Privacy Policy

Last Updated February 05, 2025

We respect our customers' need for privacy and provide access to the Sites and Services either directly or through authorized resellers. When referring to "Customers" in this Privacy Notice, we mean those who have entered into an Agreement with us or our resellers to use the Services. The website users or visitors of our Customers are referred to as "End Users."

By accessing or using our Sites and Services in any capacity, you agree to the practices and policies outlined in this Privacy Notice, including our ability to process and share your information as described herein.

About Our Products and Services

The Services provide a cloud-based platform for deploying, managing, and scaling frontend applications. Our Developer Experience Platform and Managed Infrastructure enable Customers to build applications, collaborate on deployments, and seamlessly preview changes before making them live. Customers can instantly deliver content and test application performance from the perspective of their End Users worldwide.

We offer a suite of tools, workflows, and infrastructure solutions designed to support the development and deployment of websites and applications.

Applicability

This Privacy Notice ("Notice") explains how we collect, use, disclose, and process your information, as well as the rights and choices available to you regarding your data. It also details how you can contact us and the measures we take to protect your information when you:

  • Visit our websites, such as: trigani.com, trigani.dev, trigani.io, trigani.site и app.trigani.com and other affiliated websites, such as blogs, event registrations, community discussions, forums, and social media platforms (collectively our "Sites");
  • Access or use the Services, which include our platform, products, and related applications, whether engaging directly with us or using third-party partners, professional services, or interfaces that incorporate our technology.
  • Interact with us in any way, including registering for, attending, or otherwise partaking in our events, accelerators, learning portals, or webinars (collectively, "Marketing Activities").

This Notice does not apply to the following:

  • Customer Services Provided to End Users: If a Customer processes personal information to provide its own services to End Users, the Customer is solely responsible for ensuring compliance with applicable laws and regulations. This includes properly notifying End Users about data collection, usage, and disclosure under their own terms of service and privacy policies. If your personal information is contained within Customer Content, and you have concerns about how a Customer has shared your information with us, please contact the Customer directly or review their privacy notice.
  • Third-Party Products and Services: This Notice does not apply to third-party products, services, businesses, or software that integrate with or are accessible through the Services. If you have questions about the data privacy policies of these third parties, you should contact them directly or review their privacy notices.

Information We Collect

The information we collect depends on your interactions with us, the choices you make, the products and features you use, your location, and applicable laws. We may obtain information directly from you, such as your name and email address when you or your organization register for our Services or participate in Marketing Activities. In other cases, we gather information automatically through your use of our Services, including details such as your IP address and telemetry data, which help improve functionality, enhance security, and optimize performance.

Information You Provide Directly

We collect the following information directly from you when you use our Sites and Services.

  • Contact Information: We collect your contact details when you inquire about, use, or purchase our Services, or when you participate in our Marketing Activities. This may include your full name, email address, phone number, and location.
  • Professional Information: We gather professional details, including your company name, company website, job title, and industry.
  • Account Information: To create, update, or manage your account on our Sites and Services, we collect information such as your email, phone number, and username. You may also choose to submit a profile picture and social media profiles. By providing this information, you confirm that you own it or have the necessary consent to share it with us.
  • Transactional and Financial Information: We collect payment-related and other transactional details associated with our Services, including hashed payment card data, billing address, and payment history. Additionally, we may collect financial information, such as your bank account details, for transactions, payouts, or refunds.
  • User Content and File Information: We collect website-related content that you upload, post, deliver, or otherwise provide through our Services. This includes source code, text, images, videos, documents, Git repository data, and other materials (collectively, "Customer Content").
  • Messages and Communications: We collect messages and communications exchanged through our Services, including emails, chat messages, support requests, and any attachments sent to us. This may also include internal messages exchanged within our platform.
  • AI Product Information: When using AI-powered features or Services, we collect data such as user chat prompts, uploaded images, and generated text or designs.
  • Marketing Information: If you interact with our Marketing Activities or communicate with our sales or customer support teams, we collect relevant details. This may include information submitted via forms, surveys, emails, or phone calls regarding your inquiries, contact preferences, and any additional details you provide through free-text fields.
  • Image and Audio Information: We may collect images or audio recordings. If you contact us by phone or video, we may record those conversations. If you attend an event we host or sponsor, your image or voice may be captured in photographs, videos, or audio recordings.
  • Troubleshooting and Support Information: We collect account-related details and other information you provide when requesting customer support. This includes details about the Services you use, chat messages, and any attachments or documents submitted to assist in resolving issues or fulfilling legal obligations.
  • Social Media Information: Our Sites and Services may include social media integrations, such as sharing widgets or platform buttons. We are not responsible for how these platforms collect, process, or disclose your data, and we encourage you to review their respective privacy policies.
  • Any Information You Voluntarily Provide to Us. This includes feedback about your experience with our Services or participation in public discussion forums as part of our Marketing Activities.

