TrigGuard
TRIGGUARD LEGAL
Request a demo

Privacy Policy

How TrigGuard handles your data.

Last updated: March 13, 2026 · Effective: March 13, 2026
Summary: TrigGuard is an execution authorization protocol. We process authorization requests and return signed receipts. We do not track users across websites, sell data, or use your data for advertising. This website uses no third-party tracking or marketing cookies; essential session cookies only.

1. Who We Are

TrigGuard AI Ltd. is a company registered in England and Wales. We provide an execution authorization protocol for critical system actions.

For data protection purposes, TrigGuard AI Ltd. is the data controller for personal data processed through our services.

2. What Data We Process

Authorization Requests

When your systems call POST /execute, we process:

  • Surface identifier (e.g., "deploy.release")
  • Action identifier (optional)
  • Context metadata you provide (commit, branch, actor, etc.)
  • Timestamp of the request
  • Your API key for authentication

Receipts

We generate and store signed receipts for audit purposes. Receipts contain the authorization decision, timestamp, and a cryptographic signature.

Account Information

If you create an account, we collect:

  • Email address
  • Organization name
  • Billing information (processed by our payment provider)

3. What We Do NOT Collect

  • We do not use tracking cookies on this website
  • We do not use analytics services that track users
  • We do not collect your secrets, credentials, or sensitive data
  • We do not sell or share data with advertisers
  • We do not use your data to train machine learning models

4. How We Use Your Data

We process data solely for:

  • Evaluating authorization requests against your policies
  • Generating and storing signed receipts
  • Providing audit logs and compliance records
  • Communicating with you about your account
  • Improving service reliability and performance

5. Data Retention

Authorization receipts are retained for 7 years for compliance purposes, unless you request earlier deletion. Account data is retained for the duration of your account plus 30 days after closure.

6. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • All data encrypted in transit (TLS 1.3)
  • Data encrypted at rest
  • Access controls and audit logging
  • Regular security assessments

7. Your Rights

Under GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to processing
  • Lodge a complaint with a supervisory authority

To exercise these rights, contact legal@trigguardai.com.

8. International Transfers

Our primary infrastructure is located in the European Union. If we transfer data outside the EU, we ensure appropriate safeguards are in place (Standard Contractual Clauses or adequacy decisions).

9. Changes to This Policy

We will notify you of material changes via email or through our status page. Continued use of the service after changes constitutes acceptance.

Contact

For privacy-related questions:
legal@trigguardai.com

TrigGuard AI Ltd.
London, United Kingdom