Privacy Policy

Last updated: March 2026

Our Privacy Promise

We will never sell your data. Ever.

Your data is yours. We store it so TrustTech can work for you. That’s the only reason.

No one is looking. We don’t mine your business data for insights, trends, or any purpose beyond delivering the service you asked for.

We don’t monetise you. No advertisers. No data brokers. Our business model is simple: you pay for the service, or you use the free tier. That’s it.

You can leave anytime. Export your data. Delete your account. We make it straightforward.

We explain everything. Every piece of data, every reason why. No surprises.

We’re real people. Questions? Email privacy@trusttech.nz — you’ll get a response from Matt, not a support bot.

Welcome

This privacy policy explains how TrustTech Limited (“TrustTech”, “we”, “us”) collects, uses, and protects your information when you use trusttech.nz and the SI Operations Manager platform.

We’ve written it in plain language because you deserve to understand it. If anything is unclear, email privacy@trusttech.nz and we’ll explain it personally.

TrustTech Limited is a New Zealand registered company, based in Christchurch.

What We Collect

Information you give us

  • Email address — Account creation, login, password reset, service updates. Kept until you delete your account.
  • Name — Personalise your experience. Kept until you delete your account.
  • Password — Secure your account (hashed with bcrypt — we can never read it). Kept until you delete your account.
  • Business and operational data — The core of SI Operations Manager — your business intelligence. Kept until you delete your account.
  • Usage preferences and settings — Remember how you like things configured. Kept until you delete your account.

Information collected automatically

  • Device and browser type — Ensure the platform works on your device. Essential, cannot opt out.
  • Pages and features you use — Improve the product. Optional — disable via cookie settings.
  • Error logs — Fix bugs before they affect you. Essential.
  • IP address — Security monitoring, suspicious login detection. Essential.

What we never collect

  • Bank credentials or financial account access
  • Data from other applications on your device
  • Your contacts, calendar, or personal files (unless you explicitly connect them)
  • Anything we don’t need to deliver the service

How We Use Your Data

To provide TrustTech services

  • Deliver the SI Operations Manager platform
  • Store and process your business data so you can access it
  • Power the AI and synthesis features
  • Send you the emails you’ve asked for (account notices, updates)

To improve TrustTech

  • Understand which features are useful (anonymised, aggregated)
  • Fix bugs and performance issues
  • Build new features that match how people actually work

What we never do with your data

  • Show you advertising
  • Build marketing profiles
  • Train AI models on your business data
  • Share it with anyone who wants to buy it

Who Sees Your Data

Our team

As few people as possible. Your business data is isolated — team members cannot casually browse your information. Access is strictly limited to what’s needed to support you.

Third parties we use

  • DigitalOcean — Hosting and infrastructure (server logs, IP addresses)
  • Stripe — Payment processing (payment method, billing information)
  • Resend — Transactional email (your email address)
  • AWeber — Email communications if opted in (your email address and name)
  • Anthropic / OpenAI — AI features (content you submit to AI features, not stored beyond your session)
  • Google — OAuth login if used, Calendar integration if connected

We vet every third party. We don’t use services that monetise your data.

We never share your data with

  • Advertisers
  • Data brokers
  • Social media platforms
  • Marketing partners
  • Anyone who wants to buy it

Security

Encryption: All data is encrypted in transit (HTTPS/TLS). Passwords are hashed — we cannot read them. Database connections are encrypted.

Access control: Strictly limited team access. Two-factor authentication required for all team accounts.

Monitoring: We monitor for suspicious activity and unusual access patterns.

If you discover a security issue, please email privacy@trusttech.nz immediately. We take security reports seriously and respond promptly.

Your Rights

  • Access — Request a copy of the data we hold about you. Email privacy@trusttech.nz.
  • Correction — Edit most data directly in the platform. Contact us for anything else.
  • Deletion — Delete your account from your account settings. All personal data is immediately and permanently removed. Payment records are anonymised but retained for 7 years as required by New Zealand law.
  • Portability — Export your data from the platform at any time.
  • Opt out — Manage cookie preferences in your account settings. Unsubscribe from emails at any time.

You have rights under the New Zealand Privacy Act 2020. If you believe we’ve handled your information incorrectly, you can contact the Office of the Privacy Commissioner at privacy.org.nz.

Data Retention

  • Account and business data — Until you delete your account
  • Payment records — 7 years (New Zealand legal requirement)
  • Support conversations — 2 years
  • Server and error logs — 90 days
  • Analytics (anonymised, aggregated) — Indefinitely

When you delete your account, personal data is immediately and permanently deleted. Backups purge within 30 days.

Cookies

We use cookies sparingly. Essential cookies keep the platform working. Analytics cookies help us improve it — and you can turn those off. No advertising cookies.

Full details in our Cookie Policy.

Children

TrustTech services are not designed for or directed at children under 16. If you believe a child has created an account, contact us at privacy@trusttech.nz immediately.

Legal requirements

We may disclose information if required by New Zealand law (court order, fraud prevention, safety). If this happens, we will notify you unless legally prohibited, share only the minimum required, and challenge any request we consider overreaching.

We have never received a government request for user data.

Changes to this policy

For significant changes, we’ll email you at least 14 days before they take effect, post a notice in the platform, and won’t reduce your rights without your consent.

Minor changes (clarifications, formatting) may be made without notice. The “last updated” date at the top reflects any change.

Contact

Email: privacy@trusttech.nz

Mail: TrustTech Limited, Christchurch, New Zealand

We read every message and respond personally.