Privacy Policy

1. Information We Collect

When you create an account, we collect your company name, domain, admin name, and email address. We do not collect or store personal data of your Google Workspace end-users beyond what is necessary for signature deployment (name, email, title, department, phone).

2. Google Workspace Credentials

Each company provides their own Google Cloud Service Account credentials. The private key is encrypted using AES-256-CBC before storage. The platform owner and TRITON staff have zero access to your Google Workspace data. Credentials can be revoked by disconnecting Google Workspace at any time.

3. How We Use Your Information

Your data is used exclusively to provide the TRITON service: syncing users, managing signature templates, and deploying signatures to Gmail. We do not sell, share, or use your data for advertising purposes.

4. Data Storage & Security

All data is stored in secure, encrypted databases. We use industry-standard security practices including HTTPS encryption, JWT-based authentication, rate limiting, and role-based access controls. Multi-tenant isolation ensures companies cannot access each other's data.

5. Data Retention

Your data is retained for as long as your account is active. When you disconnect Google Workspace, all stored credentials are permanently deleted. When you delete your account, all associated data is removed within 30 days.

6. Third-Party Services

We use the following third-party services: Google Workspace APIs (for user sync and signature deployment), Stripe and Razorpay (for payment processing), and AWS S3 (for image/asset storage). Each service has its own privacy policy.

7. Your Rights

You have the right to access, correct, or delete your personal data at any time. You can export your data or request deletion by contacting us at privacy@triton.com.

8. Contact

For privacy-related questions, contact us at privacy@triton.com.