Trepup Privacy Notice

Your privacy matters to Trepup, and this Trepup Privacy Notice ("privacy notice") outlines how we collect, use, and share your personal information. Operating in harmony with the Trepup Terms of Service ("terms of service") and the Legal Policies ("legal policies"), this privacy notice serves as a cornerstone of our commitment to protecting user data. Any capitalized terms not defined here carry the meanings assigned in the terms of service.

We are committed to building a privacy framework that reflects the diversity of our global user base while prioritizing fairness and transparency. This includes ensuring that all personal information is managed responsibly and that any anonymized and aggregated data used for licensing purposes complies with global data protection regulations. Trepup's privacy practices are guided by the principles of the EU General Data Protection Regulation (GDPR) and aligned with regional frameworks such as the California Consumer Privacy Act (CCPA) and India's Digital Personal Data Protection Act (DPDPA), 2023.

When you create a Trepup Account, we seek your consent to collect, store, disclose, process, and transfer your personal data as outlined in this privacy notice. This includes your agreement to the responsible licensing of anonymized and aggregated data for insights, market research, and other lawful purposes. You may withdraw your consent at any time through your account settings or by contacting us directly. By accessing or using Trepup, or by providing your personal information, you confirm your legal capacity to accept this privacy notice and agree to its terms.

library_booksHow and what types of personal data do we collect?

When you use or sign up for Trepup, you voluntarily provide certain personal data, such as your name, email address, and password. This data forms the foundation of your Trepup Account, which you can update at any time by signing in. Trepup may also collect personal data from linked external services, such as Apple or Google accounts, based on the permissions you grant and the settings on those platforms. While these integrations enhance functionality, providing personal data through external platforms is at your own risk, as these services are managed by third parties.

Whenever you access or use Trepup, certain data is automatically generated and recorded. This includes information created through your interactions on the platform. The personal data we collect generally falls into two categories:

• Personally identifiable data

  ​, which can uniquely identify you.

• Non-personally identifiable data

  ​, which cannot directly identify you unless combined with additional information.

The personal data Trepup collects includes:

• Log data

  ​: Information sent by your browser when visiting Trepup, including your IP address, browser type and settings, operating system, referring web page, pages visited, location, search terms, and cookie data.

• Behavioral information

  ​: Details about how you use Trepup, such as traffic patterns, access times, locations, and browsing history, which help us enhance platform functionality and user experience.

• Financial information

  ​: Payment data, such as credit or debit card details, required to process fees for Trepup services.

• Cookie data

  ​: Cookies and similar technologies (e.g., web beacons or pixels) used to track navigation, analyze trends, and collect demographic insights. For details, refer to our Trepup Cookies Policy ("cookies policy").

• Device information

  ​: Details about the device you use to access Trepup, such as the device type, operating system, settings, unique identifiers, and crash data, which ensure platform compatibility. For more information, refer to your device manufacturer or software provider’s privacy policies.

• Web beacons

  ​: Technologies embedded in emails and the website to monitor user activity and engagement. See our cookies policy for more details.

• Forward-to-friend link data

  ​: If you share Trepup content via a forward-to-friend link, the email content may be shared. However, Trepup does not store recipients’ email addresses or add them to mailing lists.

Trepup may also collect data from public sources to enhance its services. This includes names, email addresses, locations, IP addresses, and demographic information.

To ensure transparency and compliance with global privacy standards, anonymized and aggregated data is used to support platform functionality and services. This includes:

• Enriched demographic data

  ​: Aggregated information such as age, gender, and location, anonymized to create high-value datasets for research, analytics, and platform optimization, ensuring individuals cannot be identified in compliance with GDPR and other applicable laws.

• Third-party integration metadata

  ​: Behavioral insights and anonymized metadata from linked services, supporting purposes like audience segmentation and trend analysis.

By adhering to rigorous standards of security, transparency, and compliance, Trepup ensures that personal data is handled responsibly to support platform functionality and anonymized data licensing initiatives.

library_booksWhat other types of personal data do we collect?

In addition to the personal data mentioned above, Trepup may collect other types of information to enhance our services and ensure seamless functionality. This includes demographic information, such as age, gender, and location, which is aggregated and anonymized for purposes like advertising, market research, and trend analysis. Data generated from interactions with third-party websites or applications may also be collected, such as metadata and usage patterns. This anonymized data supports audience segmentation and industry-specific insights while safeguarding individual privacy.

