and appropriate account configuration are in place.

Security pillars

How Kyntlo Thinks About Protection

The controls below define the standard Kyntlo security model. Final technical behavior may depend on the connected platform, hosting environment, payment provider, communications providers, and customer configuration.

Infrastructure Security

Secure hosting, HTTPS transport, provider access controls, firewall protections, and vendor safeguards are expected for production services.

Product Security

Customer accounts should use role-based permissions, strong authentication, limited user access, and careful workspace administration.

Operational Security

Support access, account changes, billing requests, and security issues should be handled through controlled support channels.

Application Security

Customer-facing forms, automations, AI workflows, and integrations should be reviewed before launch to reduce abuse and data exposure.

Shared responsibility

What Customers Must Control

Kyntlo can provide the workspace, controls, and support path, but each customer controls their users, contact lists, consent records, campaign content, workflow logic, and data handling practices.

  • User access: invite only the users who need access and remove inactive users promptly.
  • Data permission: upload only contacts and data you are authorized to process.
  • Messaging compliance: maintain opt-ins, opt-outs, and lawful marketing practices.
  • Workflow review: test automations, AI responses, and customer-facing messages before launch.
  • Incident reporting: report suspected unauthorized access, account misuse, or billing abuse quickly.

Request Security or Compliance Information

For security questions, privacy concerns, customer due diligence, or account-risk reviews, contact Kyntlo with your company name, account email, request type, and any required deadline.

Contact contact@kyntlo.ai