Information We Collect from Third Parties

We receive information about Customers from third-party sources or business partners that provide services or assist in supporting our operations. Our use of this information is strictly limited to the purposes outlined in this Notice. The types of information we receive from third parties include:

  • Organization Information: We collect details from referral partners, including company name, contact person, job title, and company address.
  • Transaction Information: We gather financial data from payment providers and partners, such as fraud detection metrics (e.g., financial risk scores) and records of failed transactions.

Information We Collect from Customers

We receive information from Customers about their authorized users (i.e., account holders) and their End Users when they interact with Customers' websites, web applications, and APIs. The information we collect from Customers includes:

  • Contact Information: When a Customer adds you to their account or designates you as an authorized user, we collect details such as your name, email address, and username.
  • Website Information: We collect data related to traffic on Customers' websites, including End User IP addresses, location data derived from IP addresses, and system configuration details.

Customers are responsible for any content transmitted across our network, such as images, text, graphics, runtime logs, and any personal data they process. They must also adhere to acceptable usage practices when utilizing our Services. For additional details on our shared responsibility model, please refer to our Documentation.

Information We Collect Automatically

When you use or interact with our Sites and Services, we automatically collect certain information about you, your device, and your usage. This includes:

  • Usage Information: We collect data on how you interact with our Sites, Marketing Activities, and Services, including clicks, pages viewed, searches performed, browser type, page response times, errors encountered, and timestamps of your activity. We also collect request information such as site speed, frequency of visits, referring page (the website from which you accessed ours), exit page (the website you visit immediately after leaving ours), time spent on our Sites, and details about other recently visited websites.
  • Device Information: We collect details about how your devices interact with our Sites, Marketing Activities, and Services, such as browser type and settings, device type, screen size, operating system, model, language preferences, internet service provider, mobile network, push notification tokens, and device event data, including system activity, application version, and unique device identifiers like device ID.
  • Service-Generated Information: We collect and utilize data produced through the use of our Services and Sites, such as log files, Internet Protocol (IP) address, location information derived from your IP address, proxy server data, diagnostics, storage capacity and usage metrics, server performance details, system settings, and privacy and security configurations.
  • Location Information: We collect general location data, including city and country, based on IP address. We do not track precise locations.
  • Telemetry Information: We gather anonymized statistical data and aggregated, de-identified telemetry insights regarding usage patterns on our Sites and Services.
  • API Information: We collect functional data and customer-initiated events, such as authentication tokens and database URLs, from Third-Party Services that integrate with our Services.
  • Cookies: We collect information through cookies and similar tracking technologies, which may include a cookie ID, based on your preferences and applicable laws. We may use cookies to track interactions with our Sites, Marketing Activities, and Services. Where required by law, we obtain consent before using cookies, and you have the option to delete or reject them, as outlined in our Cookie Notice.

From time to time, unless restricted by applicable laws or agreements with our Customers, we may combine the information collected as described above with data obtained from different sources. For instance, we may merge details from a sales form submission with insights from third-party sales intelligence platforms to enhance our ability to market our Services to potential Customers. Additionally, we may combine usage information with customer feedback to refine our Services or recommend relevant products.

How We Use Information

We use your information as described in this Notice to operate our Sites and Services. This includes, but is not limited to, the following purposes:

  • Service Operation: We use your information to manage and maintain our Sites, as well as to provide, operate, monitor, and support our Services. This includes troubleshooting issues, performing system maintenance, and implementing upgrades.
  • Product Development and Improvement: We use your information to enhance functionality, improve user experience, ensure service quality, and develop new features.
  • Support: We use your information to provide Customer assistance and technical support, including responding to inquiries and resolving service-related issues. Our personnel do not access Customer Content unless explicitly authorized by you or when necessary for troubleshooting, security, service integrity, or legal compliance.
  • Communication: We use your information to send administrative and marketing messages, such as technical or legal notices, invoices, product updates, surveys, security alerts, promotions, newsletters, training materials, and event reminders. To manage your communication preferences, please refer to Your Privacy Choices and Rights.
  • Account Administration: We use your information to create and manage accounts, process transactions, and send billing, tax, and other administrative details, including purchase confirmations, receipts, and invoices.
  • Marketing Activities: We use your information to develop and enhance our Marketing Activities, including analyzing trends, usage, and interactions with our Services and Sites. We may also personalize your experience by providing content and features tailored to your interests and preferences.
  • Security: We use your information to detect, investigate, and prevent potential threats, fraud, unauthorized access, and other malicious, deceptive, or illegal activities.
  • Legal, Safety, and Compliance: We process your information to comply with legal and regulatory requirements, respond to court orders, and ensure adherence to applicable terms and policies.
  • For Any Other Purposes with Your Consent: If we intend to use your information for purposes beyond those outlined in this Notice, we will obtain your consent before doing so.

How We Retain Your Information

We retain your information for the minimum period necessary to meet our legal and contractual obligations, enhance our Sites and Services, resolve disputes, enforce our rights, and fulfill legitimate business needs such as tax and accounting requirements. This retention period aligns with the practices described in this Notice and follows industry standards.

Once we no longer have a valid business reason to process your information, we will either delete or anonymize it. If information is anonymized, we take measures to ensure it cannot be traced back to you or any specific user. In cases where deletion is not feasible (such as due to backup storage), we will implement security measures to safeguard the retained data.

How We Disclose Information

We disclose information as necessary to operate our Sites and Services, comply with legal requirements, or as part of our business operations. Information is shared only on a need-to-know basis, with appropriate safeguards and contractual agreements in place, as described below.

  • Corporate Affiliates: We may share or transfer information to entities that directly or indirectly control, are controlled by, or are under common control with us ("Corporate Affiliates"). Any information shared with our Corporate Affiliates will be handled in accordance with this Notice.
  • New Owner and Corporate Transactions: If we undergo a business transition, such as a merger, sale, reorganization, joint venture, or transfer of assets, we may disclose or transfer your information as part of due diligence or negotiations. Personal information may be included in the transferred assets. If ownership or control changes, we may notify you via email or other communication channels.
  • Customers: When using our Services, we may share information with our Customers as part of our contractual obligations. For example, if you join a Customer team within our Services, certain information such as your name, contact details, and profile image may be accessible to that Customer and other authorized users. If you are an administrator managing authorized users, we may share relevant user information to facilitate service-related requests.
  • Partners and Event Sponsors: We collaborate with various partners, including third-party advertising networks, integration service providers, event sponsors, and resellers. We may share information with these partners to support our Services and conduct Marketing Activities.
  • Third-Party Service Providers: We disclose information to third-party providers that assist with our business operations and service delivery. These third parties may include:
    • Professional service advisors to protect and manage our business interests.
    • Cloud service providers for data hosting, storage, and content delivery network services.
    • Billing and payment processors to authorize and process transactions.
    • Customer support providers to respond to inquiries and support requests.
    • Security, fraud, and abuse monitoring services to protect against illegal, deceptive, or malicious activity.
    • Domain registrars and registries to facilitate domain registration and WHOIS listing.
    • IT and corporate service providers to support business operations and internal communications.
    • Analytics firms to review and optimize Marketing Activities and Services.
    • Other suppliers, subcontractors, partners, vendors, and service providers acting on our behalf.

    These service providers are authorized to use your information only as necessary to perform their services. We may also use and disclose aggregated, non-identifiable data for any lawful purpose unless restricted by applicable laws.

  • Legal or Public Authorities: We may disclose your information when necessary to:
    • Comply with applicable laws and regulations.
    • Respond to legal processes, court orders, or regulatory requests.
    • Enforce our agreements and this Notice.
    • Protect the security and integrity of our Sites and Services.
    • Safeguard against harm to our rights, property, or safety, as well as those of our affiliates, users, or the public.
    • Address emergency situations requiring disclosure to prevent serious harm or loss of life.
  • Any Other Party with Your Consent: We may share your information with third parties when you provide explicit consent to do so.

How We Protect Your Information

We implement administrative, technical, and physical security measures that are designed to safeguard your information against unauthorized or unlawful access, use, modification, destruction, loss, alteration, or disclosure.

Any third parties acting on our behalf or with whom we share your information are required to uphold security standards consistent with industry best practices, contractual obligations, and their own privacy and security responsibilities. While we enforce appropriate safeguards, we are not responsible for the security practices of third parties beyond the information we exchange with them.