When you contact Trepup through email or other tools, we collect data necessary for customer support. This includes account validation details to verify your identity, records of communication for quality assurance, responses to your queries, and information required for reinstating accounts blocked or suspended under the legal policies.

Additionally, Trepup may process information about third parties that you provide, such as your contacts. It is your responsibility to obtain explicit consent from these individuals before sharing their information with Trepup. Trepup is not liable for any misuse or unlawful sharing of third-party data by users. Furthermore, data provided about third parties is excluded from licensing activities unless explicit consent is obtained in compliance with applicable laws.

To support Trepup’s data licensing efforts, information collected in the categories above may be anonymized and aggregated to create high-value datasets. These datasets comply with global data protection regulations, including GDPR, CCPA, and DPDPA, ensuring that individual identities are protected while enabling insights for advertising, analytics, and other industry-specific applications.

library_booksHow do we use the personal data we collect?

We use the personal data we collect to provide Trepup’s services, improve your experience, ensure platform security, and comply with legal obligations. Specifically, we may use your personal data to:

• Operate Trepup and protect our users from fraud, abuse, or security threats.
• Send updates about activities on Trepup, promotional materials, and other relevant notifications based on your preferences.
• Help your contacts find you on Trepup or enable people to search for your profile using your username.
• Respond to your questions, comments, or feedback.
• Send system notifications, such as version updates, warnings, or policy changes.
• Process billing, collect fees, and issue invoices related to Trepup services.
• Communicate with you regarding customer support, legal requirements, or policy enforcement.

Additionally, we may use your personal data to:

• Enhance the platform by analyzing usage trends, tracking activity, and improving features.
• Provide personalized content, such as recommending accounts you may like to follow.
• Conduct non-targeted activities like frequency capping, compliance checks, and market research.
• Develop algorithms, create databases, and build recommendation engines to optimize Trepup.
• Conduct audits, ensure quality standards, and assess resource use for troubleshooting and improvement.
• Investigate, prevent, or address illegal activities, suspected fraud, or violations of the terms of service or the legal policies.
• Record and analyze your feedback to better understand your needs and improve Trepup.

We process personal data for the purposes outlined above based on the following legal grounds:

• To perform the contract we have entered into with you or as part of precontractual measures.
• To comply with legal and regulatory obligations.
• For legitimate interests, such as understanding user interactions, improving service performance, and ensuring platform security.
• Based on your consent, which you can withdraw at any time through your account settings.

library_booksWhat options do you have about your personal data?

At Trepup, we aim to provide you with clear and simple options to manage and control your personal data. Through your Trepup Account and settings, you can:

• Update or remove data

  ​: Change or delete the personal data on your Trepup profile at any time.

• Link or delink accounts

  ​: Manage connections between your Trepup Account and external services, such as Apple or Google.

• Control Cookies

  ​: Adjust browser settings to manage cookies or other local storage preferences.

• Deactivate or close your account

  ​: Temporarily deactivate or permanently close your Trepup Account if needed.

Please note that personal data shared on third-party websites may still be visible due to their policies and practices, over which Trepup has no control. Similarly, personal data shared with others or saved by them may remain accessible. For example, users you’ve interacted with on Trepup may retain data you’ve shared. Exercise discretion when sharing personal data online and only share with trusted individuals or services.

library_booksWhich rights do you have about your personal data?

As a Trepup user, you have the following rights concerning the processing of your personal data:

• Withdrawal of consent

  ​: You can withdraw your consent for collecting and processing your personal data at any time. Consent is obtained when you create a Trepup Account or as required by law for specific purposes. To withdraw or limit your consent, adjust your account settings or contact us directly. Note that certain data processing may continue as required or permitted by law.

• Objection or restriction

  ​: You have the right to object to or request restrictions on the processing of your personal data. Upon receiving your request, we will assess its validity under applicable laws and inform you if processing will be limited or resumed.

• Access and information

  ​: You can request confirmation or details about whether, where, and for what purposes your personal data is being processed. If required, we will provide a copy of your personal data in a commonly used electronic format, free of charge, allowing you to reuse it across services.

• Rectification

  ​: If your personal data is incomplete or inaccurate, you may update or correct it at any time. Keeping your information accurate and current is your responsibility.

