Privacy Policy

Last updated: May 1, 2024


General
We at Trust & Safety Laboratory, Inc. (“TrustLab”, “we”, “our”, or “us”) respect your privacy. This Privacy Policy (“Policy”) explains how we collect, use, and disclose information from and about you (“your information”) that we receive in the ways specified below.


TrustLab provides harmful content identification, analysis, classification, labeling, and other services (the “TrustLab Services”) to our business customers (“Customer(s)”). Customers use the TrustLab Services to identify potentially harmful online content and take any appropriate action as they deem necessary in their sole discretion.


We collect information when individuals visit and interact with www.trustlab.com (the “TrustLab Site”), when Customers use the TrustLab Services. The TrustLab Site and the TrustLab Services are collectively referred to as the “Services.” How we collect your information and what information we collect depends on how you interact with the Services.
TrustLab is the controller of data collected from visitors to the TrustLab Site and from Customers when they interact with TrustLab or use the TrustLab Services (“Services Data”). Services Data does not include any User Data (defined below).


Customer is the controller of information that pertains to information about users of the Customer’s services and that is collected from the content that Customer sends to TrustLab to analyze (“User Data”). TrustLab is the processor or service provider of such User Data and is governed by the applicable Customer privacy policy.


This Policy is an integral part of, and incorporated into, our Terms of Service the (“Terms of Service”).


By using or otherwise interacting with the Services, you acknowledge that we will collect, use, and disclose your information as described in this Policy.



Please read this Policy carefully. If you do not agree to this Policy, please do not use the Services.


Types of Information We Collect
We collect information that you provide to us, information that we collect automatically, and information from other sources.

Information You Provide to Us.


We collect information you provide to us, depending on how you use the Services, when, for example, you create an account or make a purchase through the Services, interact with customer support, or input information into the Services. Depending on whether you are a TrustLab Site visitor or Customer, this information may include:
•    Contact Information such as your name, company name and details, mailing address, email address, phone number, country of residency,
•    Commercial information, including if you make or enable a transaction such as a purchase directly from the TrustLab Services. In such case, we will collect billing and financial information as necessary to process your charges, such as credit card number, postal and email address.
•    Customer support information including messages you send to us and audio recordings of customer service calls,
•    Any other information provided to us such as survey responses or feedback.

You can choose not to provide us with certain information, but then you may not be able to register with us or take advantage of all of the functionality of our Services.


Customers determine what Personal Data, if any, is included in the User Data for TrustLab to process and/or to input into the TrustLab Services.


Information We Collect Automatically.
When you interact with the Services, we may automatically collect information about your browser, device, and use of the Services, including, but not limited to IP address, approximate location, information about your activity on the Services (such as page views and features you use), device type, browser type, operating system and version, the web page you were visiting before you came to the Site, information you search for on the Site, locale preferences, your mobile carrier, date and time stamps associated with transactions, system configuration information, metadata concerning your files, website alias, responsive website or mobile website URL, and website URL. Some of this data is collected using cookies and similar technologies. To learn more about these technologies and your choices regarding them, please see the section below titled “Your Choices and Rights”.


Information From Other Sources.
We may collect information about you from publicly and commercially available sources, as permitted by law, including but not limited to publicly available directories, social media, advertisers and business partners, and Customers.


How We Use Your Information
We may use Services Data for the following purposes, unless indicated otherwise:
•    To provide and improve the Services;
•    To provide customer support and respond to your queries;
•    To communicate with you about the Services and to provide you updates, offers, and other information related to the Services (subject to any preferences we offer and/or required by law);
•    To advertise and market the Services to you, in accordance with applicable legal requirements and subject to any preferences we offer and/or required by law);
•    To analyze and research the functioning and use of the Services and develop new features and to conduct surveys;
•    To prevent fraud and protect the security and integrity of the Services; and to protect the rights, safety, security, interests, and property of TrustLab, Customers, our partners, third parties, and members of the public;
•    To enforce our policies, including but not limited to this Policy, our Terms of Service, and our Master License and Service Agreement;
•    To comply with legal requirements, including applicable laws, regulations, and legal process (e.g., subpoenas, warrants, or preservation requests); and
•    For any other purpose, with your consent.

We may aggregate, de-identify and/or anonymize any information collected through the Services so that such information is no longer reasonably capable of being associated with you. We may use aggregated or anonymized information (or information that was never associated with you) for any purpose, including for research and marketing purposes, and we may also share such information for any purpose with any third parties, at our discretion.

The laws in some jurisdictions require companies to tell you about the legal grounds they rely on to process your information. Our legal bases for processing your information as described in this Policy are as follows:


•    Performance of contract: Where use of your information is necessary to perform our obligations under a contract or commitment to you. For example, to provide the services you’ve requested from us, or to comply with our Terms of Service.
•    Legitimate interests: Where use of your information furthers our legitimate interests or the legitimate interests of others. For example, to provide security for our Services, operate our business and our Services, make and receive payments, assert and defend our legal rights and those of others, market and improve and optimize our services, and prevent fraud.
•    Compliance with legal obligations: Where we use your information to comply with applicable legal obligations. For example, keeping track of purchases for tax and auditing purposes, and complying with valid law enforcement and court orders.
•    Consent: Where you have consented to our processing of your information for a particular purpose.