Despite our efforts to maintain strong security controls, no system can guarantee absolute protection in all circumstances.

If you have concerns or inquiries regarding the security of our Sites and Services, please reach out to us via the Contact Us section.

Third-Party Services

Our Sites and Services may include links to or integrations with external websites or applications that are not operated or controlled by us ("Third-Party Services"). These services have their own user agreements and privacy policies, which are independent of this Notice.

We are not responsible for the content, accuracy, or opinions expressed within these Third-Party Services, nor do we monitor or verify their completeness. Before using any Third-Party Service, we recommend reviewing their terms and privacy policies to ensure they align with your compliance, privacy, and security requirements.

Data Privacy Framework

As a company based in Bulgaria, we comply with the European Union’s General Data Protection Regulation (GDPR) and other applicable data protection laws governing the collection, processing, and transfer of personal data.

We ensure that any transfer of personal data outside the European Economic Area (EEA) is conducted in accordance with relevant data protection laws and safeguards. If we transfer personal data to third parties or service providers in non-EEA countries, we ensure that adequate data protection measures, such as Standard Contractual Clauses (SCCs) approved by the European Commission, are in place to safeguard your information.

We are committed to resolving any privacy-related concerns or complaints regarding our handling of personal data. If you have inquiries about our data transfer practices or your privacy rights, please contact us using the details provided in the Contact Us section.

For further information on how we protect your data in compliance with GDPR and other applicable regulations, please refer to our Privacy Policy.

Your Privacy Rights and Choices

You have specific rights and choices regarding how we collect and use your information. Below is an overview of these rights and how you can exercise them:

  • Opt-out of Marketing Communications: You can unsubscribe from marketing communications at any time by clicking the "Unsubscribe" link included in our emails or by contacting us through the details provided in Contact Us. If you are a Customer, you will continue to receive essential transactional and administrative messages related to our Sites and Services.
  • Account Preferences: You can update or correct certain account details at any time by logging into your account or reaching out to our support team. Additionally, you can modify communication preferences, such as notifications, within your account settings. We may retain certain data as described in How We Retain Your Information.
  • Managing Cookies and Other Tracking Technologies: Information on browser-based cookie controls and preferences can be found in our Cookie Notice.

Depending on your location, you may have additional rights regarding the personal information we collect. These rights vary by jurisdiction. For more details on your specific rights, please refer to Jurisdiction-Specific Information.

Minimum Age Requirements for Our Sites and Services

Our Sites and Services are not intended for individuals under the age of 16. To access and use our Sites and Services, you must be old enough to legally consent to the processing of your personal information in your jurisdiction.

We do not knowingly collect personal data from anyone under 16. If you are a parent or guardian and discover that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal data from a child under 16 without verified parental consent, we will take the necessary steps to delete such information.

Changes to Our Privacy Policy

We periodically review and update this Privacy Policy to reflect new Services, modifications to our practices, or changes in legal requirements. You can check when this Policy was last updated by referring to the "Last Updated" date at the top of this document.

We encourage you to review this Policy regularly whenever you interact with us to stay informed about our data protection practices and how you can take steps to safeguard your privacy.

Contact Us

If you have any questions about this Privacy Policy, please reach out to us at [Insert Contact Email] or write to us at:

Zing7 OOD
8 Cherni Vrah Blvd., Block 4, Entrance 2, Floor 4
Sofia 1421, Bulgaria

Jurisdiction-Specific Information

European Economic Area (EEA)

This section applies to individuals based in the EEA and Bulgaria and supplements our Privacy Policy regarding the processing of personal data in compliance with the General Data Protection Regulation (GDPR) and Bulgaria’s Personal Data Protection Act (PDPA).

Data Collection, Use, and Disclosure

We collect and process personal data only when we have a legal basis for doing so under GDPR and related data protection laws. Our legal bases for processing personal data include:

  • Your Consent: When required by law, we collect and process your personal data based on your explicit consent.
  • Performance of Contract: We collect and process personal data as necessary to enter into or fulfill our contractual obligations.
  • Legitimate Interests: We process personal data to improve and secure our Sites and Services, analyze user interactions, and enhance user experience, provided that such processing does not override your fundamental rights and freedoms.
  • Compliance with Laws: We may collect and process personal data as required by legal obligations, including responding to legal requests, protecting against fraud, and ensuring compliance with regulatory requirements.