• Deletion

  ​: You can request the deletion of your personal data or close your Trepup Account. We will delete your data within a maximum of 180 days unless retention is required for legal, regulatory, or archival purposes.

• Lodging complaints

  ​: If you believe your data has been processed improperly, you can file a complaint with the relevant supervisory authority. For Swiss users, this is the Federal Data Protection and Information Commissioner (FDPIC).

Additionally, we will notify you promptly in case of any data security incident that poses a high risk to your rights and freedoms. If required under GDPR or other regulations, we will inform the competent authority within 72 hours of the incident.

library_booksHow do we share your personal data?

Trepup takes your privacy seriously and generally does not disclose personal data to third parties. However, in specific circumstances, we may share your data, always in compliance with applicable laws and this privacy notice. These circumstances include:

• With your consent

  ​: When you explicitly authorize us to share your personal data.

• Legal obligations

  ​: To comply with a law, regulation, or legal request from authorities.

• Protection of rights and safety

  ​: To protect the safety, rights, or property of the public, Trepup users, or the platform itself.

• Fraud prevention

  ​: To detect, prevent, or address fraud, security concerns, or technical issues.

• Third-party service providers

  ​: To authorized third parties performing functions on our behalf, such as mailing services, IT support, payment gateways, data centers, and auditors.

• Corporate changes

  ​: If Trepup engages in a merger, acquisition, bankruptcy, or similar transaction, your personal data may be transferred as part of the process.

To support Trepup’s services and growth, we may license anonymized and aggregated data to trusted partners for purposes such as market research, trend analysis, and audience insights. Trepup ensures that this process adheres to the highest privacy standards by incorporating the following safeguards:

• Anonymization and aggregation

  ​: Before licensing, all personal data is anonymized and aggregated to ensure compliance with global privacy standards and protect individual identities.

• User control

  ​: Users retain control over their participation in licensing activities. You may opt out of data licensing through your account settings or by contacting us directly.

• Legal compliance

  ​: Data licensing strictly adheres to global data protection regulations, including GDPR, CCPA, and DPDPA.

This approach ensures that data licensing contributes to the improvement of Trepup services and the user experience while safeguarding individual privacy.

library_booksHow do we protect your personal data?

Trepup is committed to safeguarding your personal data in line with global data protection laws. We have implemented robust technical and organizational measures to ensure your information is secure, compliant with GDPR, CCPA, DPDPA, and other relevant regulations.

• Encryption and data security

  ​: We use Transport Layer Security (TLS) 1.3, the latest encryption protocol, to safeguard personal data in transit between your device and Trepup. This ensures advanced protection, faster connections, and enhanced performance.

• Secure servers

  ​: Your personal data resides on servers secured through physical and electronic safeguards. These servers are isolated from direct internet connections and accessible only to authorized personnel.

• Fraud detection and abuse prevention

  ​: To enhance security, Trepup employs automated processes to detect and mitigate fraudulent or anomalous user activity. We actively monitor for abuse, remove inappropriate content, and suspend or disable accounts that violate the legal policies.

• Compliance and retention

  ​: Trepup maintains records of personal data and processing activities in accordance with legal requirements, ensuring both transparency and compliance.

For data licensing activities, any data used is anonymized and aggregated to remove identifiers and ensure compliance with privacy laws. No personally identifiable information is ever shared in these processes.

library_booksHow can you protect your personal data?

At Trepup, safeguarding your personal data is a shared responsibility. While we implement robust security measures, your actions play a critical role in ensuring its protection. To help secure your personal data, we recommend the following best practices:

• Secure your devices and accounts

  ​: Limit access to your devices and Trepup Account to trusted individuals only. Keep your sign-in credentials, including passwords, confidential and secure at all times.

• Keep software updated

  ​: Regularly update your antivirus software and other security tools as recommended by your provider to guard against malware, cyber threats, and vulnerabilities.

• Be cautious with sensitive information

  ​: Avoid sharing confidential or sensitive personal data through Trepup or unsecured communication channels.

While Trepup employs industry-standard security measures, no system can guarantee absolute security. By using Trepup, you acknowledge that our safeguards are sufficient and appropriate under applicable laws. Trepup disclaims liability for any unintended loss, unauthorized disclosure, or security breaches unless caused by gross negligence or willful misconduct.

To help us keep your personal data accurate and up-to-date, please notify us promptly of any changes. This ensures that our records reflect your preferences and support a personalized experience on Trepup.

library_booksWhich countries do we transfer personal data to?

