Privacy Policy

This Privacy Policy explains how PT. TRUSTGUARD PRO TRADE ("Company", "we", "us", "our") collects, uses, stores and protects personal data when you visit our website, contact us, or engage us for software development and technology services.

1. Company Information

This website is operated by:

Company Number: 0409240104675

2. Scope of This Policy

This Privacy Policy applies to personal data processed in connection with:

• visits to our website;
• business inquiries and communications;
• proposals, contracts, invoices and client relationships;
• software development, implementation, support and maintenance services;
• recruitment or business administration, where applicable.

Use of our website is also governed by our Terms of Service.

For client projects, we may process personal data on behalf of our B2B clients. In those cases, the client normally acts as the data controller, and we act as a data processor under the applicable agreement or Data Processing Agreement.

3. Types of Personal Data We May Process

We may process the following categories of personal data:

Business contact data: name, company name, job title, email address, phone number and business address.

Communication data: emails, messages, meeting notes, support requests and other communications.

Contract and billing data: proposals, service agreements, Statements of Work, invoices, payment status and related commercial records.

Website and technical data: IP address, browser type, device information, pages visited, log data and cookie-related information.

Client project data: data contained in client materials, test environments, technical documentation, logs, support tickets, access credentials or system access details provided to us strictly for the purpose of delivering agreed services, subject to access controls, confidentiality obligations and secure handling procedures.

We do not intentionally collect sensitive personal data unless it is necessary for a specific client project and expressly agreed in writing.

4. How We Use Personal Data

We use personal data for the following purposes:

• to operate and maintain our website;
• to respond to inquiries and communicate with clients;
• to prepare proposals, contracts, Statements of Work and invoices;
• to provide software development, implementation, integration, support and maintenance services;
• to manage client relationships and project delivery;
• to protect our systems, website and business operations;
• to comply with legal, tax, accounting and regulatory obligations;
• to prevent fraud, misuse, unauthorized access or unlawful activity;
• to send business communications where permitted by law.

5. Legal Basis for Processing

Where applicable law requires a legal basis, we rely on one or more of the following:

• performance of a contract or steps prior to entering into a contract;
• our legitimate business interests, such as providing services, securing our systems and managing client relationships;
• compliance with legal obligations;
• consent, where required by law.

6. Client Project Data

When we process personal data on behalf of a client in connection with a software development or technology services project, we process such data only for the purpose of providing the agreed services and in accordance with the client's instructions.

Such processing may be governed by a separate agreement, Data Processing Agreement or equivalent data protection terms. We do not use client project data for unrelated purposes.

7. Sharing of Personal Data

We may share personal data with trusted third parties where necessary for our business operations and service delivery, including:

• hosting and cloud infrastructure providers;
• development, project management and communication tools;
• accounting, legal and professional advisers;
• payment, banking or invoicing service providers;
• security, backup and IT service providers;
• public authorities, where required by law.

Where third-party service providers process personal data on our behalf, we require them to process such data only for agreed purposes and subject to appropriate confidentiality, security and data protection obligations.

We do not sell personal data. We also do not use client project data for advertising, profiling or unrelated commercial purposes.

8. International Transfers

As an international technology services company, we may process or transfer personal data in countries other than the country where the data was originally collected.

Where personal data is transferred internationally, we take reasonable steps to ensure that such transfer is carried out in accordance with applicable data protection laws, including through contractual safeguards, data processing agreements, client instructions or other lawful transfer mechanisms.

9. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer period is required by law.

In general:

• business contact data is retained for the duration of the business relationship and a reasonable period thereafter;
• contract, billing and accounting records are retained as required by applicable legal and tax obligations;
• website and technical logs are retained for a limited period for security and operational purposes;
• client project data is retained in accordance with the applicable agreement, Statement of Work or client instructions.

When personal data is no longer required, we delete, anonymize or securely archive it.

10. Security

We apply reasonable technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration or disclosure.

These measures may include access controls, limited access on a need-to-know basis, secure credential handling, confidentiality obligations, controlled development environments, backups and incident escalation procedures.

Further information about our security approach, compliance practices and operational controls is available in our Trust Statement.

Where required by applicable law or contract, we will notify the relevant client or affected party of a personal data breach or security incident without undue delay and cooperate in reasonable investigation, mitigation and remediation measures.

No method of transmission or storage is completely secure, but we take reasonable steps to protect personal data in line with the nature of our services and the risks involved.

11. Your Rights

Depending on applicable law, you may have the right to:

• request access to your personal data;
• request correction of inaccurate data;
• request deletion of your data;
• object to certain processing;
• request restriction of processing;
• request data portability;
• withdraw consent where processing is based on consent.

To exercise these rights, please contact us at security@trustguard.group.

If we process your personal data on behalf of one of our clients, we may need to refer your request to that client, as the client is normally responsible for responding as the data controller.

12. Cookies

Our website may use cookies and similar technologies for website functionality, security, performance, analytics and user experience improvement, where applicable.

More information about the cookies and similar technologies we use, the purposes for which they are used, and how you can manage your cookie preferences is available in our Cookie Policy.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be published on this website with a revised "Last updated" date.

14. Contact

For questions about this Privacy Policy or our handling of personal data, please contact: