Privacy Policy
Effective Date: January 20, 2025
Last Updated: January 20, 2025
Trabalance Inc., a Delaware corporation ("Trabalance," "we," "us," or "our"), respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, services, and website (collectively, the "Services").
Contact Information:
Email: privacy@trabalance.com
Address: 1401 21st ST #6752, Sacramento, CA 95811, United States
Data Protection Officer: dpo@trabalance.com
Information We Collect
Information You Provide to Us
- Account Information: Name, email address, company name, job title, and registration details
- Profile Information: Profile pictures, contact preferences, and professional details
- Business Data: Documents, financial records, operational data, and business information you upload or create
- Communication Data: Support interactions, feedback, surveys, and platform communications
- Payment Information: Billing details and transaction history (processed by PCI DSS compliant third-party processors)
Information We Collect Automatically
- Usage Data: Features accessed, time spent, user interactions, and platform navigation
- Device Information: IP address, browser type, operating system, device identifiers, and mobile device information
- Log Information: Server logs, error reports, system events, and security monitoring data
- Cookies and Similar Technologies: For authentication, preferences, analytics, and improved user experience
How We Use Your Information
Service Provision and Account Management
- Providing, maintaining, and improving our platform and services
- Processing transactions and managing your account and subscriptions
- Enabling collaboration features, workflow automation, and data synchronization
- Providing customer support and responding to your inquiries
- Sending important service updates, security alerts, and administrative messages
Business Operations and Legal Compliance
- Analyzing usage patterns to improve platform performance and user experience
- Developing new features, services, and integrations based on user needs
- Ensuring platform security, preventing fraud, and detecting suspicious activity
- Complying with legal obligations, regulatory requirements, and law enforcement requests
- Enforcing our terms of service and protecting our rights and those of our users
How We Share Your Information
Service Providers and Business Partners
- Cloud hosting and infrastructure providers (AWS, Google Cloud, Microsoft Azure)
- Payment processors and financial services (Stripe, PayPal, and other PCI-compliant processors)
- Analytics and monitoring services for platform optimization and security
- Customer support and communication platforms
- Security providers for fraud prevention and threat detection
Legal and Regulatory Requirements
- Compliance with applicable laws, regulations, and legal processes
- Protection of rights, property, and safety of Trabalance, our users, and the public
- Prevention and investigation of fraud, security threats, and illegal activities
- Response to valid legal requests from government authorities and law enforcement
- Business transfers in case of merger, acquisition, or sale of assets (with notice to affected users)
With Your Consent
- Sharing information with third-party integrations you specifically authorize
- Marketing partnerships where you have opted in to receive communications
- Any other sharing explicitly consented to by you
Data Security and Protection
Technical Safeguards
- End-to-end encryption of data in transit using TLS 1.3 and at rest using AES-256
- Multi-factor authentication and strong access controls for all user accounts
- Regular security assessments, penetration testing, and vulnerability scanning
- Secure development practices including code reviews and security testing
- Automated monitoring and incident response procedures for security threats
Organizational Safeguards
- Comprehensive employee training on data protection and privacy practices
- Limited access to personal data on a need-to-know basis with regular access reviews
- Background checks and confidentiality agreements for all personnel with data access
- Regular compliance audits and third-party security certifications
- Data breach response plan with notification procedures as required by law
Your Privacy Rights and Choices
Universal Rights (Available to All Users)
- Access: Request a copy of the personal information we hold about you
- Correction: Update, correct, or modify your personal information
- Deletion: Request deletion of your personal information (subject to legal requirements)
- Portability: Receive your data in a structured, machine-readable format
- Marketing Opt-out: Unsubscribe from marketing communications at any time
Additional Rights by Region
- California Residents (CCPA/CPRA): Right to know, delete, opt-out of sale, and non-discrimination
- EU/UK Residents (GDPR/UK GDPR): Rights to restrict processing, object to processing, and lodge complaints
- Canadian Residents (PIPEDA): Rights to access, correct, and file complaints with privacy commissioners
- Australian Residents (Privacy Act): Rights to access, correct, and complain to the privacy commissioner
International Data Transfers
Transfer Mechanisms
- We use Standard Contractual Clauses (SCCs) approved by the European Commission for EU data transfers
- Adequacy decisions where available (e.g., transfers to countries deemed adequate by the EU)
- Other approved transfer mechanisms as recognized by applicable data protection laws
- We conduct transfer impact assessments and implement additional safeguards where necessary
Data Retention Periods
Account Information
Duration of account plus 7 years after closure
Legal compliance and business records
Business Data
According to your retention settings or legal requirements
Service provision and compliance
Usage and Analytics Data
2-3 years from collection
Platform improvement and analytics
Communication Records
3-7 years depending on type
Support history and legal compliance
Marketing Data
Until opt-out or 3 years of inactivity
Marketing communications
Regional Privacy Rights
California Residents (CCPA/CPRA)
California residents have additional rights under the California Consumer Privacy Act and California Privacy Rights Act, including the right to know what personal information we collect, request deletion, and opt-out of the sale of personal information.
Submit requests via privacy@trabalance.com or our privacy portal
European Union & UK Residents (GDPR)
We process personal data in accordance with GDPR and UK GDPR based on legitimate interests, contract performance, legal compliance, and consent. You have rights to access, rectify, erase, restrict, object, and portability.
Contact our Data Protection Officer at dpo@trabalance.com
Canadian Residents (PIPEDA)
We comply with PIPEDA and provincial privacy laws. You have rights to access and correct your personal information and file complaints with privacy commissioners.
Submit requests via privacy@trabalance.com
Australian Residents (Privacy Act)
We comply with the Australian Privacy Act and Notifiable Data Breaches scheme. You have rights to access and correct your personal information.
Submit requests via privacy@trabalance.com
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. We will notify you of material changes by posting the updated policy on our website and, where required by law, by sending you a notification. Your continued use of our Services after the effective date of the updated policy constitutes acceptance of the changes.
Questions About Your Privacy?
If you have questions, concerns, or requests regarding this Privacy Policy, your personal information, or our data practices, please don't hesitate to contact us.