Trepup operates globally and may transfer your personal data across borders. These transfers are made in compliance with this privacy notice and applicable legal frameworks.

• Global transfers

  ​: Your personal data may be stored or processed in countries outside your own, including by trusted third-party service providers.

• European data transfers

  ​: For transfers outside the European Economic Area, the United Kingdom, or Switzerland, we ensure an adequate level of protection through appropriate safeguards, such as your explicit consent, contractual clauses, or other mechanisms compliant with applicable laws.

• Purpose of transfers

  ​: Transfers may be necessary for fulfilling contracts, public interest objectives, legal claims, or providing services that meet your needs.

library_booksHow do third parties process data on Third-Party Links?

Trepup may feature hyperlinks to external websites, advertisements, or resources ("Third-Party Links") provided by users or third parties. While these links are intended to enhance your experience, they operate independently from Trepup, and we encourage you to review their privacy practices before engaging.

• Responsibility for data

  ​: Trepup is not responsible for how external websites, applications, or third-party entities collect, store, or use your data. Third-Party Links are provided for your convenience and are neither endorsements nor recommendations of their content, legal policies, or transactions. These external entities operate under their own terms and privacy policies, which may differ from Trepup's legal policies and standards.

• Limitations of liability

  ​: Trepup is not liable for any loss, damage, or misuse of your personal data resulting from your interactions with Third-Party Links. Any transactions or exchanges of information are strictly between you and the external party. Users are advised to exercise discretion and caution when engaging with such links.

• Third-party accountability

  ​: While Trepup does not control the practices of external websites, we strive to partner only with trusted third parties where data-sharing agreements are involved. For authorized integrations (e.g., payment gateways or analytics providers), Trepup ensures compliance with applicable data protection regulations, including GDPR, CCPA, and DPDPA. Agreements with these third parties include strict confidentiality clauses, data protection measures, and audit rights to safeguard user information.

• User diligence

  ​: Trepup recommends reviewing the terms of use and privacy policies of any third-party website or application you interact with. Exercise caution and verify the credibility of these resources as you would with any offline transaction.

Trepup encourages you to remain vigilant and informed when sharing personal data through external resources. If you have concerns about specific Third-Party Links featured on Trepup, please contact us for further assistance.

library_booksHow long do we retain your data?

Trepup retains personal data only for as long as necessary to fulfill the purposes for which it was collected, as outlined in this privacy notice. Retention durations are determined based on the type of data, applicable legal requirements, and operational needs. These purposes include:

• Providing services

  ​: Retaining data necessary for delivering platform functionality and maintaining a seamless user experience.

• Meeting legal and regulatory obligations

  ​: Ensuring compliance with applicable laws, such as tax and financial record-keeping regulations.

• Dispute resolution

  ​: Preserving records to address disputes or defend against potential legal claims.

• Supporting legitimate interests

  ​: Maintaining data to ensure operational continuity, security, and platform improvements.

Retention periods for specific data categories:

• Account data

  ​: Data such as your name, email address, and profile information is retained for as long as your Trepup Account remains active. Upon account closure, data is deleted or anonymized within 180 days unless required for legal or compliance purposes.

• Financial data

  ​: Payment details and transaction records are retained for seven years or as required by applicable financial regulations.

• Contact data

  ​: Information used for customer support or correspondence is retained for three years after the resolution of an inquiry, unless needed longer for legal or compliance purposes.

• Anonymized data

  ​: Aggregated and anonymized data used for analytics, licensing, or market insights is retained indefinitely, as it cannot identify individuals and complies with privacy regulations.

If your personal data is no longer needed for the purposes stated above, it will be securely deleted or anonymized in accordance with applicable laws and industry best practices.

library_booksHow do we protect children’s privacy?

Trepup is committed to protecting the privacy of children and complies with applicable laws, including the Children’s Online Privacy Protection Act (COPPA) for U.S.-based users. We do not knowingly collect personal data from individuals under the age of 16. If we discover that we have inadvertently collected such data, we will take immediate steps to delete it in accordance with applicable laws.

If you believe that an individual under the age of 16 has provided personal data through Trepup, please contact us so we can investigate and take appropriate action to safeguard their privacy.

For additional details regarding our privacy practices and compliance with global standards, please refer to the relevant sections of this privacy notice.