For the purposes discussed in this Policy, we may combine the information that we collect through the Services with information that we receive from other sources, both online and offline, and use such combined information in accordance with this Policy.


How We Share Your Information
We may share your information under the following circumstances:


Internally - We share your information with companies in our group and our employees as necessary in order to provide you with our Services and operate our business efficiently and effectively.


Service Providers - We may share your information with third parties that work on our behalf to help us operate our business and provide the Services by performing services that include, without limitation: maintenance, payment processing, website hosting and database management services, data security, storage, analytics, website administration, legal or tax services, email management, consent management, and advertising. Service Providers must comply with this Policy and may only use your information to provide us with their services.


Affiliates and Partners - We provide your information to our affiliates or partners, if (i) you have a relationship with that affiliate or partner either online or offline (non-Internet), (ii) you have visited the affiliate or partner's website that links to or mentions our website, or (iii) you have registered for our Services through the partner’s or affiliate’s program or website.


Marketing partners – in some cases, we share your information for communicating targeted advertising and promotional materials.

As required or permitted by law - We cooperate in good faith with government and law enforcement officials and private parties to enforce and comply with the law and protect the rights of TrustLab, its customers and third parties. We will disclose your information if we, in our sole discretion, believe it necessary or appropriate: to respond to claims and legal process (including but not limited to subpoenas); to protect our or a third party's property, safety, or rights; to address any activity we consider to be, or to pose a risk of being, illegal, unethical or legally actionable; or as otherwise required or permitted by law.

Business Transactions - We may share your information if we sell, transfer or otherwise share some or all of our assets in connection with a merger, acquisition, reorganization or sale of all or substantially all of our shares or assets or a similar transaction, in the event of bankruptcy, or contemplated of or diligence leading up to a potential corporate transaction.


With Your Consent – We share your information when we have your consent to do so.


Please note that if you choose to share your information on the Services (for example in the form of a comment or post on the TrustLab support portal, if such features are available), your information will be available to anyone who is able to view such information where you have shared it.


Your Choices and Rights
Marketing Emails. You may choose not to receive our promotional or marketing emails by clicking on the “unsubscribe” link in those emails. Please note that even if you unsubscribe from our marketing emails, we will continue to send you transaction-related emails regarding products or Services that you have requested, certain non-promotional emails about us and our Services, and responses to your queries or feedback.

Cookies and Similar Technologies. When you interact with the Services, we (and third parties acting on our behalf) automatically collect certain information about your browser, device, and use of the Services through cookies, pixel tags, web beacons, local storage, and other similar technologies. Cookies are small text files stored on your browser or device, which allow us to provide certain features of the Services, personalize your user experience, and advertise our Services to you. You can find more information about cookies at www.allaboutcookies.org.

We can only control the cookies on TrustLab’s Site.  To manage your preferences with regard to cookies on TrustLab’s Site, please visit our page on Cookie Settings. Customers may place cookies on Customer Sites. TrustLab does not control those cookies, and the cookie preferences for TrustLab’s Site do not apply to the cookies on Customer Sites, or third party service providers (affiliates and partners) with whom you contract through TrustLab.

Your web browser may allow you to manage cookies and local storage. Each browser is different, so please, follow the directions provided in your browser’s “help” section to manage cookies. Please note that if you delete or disable cookies from our Services, some parts or functions of the Services may not work properly for you.

Tailored Advertising. We engage third parties to serve advertisements for our Services on our behalf on third-party websites and applications. You have certain choices about how your information is used for this purpose.


•    For more information about tailored advertising or to opt out of participating companies, visiting the opt-out pages of the Network Advertising Initiative or the Digital Advertising Alliance. We make no representation about the accuracy or effectiveness of these opt out mechanisms. Please note that if you opt out, you may still see advertisements; however, they will not be tailored based on your interests.
•    Some tailored advertising is carried out using cookies. You may be able to set your browser to refuse certain types of cookies. Please see the “help” section of your browser for more information.
•    If you are using a mobile device, you can opt out of certain types of tailored advertising by changing the settings on your device.


“Do Not Track” Signals. “Do-not-track” (“DNT”) is a setting offered by some browsers. DNT signals are not yet uniform, so we, like many other website operators, do not currently recognize or respond to DNT signals.


Your Rights. Depending on your jurisdiction of residence, you may have the right to request:
•    Access to, a copy of, and certain information about our processing of, your information;
•    Correction of inaccuracies in your information;
•    Deletion of your information, subject to any legal or other rights we have to retain certain information; and
•    Restriction of the processing of your information; you also have the right to object to our processing of your information in some circumstances.

These rights are subject to applicable exceptions, and we will need to verify your identity before processing your request. If you would like to submit a request relating to your information, please contact us using one of the methods in the section below titled “Contacting Us.”

If you contact us to exercise a right with respect to User Data, for which we are a processor/service provider, we will forward this request to the appropriate Customer who is responsible for responding to your request if we can identify the Customer, otherwise contact your controller directly to exercise these rights.


If you are a resident of the European Economic Area (“EEA”), the United Kingdom, or the state of California, please see the section below titled “Notice to EEA and UK Residents” or “Notice to California Residents” (as applicable to you) for more information about your rights.


Third Party Links and Content
The Services may contain third-party content or links to third-party websites and services. When you interact with such content or visit a third-party website, or install a third party app or use a third party service, you will be providing third parties with your information. Such third-party content and sites are not governed by this Policy, and we have no control over how third parties use your information, nor are we liable for such third parties’ use or disclosure of your information. A third party’s use of your information is subject to that third party’s privacy policy and your contract with them. Before you share your information with a third party, we encourage you to read the third party’s privacy policy and any other relevant terms.


Retention
We will retain your information for as long as necessary to provide our Service, and as necessary to comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods are determined taking into account the type of information that is collected and the purpose for which it is collected, bearing in mind the requirements applicable to the situation. We will keep records containing Services Data, account opening documents, communications and anything else as required by applicable laws and regulations. In general, data relating to our Customers will be retained for the duration of the engagement with the Customer, and for a period of up to [7] years following the termination of Services to that Customer.


Security
We have implemented administrative, technical, and physical safeguards to help prevent unauthorized access, use, or disclosure of your information. However, because no security measures are perfect, there is always some risk involved in transmitting your information over the internet. We cannot guarantee the security your information, and you transmit it to and through the Services at your own risk.
You can help prevent unauthorized access to your account and information by protecting your password appropriately and limiting access to your account (for example, by signing off after you have finished accessing your account). You are solely responsible for all activity that takes place through your account, including any unauthorized use.


Children’s Privacy
The Services are not intended for children under the age of 18. We do not knowingly collect personal information from children under the age of 18. If we learn that a child has provided us with personal information (as that term is defined in the Children’s Online Privacy Protection Act (COPPA)), we will delete such information in accordance with applicable law or if we otherwise determine Customer accounts are held by users under 18, we reserve the right to take actions we deem appropriate, including deleting such accounts.


Notice to Non-U.S. Users and Consent to Transfers
TrustLab and our computer systems are based in the United States, so we will process your information in the United States, where the privacy laws may not be as protective as those in your jurisdiction. By using the Services, you understand and agree to the transfer of your information to the United States and to the processing of that information as described in this Policy.


Where required, we will use appropriate safeguards for transferring the data of residents of the EEA or UK.  This may include signing Standard Contractual Clauses that govern the transfers of such data, or a US Department of Commerce and EU Commission approved program if one is agreed.


For non-EEA/UK residents, we will transfer your data in accordance with applicable law.


Notice to EEA and UK Residents
Right to Complain. We encourage you to contact us directly and allow us to work with you to address any concerns you might have about our privacy practices. Nevertheless, you have the right to lodge a complaint with a competent data protection supervisory authority, in particular in the EU Member State where you reside or work, or the place of the alleged infringement. You have the right to do so if you consider that the processing of Personal Data relating to you infringes applicable data protection laws.


Data Protection Framework
Data Protection Framework. TrustLab complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. TrustLab has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. TrustLab has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/


With respect to personal data received or transferred pursuant to the Data Privacy Frameworks, TrustLab is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.


Pursuant to the Data Privacy Frameworks, EU, UK, and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under the Data Privacy Frameworks, should direct their query to info@trustlab.com. If requested to remove data, we will respond within a reasonable timeframe.


We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to info@trustlab.com.


In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

TrustLab’s accountability for personal data that it receives in the United States under the Data Privacy Frameworks and subsequently transfers to a third party is described in the Data Privacy Framework Principles. In particular, TrustLab remains responsible and liable under the Data Privacy Framework Principles if third-party agents that it engages to process personal data on its behalf do so in a manner inconsistent with the Principles, unless TrustLab proves that it is not responsible for the event giving rise to the damage.


In compliance with the Data Privacy Framework Principles, TrustLab commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to the Data Privacy Frameworks. European Union, United Kingdom, and Swiss individuals with DPF inquiries or complaints should first contact TrustLab by email at info@trustlab.com.


TrustLab has further committed to refer unresolved privacy complaints under the Data Privacy Framework Principles to a U.S.-based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to you.


If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf

Changes to this Policy
We reserve the right, in our sole discretion, to amend or update this Policy from time to time. If we make any material changes to this Policy, we will notify you as required by law. You are advised to consult this Policy regularly for any changes.


Contacting Us
If you have any concerns or questions about this Policy or your rights, please contact us via:
1.    By email: info@trustlab.com
2.    By post: TrustLab, Inc. ATTN: DPO, TrustLab Legal Department, 345 Leland Avenue, Palo Alto, CA 94306