Information relating to GDPR compliance and Trujay.
What is GDPR?
The European General Data Protection Regulation (GDPR) was approved on April 14, 2016, by the European Parliament and went into effect as of May 25, 2018. The GDPR is a regulation on the collection and processing of information related to an individual residing within the European Union (EU).
A set of laws aimed to enhance the protection of EU citizens’ personal data. It also increases the obligations for organizations regarding the transparent insurance of their business information and security guarantees.
How it affects you?
Your core rights according to the GDPR in terms of Trujay service:
- Provide full transparency on what data is collected and how data will be used before requesting the individual’s consent.
- Ensure that collected data is used only for the purposes explicitly specified at the time of collection and consent.
- Minimize the data collected and utilized solely for the purpose for which it is collected.
- Ensure that collected data is accurate throughout the chain of processors.
- Carefully evaluate the duration of how long data is stored, as data must only be stored for as long as necessary to serve its intended purpose and provide users the right to delete their data.
- Prevent against unauthorized use or accidental loss of data through the deployment of appropriate security measures and adherence to mandatory breach reporting.
What does Trujay do to ensure compliance?
- Trujay informs the client about the data we collect and what methods can be used;
- Trujay advises users on how to avoid tracking and will not share their private information;
- Trujay uses a Security Policy to help ensure the client’s data is secure;
- Trujay enables its clients to disallow the collection and process of personal data at any time;
- Trujay will delete user’s personal data after submission of a request from the user;
- User can request to see the collected data, at any time.
What kind of personal data does Trujay collect?
For a more user-friendly experience, Trujay will collect some personal information. In compliance with GDPR regulations, we ensure our customers are informed during any data collection.
When creating a Trujay account, you are asked to provide the following information:
- e-mail address
- phone number (optional)
When you visit trujay.com, our server records the following information sent by cookies from your browser:
- web request (e.g. date, time, etc.)
- IP address
- browser type
- browser language
- one or more cookies identifying your browser
|Google, LLC||Google Workspace|
|Amazon Web Services, Inc.||Web Hosting|
|MongoDB, Inc.||Data Storage|
|HubSpot, Inc.||Customer Relationship Management (CRM)|
|Slack Technologies, Inc.||Communication & Support Services|
|PayPro Global||Payment Processing|
|SmartBear Software (Bugsnag)||Monitoring Service|
|Asana Inc.||Project Management|
|Xero Limited||Billing / Invoicing|
|Zoom Video Communications, Inc.||Video Conferencing|
What are cookies?
Cookies are small bits of text in data files. They can be integrated into your browser (on your computer or personal device) when you surf various websites.
Their primary purpose is to collect bits of information about your interaction with the website. It can help remember your setup, understand preferences, ease service login; and make it secure. Cookies are widely used to ensure efficient and accurate reporting information.
Please note: cookies do not identify the person and are not software programs. They cannot install themselves or any other application on your device.
The Trujay website may request cookies be accepted on your device.
How do we ensure that your data is protected?
Due to the nature of the personal data we collect via our website/service and your CRM system data, we’ve developed a complex measures to ensure your data protection:
- Network firewalls
- Network posture assessment
- DDoS preventions (We use the latest hardware appliances and sophisticated perimeter security technologies, providing you with first-rate protection against large-scale DDoS attacks.)
- HTTPS-encrypted communication
- Role-based authorization
- Validation of all requests to ensure security on the application level
Why do we collect your personal data?
The nature of our services require collection of your personal data to:
- Improve your customer journey on our website (web request, IP address, browser type, browser language, one or more cookies identifying your browser);
- Guarantee successful CRM data migration and integration (you must allow access to both source and target CRM);
- Send you important information on your migration and integration: estimates, results of the sample migration, and other correspondence;
- Contact you to clarify your requirements (via e-mail address, phone number).
What is Trujay's data deletion and retention policy?
User/website visitor can request Trujay delete private data by sending a request via this form.
Please note: deleted data can not be restored. If the contact is removed, all the personal data (name, email, password, phone number and info from cookies) will be deleted, and CRM access and migration results removed.
All CRM data will be deleted after 30 days; however all data can be removed earlier, upon written request.
How is my data protected from accidental destruction?
We take your data security seriously and have developed a comprehensive set of practices, technologies, and policies to help ensure your it remains that way. Your privacy is essential, with an emphasis on effective and security-focused practices.
Trujay holds the following security points:
- Physical Security Layer
- Network Security Layer
- Application Security Layer
- Security Audits
Can I get access to the collected data whenever I want to?
Yes! Please submit a request via this form.
Is there a written contract to ensure that Trujay processes data in accordance with my demands?