TrustCor Systems S. de R.L. (TrustCor) is committed to protecting the privacy of individuals and businesses using our products, services and global infrastructure, as well as visitors. TrustCor has established this Privacy Policy to explain what information we collect through our websites, products, services and global infrastructure and how it is used.

In this policy, "TrustCor" refers to TrustCor staff, management, board members, attorneys, interns, volunteers, and consultants, all of whom are bound by law or contract to keep confidential information they receive as part of their assistance to TrustCor.

TrustCor does not sell or rent member, visitor or service user information under any circumstances, and we do not share member, visitor or service user information without prior consent except as compelled by applicable regional laws.

Information Gathered by TrustCor

Logging: For visitors to our website, we generally log requests through a program called cryptolog, developed by the Electronic Frontier Foundation (EFF; cryptolog described further below), and do internal analytical logging (also described further below) for up to seven days from when the data was collected.

Circumstances in which TrustCor may need to log and retain technical information for longer than seven days include when we believe it is reasonably necessary for TrustCor’s mission and functionality, including situations such as:

  • Site testing,
  • Diagnosis of technical problems,
  • Defending against attacks to the site,
  • Handling a spike in traffic or other abnormal, short-term circumstances, or
  • Research projects (in anonymized form) that serve our overall mission to promote privacy online.

In those and similar situations we will delete the information as soon as it is apparent that the information is no longer needed for the purpose for which it was retained. For more information on TrustCor's position on data logging and techniques we use to anonymize, obfuscate, aggregate and delete information, see the EFF’s Best Practices for Online Service Providers.

How Cryptolog Works: Cryptolog takes the IP address portion of the request getting logged and encrypts it, as well as a chunk of random data (the salt), using a cryptographic hash function. The salt changes every night, which should result in making it very difficult for us, or anyone else, to recover IP addresses from our logs.

How TrustCor Internal Analytics Works: TrustCor endeavors to gather sufficient information for analyzing our services and how visitors use them without compromising the privacy of our visitors. TrustCor’s internal analytical logging, which is separate from the Cryptolog logs, involves logging for up to seven days a single byte of the IP address, as well as the referrer page, time stamp, page requested, user agent, language header, website visited, and a hash of all of this information. After seven days we keep only aggregate information from these logs. We also geolocate IP addresses before anonymizing them and store only the region.

Cookies: We do not use persistent ID cookies on this site except where you click “remember me” or are logged in. We use session cookies on certain portions of our services. Session cookies expire when you close your browser. You can use Tor if you wish to keep your connection information anonymous, but please note that you can still be identified to TrustCor if you log in.

We do not use persistent ID cookies on this site. We use session cookies on certain portions of the website. Session cookies expire when you close your browser. You can use if you wish to keep your connection information anonymous.

Voluntarily Submitted Information: In addition, TrustCor collects and retains information you voluntarily submit to us. It is up to you whether to submit information to us, and how much information to provide. If you choose to become an TrustCor user, use TrustCor products and services, otherwise donate to TrustCor initiatives, we may ask for identifying information such as your name, email address, mailing address and phone number and will retain that information. We may ask for additional personal information when you provide feedback or comments, or otherwise communicate with us. We are pleased to receive anonymous donations in the mail, but please note that your personal information is required if you choose to donate using our online form.

TrustCor and other Mailing Lists: If you choose to subscribe to TrustCor, or TrustCor sponsored mailing lists, we collect your email address, and, if you choose to provide it, your name.

TrustCor's Use of Information

In general, TrustCor uses the information provided by you to further its vision, including to protect privacy, defend freedom and innovation, and to protect your rights in the digital world.

Other activities: We may run surveys, contests, or similar activities through this site. Such information will be used for the purposes for which it was collected. We occasionally look at technical information to diagnose problems with or consider improvements to our servers or related technologies and to administer TrustCorSystems.com and other websites and services we host or provide.

Third-Party Service Providers to TrustCor

TrustCor uses third-party credit card processors and hosting providers.

For all of TrustCor's service providers, hosting providers and credit card processors and any other providers we may use in the future, the information collected from TrustCor users remains protected by the terms of our agreements with those providers and we will ensure that the information to be kept confidential and disclosed only to employees who require such access in the course of their assigned duties. TrustCor also requires all of our third-party service providers to notify TrustCor if they receive legal process seeking information about visitors to TrustCor’s website or services.

TrustCor may change the specific third-party providers from time to time, and will transfer stored information to any new provider subject to similar restrictions and agreements. From time to time, TrustCor may work with third-party consultants or other service providers who may have access to personally identifiable information. In such cases, we will restrict their use of personally identifiable information in accordance with their assigned tasks.

Third-Party Services and APIs

TrustCor’s site also provides links to or interacts with a wide variety of third-party websites, including interactive links to sites like social media, telephone calling services, mapping services, or video hosting websites, often via application programming interfaces (APIs). TrustCor is not responsible for, and does not have any control over, the privacy practices or the content of such third parties.

We encourage users to read the privacy policies of any website visited via links from or interactions with the TrustCor website or related services. Where appropriate, we will provide specific notice of these third-party services at the point of interaction. It is our policy not to include third-party resources when users initially load our web pages, but we may dynamically include them later after giving the user a chance to choose to interact with them. If you believe a third-party resource is automatically loading, please let us know so we can address it.

Disclosure of Your Information

While TrustCor endeavors to provide the highest level of protection for your information, we may disclose personally identifiable information about you to third parties in limited circumstances, including: (1) with your consent; or (2) when we have a good faith belief it is required by law, such as pursuant to a subpoena or other judicial or administrative order.

If we are required by law to disclose the information that you have submitted, we will attempt to provide you with prior notice (unless we are prohibited or it would be futile) that a request for your information has been made in order to give you an opportunity to object to the disclosure. We will attempt to provide this notice by email, if you have given us an email address, or by postal mail if you have entered a postal address. If you do not challenge the disclosure request, we may be legally required to turn over your information.

In addition, we will independently object to requests for access to information about users of our site and services that we believe to be improper and we have done so.

Updating or Removing Your Information

You may choose to correct, update, or delete the membership information you have submitted to us by sending an email requesting changes to membership@trustcorsystems.com. If you join any of our services, you may correct, update, or delete the information provided on the account management page. If we inadvertently collect more personal information than intended, we endeavor to delete the extraneous information. However, please understand that deleted information may continue to persist on backup media.

Changes to Our Policies

TrustCor's Privacy Policy may change from time to time. However, any revised privacy policy will be consistent with TrustCor's mission. If we make any substantive changes to our policies, we will place notice in mailing lists and post notice of changes on this page.

Security

TrustCor employs industry standard security measures to protect the loss, misuse, and alteration of the information under our control. TrustCor has turned on HTTPS by default.

Although we make good faith efforts to store information collected by TrustCor in a secure operating environment, we cannot guarantee complete security. Information collected by TrustCor will be maintained for a length of time appropriate to our needs. However, we generally do not retain credit card information unless you choose to have us make automatic monthly withdrawals from your account for services you choose to subscribe to.

Update History

Implemented January 1, 2015, leveraging the privacy policy and good practices of the Electronic Frontier Foundation.