top of page

TriloDocs | Privacy Notice

Privacy Notice for users of the TriloDocs SaaS application

TriloDocs Ltd (“TriloDocs”, “we”, “us”, or “our”) is a company registered in the United Kingdom.


This privacy notice explains how we collect, use, and protect personal data when you use
the TriloDocs SaaS application.


If you have any questions or wish to exercise your rights, please contact us at:
contact@trilodocs.com

This policy was last updated on 10.01.2026. 

Data we collect about you

Type of Data

Login credentials: we will collect the information necessary for us to verify you (e.g. name, email address, IP address, etc.). 

Lawful basis

Legitimate interest

Purpose of processing

We collect this information as it is in our legitimate interests to verify your access to the TriloDocs SaaS application.  

Support data: we will collect you’re the information necessary for us to provide you with support services (e.g. name, email address, phone number, etc.).

Legitimate interest

When you contact us for support, it is in our legitimate interest to make sure we can properly respond to your query. 

We use this information to improve our website and to better understand how people use it. More detail on the information we collect and how we do this is set out in our Cookie Policy. 

How We Use Your Data

We use personal data to:

  • Provide and operate the TriloDocs platform

  • Authenticate users and maintain security

  • Provide customer support

  • Monitor and improve system performance

  • Comply with legal obligations


We do not:

  • Sell personal data

  • Use customer data for advertising

  • Use customer data to train AI models without authorization

 

AI Processing

TriloDocs may use AI-assisted functionality as part of its services.


Where AI is used:

  • Processing is limited to delivering the requested service

  • Data is processed in isolation per customer

  • Data is not used to train shared models

  • Third-party AI providers are restricted from retaining or reusing data

 

Sharing of Personal Data

We may share personal data with:


Service Providers / Sub Processors
Third parties that support our services (e.g. cloud hosting, support tools).
Legal Authorities
Where required by law or to protect rights and safety.
Business Transfers
In connection with mergers, acquisitions, or sale of assets.
We do not sell or share personal data for cross-context behavioral advertising.
All service providers are required to:

  • Process data only for specified purposes

  • Maintain confidentiality

  • Implement appropriate security measures

 

International Transfer

Personal data may be transferred outside the UK or EEA, including to the United States.


Where required, we implement safeguards such as:

  • Standard Contractual Clauses (SCCs)

  • UK Addendum to SCCs

  • Other lawful transfer mechanisms

Data Retention

We retain personal data only as long as necessary.


Specifically:

  • Data is retained while your account or project is active

  • When a project is deleted, associated data is removed from production systems

  • When customer engagement ends, data is deleted unless required for legal or operational reasons

  • Backup data is retained temporarily and deleted through standard cycles

We may retain anonymised, non-client operational data (e.g., aggregate usage metrics) for service improvement.

You also have the right to lodge a complaint with us or the Information Commissioner's Office, the supervisory authority for data protection issues in England and Wales. If you are based in the EU you can find your relevant supervisory authority here

Your Rights

Depending on your location, you may have rights under applicable data protection laws.


UK / EU Rights (GDPR)
You may have the right to:

  • Access your personal data

  • Correct inaccurate data

  • Request deletion

  • Restrict or object to processing

  • Request data portability

  • Withdraw consent

U.S. Privacy Rights (e.g. California)
Where applicable, you may have the right to:

  • Know what personal data is collected and how it is used

  • Request deletion of personal data

  • Request access to your personal data

  • Correct inaccurate personal data

  • Opt out of the sale or sharing of personal data (note: TriloDocs does not sell personal data)

  • Not be discriminated against for exercising your rights

Because TriloDocs acts as a processor/service provider, requests should typically be directed to your organisation (the controller/business). We will assist our customers in responding to such requests where required. You may also contact us directly at contact@trilodocs.com.

Security

We implement appropriate technical and organisational measures to protect personal data,
including:

  • Access controls

  • Encryption

  • Monitoring and logging

  • Secure infrastructure

Please keep in mind that privacy law is complicated, and these rights will not always be available to you all of the time. 

See TriloDocs in Action

bottom of page