Sinnia Sinnia



Privacy Policy

This Privacy Policy was last updated in August 2018.

This Privacy Policy explains what type of information Redes, Arcos y Nodos S.A.P.I. de C.V. or it’s brands (“Redes, Arcos y Nodos”, “Sinnia” or “we”) may collect, hold and process in connection with provision of any Redes, Arcos y Nodos S.A.P.I. de C.V. products, services, content, applications, or websites (referred to collectively as the “Services”), and how that information is used and protected. It also sets out how you can contact us if you have any queries or concerns regarding your personal data.

We reserve the right to make changes to this Privacy Policy at any time. Please check the Privacy Policy periodically for changes, although, if you are our customer, we may also notify you via email of any changes that, in our sole discretion, materially impact your use of the Services or the way we process your personal data. Your continued use of our Services which are subject to this Privacy Policy will signify your acceptance of any and all changes to this Privacy Policy made by us from time to time.

This Privacy Policy is issued by Redes, Arcos y Nodos, S.A.P.I. de C.V., with its registered office at Euler 152, Chapultepec Morales, Miguel Hidalgo, CDMX, México.

1. About Redes, Arcos y Nodos

Redes, Arcos y Nodos, is a provider of Software as a Service (SaaS) solution for social media marketing, market intelligence and social media crisis management. For more information about Redes, Arcos y Nodos, please see our website at http://sinnia.mx/.

2. Data we collect or receive

We collect personal data from our customers and users of the Services for our own purposes, such as to provide and administer the Services. We are the data controller in respect of this personal data.

In order to provide our services, we analyse user profiles and other information that we receive directly from the social media platforms such as Facebook, Twitter, LinkedIn and other, via these platforms’ APIs. Such data include both non-personal data such as various statistics and metrics and personal data of the platforms’ users. Where we source the data directly from the relevant platforms, via these platforms’ public APIs, we determine the purpose of processing, which is developing and constantly enhancing our Services and offering them to our customers, via our web platform and products. In such cases, we would be the data controller with respect to this information.

We also process personal data on behalf of our customers as their data processor; this is when the provision of certain Service or Service feature requires that our customers give us a permission (such as, for example, a token or other administrative permission) within the Service to access and manage any information that our customers monitor or collect from social media sites; this may include information that is not publicly available. When we access such customer’s data within their social media pages and properties with respect to which the customers are the data controllers, we act in accordance with the instructions of our customers (which they give us through the Services) as their data processor. This will be, for example, when we access Facebook insights or manage the communication (Facebook messages) between the customer and its end users within our customer care feature of the Community Service.

2.1 Data of customers and users of our Services

We collect your personal data when:

You log to our Service, either by entering your username (email) and password or by any other similar authentication means that we may make available to you;

You otherwise voluntarily provide such data, e.g. by filling out and submitting any forms made available to you through our website or through the Services.

You can log in to the Services with your username. In such case, you provide to us your user name (email) and password.

We may receive additional information from your profile if you give us permission to access it. If you wish to change the scope of your social network profile information that we receive upon your registration, you should review the privacy policy or other guidance available on your social network’s website and change your privacy settings.

For purposes of analysis and improvement of our Services, our servers may automatically record information when you visit our website or use some of our Services, including:

If our Services are purchased by an entity, it is the individual users within such entity’s organization who log into our platform through which the Services are provided and whose personal data are collected, as described above. Where such entity provides us directly with any personal data of its employees or other individual users that it authorized to access the Services, it must have all necessary consents, permissions or registrations to process and to provide to us its employees’ or users’ personal data.

2.2 Social network user data

The type and scope of personal data obtained from social media platforms depends on the type of the APIs and permissions granted by the respective platforms, and on the administrative permissions granted to us by our customers, where applicable.

Below are the most typical examples of data collected about social media platform users:

We only process data that the social network users made available to general public, pursuant to the relevant platforms’ terms, and that are generally accessible via the social network APIs, or data that our customers grant us permission to access.

3. How we use the data

We use your personal data for the following purposes:

3.1 To provide the Services

We may process your personal data in the scope specified in Section 2.1 of this Privacy Policy to identify you when you login to your account and use our Services, to enable us to operate the Services and provide them to you.

Analysis of data from social networks, which may include personal data in the scope specified in Section 2.2 of this Privacy Policy, is the core of our Services. We analyse this data to provide our Services to our customers in the scope and manner allowed by the social platform terms for developers.

3.2 To communicate with you

We may process data of our customers or their individual users in the scope specified in Section 2.1 of this Privacy Policy, in particular email or other contact data, to communicate with our customers and users, for example, when we assist them with setting up or administering their account, when we provide customer care and support, send technical notices, updates of upcoming changes or improvements to the Services, reminders, security alerts and other support and administrative messages.