Your Privacy Rights

Under GDPR, you have certain rights regarding the personal data we process about you, including:

  • Right of Access: You may request details about how we process your personal data and obtain a copy of the data we hold about you.
  • Right to Rectification: You have the right to request corrections to inaccurate or incomplete personal data.
  • Right to Erasure ("Right to be Forgotten"): You can request the deletion of your personal data in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.
  • Right to Restriction of Processing: You can request that we limit the processing of your personal data under specific circumstances, such as when contesting its accuracy.
  • Right to Data Portability: You can request a copy of your personal data in a structured, machine-readable format to transfer it to another service provider.
  • Right to Object: You have the right to object to the processing of your personal data based on legitimate interests, direct marketing, or automated decision-making.
  • Right to Withdraw Consent: If you have provided consent for processing, you may withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Exercising Your Rights

To exercise any of the rights listed above, please reach out to us at [Insert Contact Email].

To protect your data, we may require you to verify your identity before fulfilling your request. If we cannot verify your identity, we may be unable to comply with your request.

Requests will be processed within 30 days, though this period may be extended under certain circumstances. Your rights may be limited in situations where:

  • Complying with the request would infringe on the rights or freedoms of others.
  • There are overriding public interest concerns.
  • Legal or regulatory obligations require us to retain certain personal data.

Filing a Complaint

If you believe that your data protection rights have been violated, we encourage you to contact us first so we can address your concerns. However, you also have the right to lodge a complaint with the relevant Supervisory Authority:

Bulgaria’s Commission for Personal Data Protection (CPDP): https://www.cpdp.bg/.

If you are based in another EEA country, you can contact your local Data Protection Authority (DPA) listed on the European Data Protection Board (EDPB) website: https://edpb.europa.eu/.

United Kingdom (UK)

This section applies to individuals in the United Kingdom (UK) and outlines how we process personal data under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Our data processing practices for UK residents align with those described under the GDPR section above. If you are located in the UK, you have the same rights regarding access, rectification, erasure, portability, objection, and withdrawal of consent as outlined in the GDPR section.

If you have a complaint regarding our processing of your personal data in the UK, you may contact the relevant Supervisory Authority:

UK Information Commissioner’s Office (ICO): https://ico.org.uk/.

You can file a complaint with the ICO if you believe your data protection rights have been violated. However, we encourage you to contact us first to resolve any concerns.

United States (U.S.)

This section applies to individuals in the United States and supplements our Privacy Policy regarding the processing of personal data in compliance with applicable U.S. Data Privacy Laws, including but not limited to:

  • California Consumer Privacy Act (CCPA) (as amended by the California Privacy Rights Act (CPRA))
  • Virginia Consumer Data Protection Act (VCDPA)
  • Colorado Privacy Act (CPA)
  • Connecticut Data Privacy Act (CTDPA)
  • Utah Consumer Privacy Act (UCPA)

If you reside in a U.S. state with data privacy laws, you may have the following rights:

  • Right to Access: You can request details about the personal information we have collected about you.
  • Right to Know: You may request a list of the categories and specific pieces of personal data we have collected over the past 12 months.
  • Right to Rectify: You can request correction of inaccurate or incomplete personal information.
  • Right to Delete: You may request the deletion of personal information we have collected about you.
  • Right to Object: You can object to the sale or sharing of your personal information for targeted advertising purposes.
  • Right to Opt-Out: Under certain laws, you have the right to opt out of the sale of your personal data and cross-context behavioral advertising.
  • Right to Non-Discrimination: We will not treat you unfairly for exercising your privacy rights.
  • Right to Data Portability: You may request a copy of your personal data in a structured, machine-readable format.

Exercising Your U.S. Privacy Rights

To exercise any of the rights listed above, please reach out to us at [Insert Contact Email].

To verify your identity, we may request identifying information such as your account details or recent interactions with our Sites and Services. If you appoint an authorized agent to act on your behalf, you must provide written consent, and we may require the agent to verify their identity.

We will respond to valid U.S. consumer requests within 45 days. If we require additional time, we will inform you of the delay and explain the reason for the extension.

Filing a Complaint in the U.S.

If you believe we have violated your privacy rights, you can file a complaint with your state’s Attorney General or relevant regulatory body.

For California residents, you may contact the:

California Privacy Protection Agency (CPPA): https://cppa.ca.gov/.

For other U.S. states, check your state’s Attorney General website for the appropriate reporting process.