Synexa

Security at Synexa

Last updated: May 13, 2026

Security is foundational to a creative tool — your prompts, your reference images, and your generated outputs are work product. This page summarizes how we protect them.

Encryption

  • In transit: TLS 1.2+ on every request to synexa.art and our APIs.
  • At rest: account data and content are stored encrypted at rest on managed infrastructure.
  • Passwords: hashed with industry-standard algorithms — never stored in plaintext.

Access control

  • Row-level security on every database table — your data is only accessible by you and Synexa staff acting on a support request you initiated.
  • Production access is limited to a small set of engineers, audited, and time-bound.
  • Two-factor authentication is supported on user accounts (recommended for the creator and affiliate programs).

Your prompts are not used for training

We do not use your prompts, reference images, or generated outputs to train AI models. Period. Your creative work is yours.

Payments

Card payments are processed by Stripe. Synexa never sees your full card number. We store only Stripe's customer and subscription identifiers and a transaction history.

Data retention & deletion

  • You can delete any generation, collection, or your entire account from the dashboard.
  • Account deletion removes your data from primary systems within 30 days. Backups roll off on a 90-day cycle.
  • We retain minimal billing records for as long as required by tax and accounting law.

Content policy enforcement

Synexa has an explicit unrestricted policy on legitimate creative categories but blocks illegal content (CSAM, non-consensual intimate imagery, content targeting real private individuals without consent). Enforcement is automated and reviewed.

Responsible disclosure

If you believe you've found a security vulnerability, please email security@synexa.art with details and steps to reproduce. We acknowledge reports within two business days and do not pursue good-faith researchers.

Subprocessors

Synexa uses a small set of trusted infrastructure providers for hosting, database, payments, email, and AI inference. The current list is available on request via security@synexa.art.