3.3 To provide a better user experience

We may process your personal data in the scope specified in Section 2.1 to learn how you use our Services to be able to continuously enhance user experience as well as provide our customers seamless customer support. We may process such personal data also to improve and enhance our existing Services and develop new offerings. This includes product and market statistics, research and analytics, benchmarks and other analyses to better understand the needs of users in the aggregate, diagnose problems and analyse trends. See Section 7 below for more details.

3.4 To protect our Services and secure our or third party rights

We process your personal data in the scope specified in Section 2.1 to keep the Service safe, secure and reliable. This includes detecting, preventing, and responding to fraud, abuse, security risks, and technical issues that could harm Redes, Arcos y Nodos, our customers and users.

We may process some of data specified in Section 2.1 when required by law or to establish, exercise or defend our legal claims or, where necessary, protect rights of Redes, Arcos y Nodos.

3.5 For marketing and sales purposes

We may process your contact personal data, in particular email, name, company and job title to offer you our new Services.

4. Lawful basis

For the purposes specified in Sections 3.1 and 3.2, we process your personal data based on our contract with you (if you are our direct customer and a natural person) or based on our legitimate interest to provide our Services to our customers (where our customer is your company or organisation and you are an authorized user designated by your company or organization, or if you are social network user whose data are analysed as described in Section 2.2 above).

For the purposes specified in Section 3.3, we process your personal data based on our legitimate interest to develop and improve our Services.

For the purposes specified in Section 3.4, we process your personal data based on our legitimate interest to protect and secure our rights or claims or the rights of our customers or users.

For the purpose specified in Section 3.5, we process your personal data based on your voluntary consent where you have given us such consent. In a limited scope permissible under applicable law, we may also use your electronic contact details to inform you about our Services without your explicit consent, based on our legitimate interest, as described in more detail in Section 8 below.

Where we use your personal data for our legitimate interests, we make sure that we take into account any potential impact that such use may have on you. Our legitimate interests don’t automatically override yours and we won’t use your information if we believe your interests should override ours unless we have other grounds to do so (such as performance of contract, your consent or a legal obligation). If you have any concerns about our processing, please refer to details of “Your rights and your duty to inform us of changes” in Section 10 below.

5. Retention periods

We retain your personal data for the period necessary to fulfil the purposes outlined in this Privacy Policy or any Services agreement, unless a longer retention is required by law (e.g. for tax or accounting purposes or due to other legal requirements) or storing of the data is needed for the establishment, exercise or defence of Redes, Arcos y Nodos legal claims; in such case, we will store only the data necessary for the enforcement of our claims or our defence for the period necessary in the given case and not exceeding the statutory limitation periods.

6. Sharing your personal data for legal and business purposes

We may use and/or disclose to third parties (including government bodies and law enforcement authorities, professional advisors and our vendors or subcontractors) information about you when:

This information will be shared provided that, in all such circumstances, we will only share the limited personal information that is required to be shared in the unique situation.

We share your data with our trusted business partners or individual who process your data as our data processors on our behalf and pursuant to our instructions, in accordance with this Privacy Policy.  

7. Anonymous statistics

We may use aggregated anonymised data derived from the personal data provided by you or collected by the program analytics such as user behaviour and activities for our own statistics, for auditing, for the purposes of product and market research, for analytics (which helps us to optimise and improve our Services and their usability, the range of Services and to develop new technologies, products, and services), and for benchmarks and other analyses. Additionally, we may choose to publish such anonymised data and to share it with third parties outside of Socialbakers. We will not directly or indirectly transfer any data received from you to (or use such data in connection with) any ad network, ad exchange, data broker, or other advertising or monetization related toolset.

8. Security and location of your data

We have implemented and will maintain appropriate technical and organizational measures, internal controls, and information security routines in accordance with good industry practice while keeping in mind the state of technological development in order to protect your data against accidental loss, destruction, alteration, unauthorized disclosure or access or unlawful destruction. Such measures may include, without limitation, taking reasonable steps to ensure the reliability of employees having access to your data and providing for limited access rights and access controls; authentication; personnel training; regular back up; data recovery and incident management procedures; restrictions on storing, printing and disposal of personal data; software protection of devices on which personal data are stored; etc.

Data collected from you may be transferred to, and stored and processed in, the United States (US) or any other country in which Redes, Arcos y Nodos S.A.P.I de C.V, its suppliers or other third party vendors maintain facilities. While we reserve the right to change our business partners and /or data locations, when we transfer any personal data to the USA or any other country outside the EU or EEA in which Redes, Arcos y Nodos S.A.P.I. de C.V, its suppliers or vendors maintain facilities, we will implement appropriate legal mechanism to ensure an adequate level of personal data protection by such third parties receiving your personal data.

