Privacy Policy

Last Updated: December 15, 2024

1. INTRODUCTION

TrustCookie, Inc. ("TrustCookie," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website trustcookie.com and use our cookie consent management services (collectively, the "Services").

This Privacy Policy applies to all users of our Services, including website visitors, customers, and end users whose data is processed through our platform. By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy.

2. INFORMATION WE COLLECT

2.1 Information You Provide Directly

  • Account Information: Name, email address, company name, and billing information when you create an account
  • Communication Data: Information you provide when contacting us for support or inquiries
  • Configuration Data: Settings and preferences you configure for your cookie consent banners

2.2 Information Collected Automatically

  • Usage Data: Information about how you use our Services, including pages visited, features used, and time spent
  • Device Information: IP address, browser type, operating system, and device identifiers
  • Log Data: Server logs that include IP addresses, access times, and pages viewed

2.3 End User Consent Data

When our Services are implemented on customer websites, we collect and process consent preferences from end users, including:

  • Cookie consent choices and preferences
  • Timestamp of consent decisions
  • Browser and device information (anonymized)
  • Geographic location (country/region level only)

3. HOW WE USE YOUR INFORMATION

We use the information we collect for the following purposes:

  • Service Provision: To provide, maintain, and improve our cookie consent management services
  • Account Management: To create and manage your account, process payments, and provide customer support
  • Communication: To send you service-related notifications, updates, and marketing communications (with your consent)
  • Analytics: To analyze usage patterns and improve our Services
  • Compliance: To comply with legal obligations and maintain records as required by law
  • Security: To protect against fraud, abuse, and security threats

4. LEGAL BASIS FOR PROCESSING (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for processing your personal data includes:

  • Contract: Processing necessary to perform our contract with you
  • Legitimate Interest: For analytics, security, and service improvement
  • Consent: For marketing communications and optional features
  • Legal Obligation: To comply with applicable laws and regulations

5. INFORMATION SHARING AND DISCLOSURE

We do not sell, trade, or rent your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers who assist us in operating our Services, including:

  • Cloud hosting and infrastructure providers
  • Payment processing services
  • Customer support platforms
  • Analytics and monitoring services

5.2 Legal Requirements

We may disclose information if required by law or in response to valid legal requests, such as:

  • Court orders or subpoenas
  • Government investigations
  • Legal proceedings
  • Protection of rights, property, or safety

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

6. DATA RETENTION

We retain your information for as long as necessary to provide our Services and comply with legal obligations:

  • Account Data: Retained while your account is active and for up to 7 years after closure for legal compliance
  • Consent Records: Retained for up to 3 years as required by privacy regulations
  • Usage Data: Typically retained for 2 years for analytics and service improvement
  • Communication Records: Retained for up to 5 years for customer support purposes

7. YOUR RIGHTS AND CHOICES

You have the following rights regarding your personal information:

7.1 Access and Portability

You can request access to your personal data and receive a copy in a portable format.

7.2 Correction and Updates

You can update your account information at any time through your account settings or by contacting us.

7.3 Deletion

You can request deletion of your personal data, subject to legal retention requirements.

7.4 Marketing Communications

You can opt out of marketing communications at any time by clicking the unsubscribe link in emails or contacting us.

7.5 Cookies and Tracking

You can control cookies through your browser settings and our cookie preference center.

8. SECURITY MEASURES

We implement appropriate technical and organizational measures to protect your information:

  • Encryption: Data is encrypted in transit and at rest using industry-standard protocols
  • Access Controls: Strict access controls and authentication mechanisms
  • Regular Audits: Regular security assessments and vulnerability testing
  • Employee Training: Regular privacy and security training for all employees
  • Incident Response: Comprehensive incident response and breach notification procedures

9. INTERNATIONAL DATA TRANSFERS

Our Services are hosted in the United States. If you are located outside the United States, your information may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses (SCCs) for EU data transfers
  • Adequacy decisions where applicable
  • Other appropriate transfer mechanisms as required by law

10. CHILDREN'S PRIVACY

Our Services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

11. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending email notifications to registered users
  • Providing notice through our Services

Your continued use of our Services after any changes indicates your acceptance of the updated Privacy Policy.

12. CONTACT INFORMATION

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

mdxtech, LLC

United States of America

Email: privacy@trustcookie.com

Legal: legal@trustcookie.com

13. EFFECTIVE DATE

This Privacy Policy is effective as of December 15, 2024, and was last updated on December 15, 2024.

By using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.