9. Cookies

We use cookies so that the users can login into the system and fully navigate within the system; turning off cookies would result in the user being unable to login to the system.

Additionally, we use cookies and other technologies (such as site measuring software and user experience software) to enhance your online experience and learn about how you use our services in order to improve the quality of the Services. We may combine data gained through cookies with other data you provide to us.

10. Your rights and your duty to inform us of changes

If you exercise any of your rights pursuant to this Section or pursuant to applicable laws, we will communicate any rectification or erasure of your personal data or restriction of processing carried out in accordance with your request to each recipient to whom the personal data have been disclosed pursuant to Section 6 of this Privacy Policy, unless such communication proves impossible or involves disproportionate effort.

If you wish to exercise these rights and/or obtain all relevant information, please contact us at info@sinnia.mx. You will be asked to identify yourself; this is necessary to verify that the request has been sent by you. We will respond within 1 month after receipt of your request, but we retain the right to extend this period up to 2 months in exceptional circumstances. We will in any event inform you within 1 month after receipt of your request if we decide to extend the period for our response.

You have the right to request access to, rectification, erasure or portability (e.g. transfer of your personal data to another service provider) of your personal data we process, as well as to object to the processing of your personal data and/or request restriction of such processing.

Please note that your objection to processing could mean that we are unable to provide you with our Services or otherwise perform the actions necessary to achieve the purposes set out above (see Section 3 ‘How we use the data’).

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us by contacting us via the contact details in Section 11 ‘Contact Us’.

10.1 Rectification of your personal data

You have the right to rectify your personal data you have shared with us. If you want to rectify any data shared with refer to the contact details in Section 11 ‘Contact Us’.

10.2 Accuracy of your personal data

We take reasonable measures to ensure that you are able to keep your personal data accurate and updated. You can always approach us in order to obtain confirmation whether or not we still process your personal data.

If you find out that your personal data processed by us is inaccurate or incomplete you may request us to update such personal data. We will verify your identity and update your personal data.

10.3 Erasure of your personal data

You can ask us to erase your personal data at any time. If you approach us with such a request, we will delete all your personal data we have without undue delay, provided that your personal data is no longer necessary for the provision of the Services or other permitted purposes, in particular in connection with exercising and defending our legal rights, or meeting our legal obligations. We will also delete (and ensure deletion by the processors that we engage) all your personal data in case you withdraw your consent or in the circumstances that the law requires us to do so.

10.4 Restriction of processing

If you request us to restrict the processing of your personal data, e.g. in circumstances when you contest the accuracy, lawfulness or our need to process your personal data, we will limit processing of your personal data to the necessary minimum (storage) and, if applicable, will process them only for the establishment, exercise or defence of legal claims or, where necessary, for protection of rights of another natural or legal person, or other limited reasons dictated by the applicable law. In case the restriction is lifted and we continue processing your personal data, you will be informed accordingly without undue delay.

10.5 Portability of your personal data

You have the right to receive personal data relating to you and which you have provided to us. If you approach us with such request, we will provide your personal data in commonly used and machine-readable format to you without undue delay from receipt of your request. If you request so, we will send your personal data to a third party (another data controller) which you will identify in your request, unless such request would adversely affect rights or freedoms of others and where technically feasible.

10.6 Objection to processing

You have the right to object to our using your personal data on the basis of our legitimate interests (refer to Section 4 above to see when we are relying on our legitimate interests) (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. In such case, we will no longer process your personal data unless we demonstrate compelling legitimate grounds for their further processing which override your interests, rights and freedoms, or for the establishment, exercise or defence of our legal claims.

10.7 Withdraw your consent

If you have provided us any consent with the processing of personal data, you can withdraw your given consent at any time without stating any reason. We will block your personal data for any further processing. Please note that the withdrawal of your consent does not affect the lawfulness of any processing based on consent before its withdrawal.

11. Contact Us

If you have any queries regarding our data collection and protection practices or your rights, please do not hesitate to contact us at info@sinnia.mx.

12. Changes to the Privacy Policy

We may change this Privacy Policy from time to time due to changed or updated legislation and/or business standards. All changes to this Privacy Policy are posted on this page and we encourage you to review our Privacy Policy regularly to stay informed.


Author Privacy Statement

This privacy statement addresses the personally identifiable information (“data”) that Redes, Arcos y Nodos S.A.P.I. de C.V. or it’s brands (“Redes, Arcos y Nodos”, “Sinnia” or “we”) may collect and process about individual authors of online content (“Author”, “you” or “your”) through the services that we offer to our customers. Basically, if you publish information on publicly available websites (Twitter, Facebook, etc.), you’re an Author for purposes of this privacy statement.

This Privacy Statement is issued by Redes, Arcos y Nodos, S.A.P.I. de C.V., with its registered office at Euler 152, Chapultepec Morales, Miguel Hidalgo, CDMX, México.

1. General

1.1. Publicly Available Information

We index publicly available information (including data) from the Internet. We contract directly with third party providers to gain access to this publicly available information (including data). In each case, the information that we have access to is published or made available by Authors. This information is then collated and stored in our database. We offer access to our database, as well as analytics of the data within that database, to third parties through our “Services”.

1.2. Personal Data

Since all of the information that we access is publicly available, the raw information we have about you could be found by anybody with access to the Internet. Some of this information is personal data. For example your name or username in connection with your Twitter or Facebook profile would be personal data. Other information we process may not be personal data (for example if you publish an anonymous review on a website).

1.3. Control Over The Data

As an Author, you are the source of the data. You have control over that data within the platform you choose to publish it on (e.g. Twitter or Facebook), including through using the privacy settings made available to you by that platform. In addition to whatever rights you have via your relationship with any publishing platform, you also have certain rights relating to your data that we process, as set out in this Privacy Statement.

2. Information we collect about you

2.1. The Data We Collect

The data we collect varies depending on the source of the data, what the source or platform chooses to make available to us, plus what you choose to make available. It could include the following:

2.2 Data Analysis

We may analyse the content of the data you publish and provide our analysis to our customers. For example, if you publish a Tweet stating that you like a certain movie theater chain, we may mark that Tweet as having a positive sentiment toward that chain.

3. Using your data

3.1. Legitimate Interests

The legal basis for the data that we process is pursuant to our legitimate interests. Our legitimate interests are in providing our Services to our customers, which includes providing technology that empowers our customers to act with more certainty in a way that is easy-to-access and use. In turn, this allows our customers to learn more about their brand, their customers, their competitors, and other information available on the social web that is relevant to our customers.

3.2. Compliance

We also use the data in ways related to, but ancillary, to the Services that we offer. For example, we may use the data to comply with our legal obligations or enforce our rights, including the legal obligations or enforcement of rights of third parties.

3.3. Authors’ Data protection

Although it is the responsibility of our customers to use our Services properly, we do put in place safeguards to protect your data. We require our customers to comply with applicable law, including data privacy law, when using our Services. We also prohibit our customers from using our Services, including your data, in a way that is outside of your reasonable expectations.

4. Sharing your data

4.1. Entities

In addition to sharing your data with our customers, we may share your data with any member of our company.

4.2. Third Parties

We may share your data with selected third parties, including our vendors or subcontractors, for the performance of any contract we enter into with them.

4.3. Other Instances

We may also disclose your data to other third parties. For example, when corporate restructuring such as a merger, business acquisition or insolvency situations your data may be part of the transferred assets.

4.4. Guarantee

If any third party processes any of your data, we ensure there are sufficient contractual and operational safeguards protecting your data.

5. Accuracy and retention

5.1. Inaccuracy

Most of the data we have about you comes directly from you. If it is inaccurate, we advise you to fix it on the original platform in which you published that data.

5.2. Deletion

We will retain any data about you for as long as it is reasonably necessary for us to provide the Services. However, if you request that we delete your data we will delete your data from our Services.

6. Storage, security and your rights

6.1. Overseas Storage

We may transfer your data to, and store it in, a country other than your own. That country may not provide the same level of data protection as your own country.  However, we will take steps which are reasonably necessary to ensure that adequate safeguards are in place to protect your personal information and to make sure it is treated securely.

6.2. Storage Infrastructure

The servers in which we hold your data have appropriate administrative, technical, and physical controls that are designed to safeguard your data, including industry-standard encryption technology.

6.3. Authors’ Entitlement

You have a number of legal rights in your data under applicable data privacy law. Under applicable law you may:

6.4. Exercising Your Rights

To exercise any rights listed above, please email us at info@sinnia.mx.

6.5. Further Considerations

Please note that we cannot always delete records of all historical data. For example, we are required to retain certain records for financial reporting and compliance reasons.

7. Privacy practices of third parties

This privacy statement only addresses our collection, processing, and use (including disclosure) of your data. Our customers and other third parties that may have access to your data can use it in other ways in accordance with their own privacy practices and applicable law. We encourage you to familiarize yourself with the privacy statements provided by any platform you use to publish any information.

Para mayores informes,
por favor contáctanos

Euler 152, Chapultepec Morales, Miguel Hidalgo, CDMX.
+52(55) 6390 5516
info@sinnia.com