Privacy Policy

Last Updated: June 19, 2025

Introduction

Trakyo ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our revenue attribution and analytics platform (the "Service"). This policy applies to our website, mobile applications, and all related services.

Information We Collect

Personal Information You Provide

• Account Information: Name, email address, phone number, company name
• Payment Information: Billing address, payment method details (processed securely through third-party providers)
• Profile Information: Business details, content creator information, preferences
• Communication Data: Messages, support requests, feedback

Automatically Collected Information

• Usage Data: How you interact with our Service, features used, time spent
• Device Information: IP address, browser type, operating system, device identifiers
• Log Data: Server logs, error reports, performance metrics
• Cookies and Tracking: Session data, preferences, analytics information

Third-Party Platform Data

When you connect your accounts, we collect:

YouTube Data

• Video metadata (titles, descriptions, thumbnails, publish dates)
• Channel information and statistics
• Video performance metrics (views, engagement)
• Comments and interaction data (when authorized)

Calendly Data

• Event bookings and scheduling information
• Attendee information and show-up rates
• Calendar integration data

Typeform Data

• Form submissions and responses
• Form metadata and completion rates
• Respondent information (when provided)

Stripe Data

• Transaction records and payment information
• Customer payment history
• Revenue and subscription data

Instagram Data

• Post metadata and performance metrics
• Account information and insights
• Engagement statistics

Website Analytics Data

• UTM parameters and attribution data
• Pixel event tracking
• Conversion and click-through data

How We Use Your Information

Primary Business Purposes

• Revenue Attribution: Connect content performance to actual revenue generation
• Analytics and Reporting: Provide insights and performance metrics
• Platform Functionality: Deliver core features and maintain Service operation
• Data Integration: Aggregate information across connected platforms

Service Improvement

• Product Development: Enhance existing features and develop new capabilities
• Performance Optimization: Improve Service speed, reliability, and user experience
• Bug Fixes: Identify and resolve technical issues
• Security: Detect and prevent fraudulent or malicious activity

Communication

• Service Updates: Notify you of changes, updates, or maintenance
• Support: Respond to your requests and provide customer assistance
• Marketing: Send relevant product information (with your consent)
• Legal Compliance: Fulfill legal obligations and enforce our terms

Data Sharing and Disclosure

Third-Party Service Providers

We share data with trusted providers who assist in:

• Cloud Hosting: Supabase (database), Cloudflare (infrastructure)
• Payment Processing: Stripe and other payment processors
• Analytics: Performance monitoring and usage analytics
• Customer Support: Help desk and communication tools
• Security: Fraud detection and prevention services

Platform Integrations

• YouTube: Data exchange for video analytics and attribution
• Calendly: Event synchronization and booking data
• Typeform: Form submission tracking and analytics
• Instagram: Content performance and engagement metrics

Legal Requirements

We may disclose information when required by law or to:

• Comply with legal processes, court orders, or government requests
• Protect our rights, property, or safety
• Prevent fraud or security threats
• Enforce our Terms of Service

Business Transfers

In case of merger, acquisition, or sale of assets, user information may be transferred as part of the transaction.

Data Security

Technical Safeguards

• Encryption: Data encrypted in transit (TLS) and at rest
• Access Controls: Multi-factor authentication and role-based permissions
• Network Security: Firewalls, intrusion detection, and monitoring
• Regular Audits: Security assessments and vulnerability testing

Organizational Measures

• Employee Training: Staff educated on data protection practices
• Limited Access: Data access restricted to authorized personnel only
• Incident Response: Procedures for detecting and responding to breaches
• Vendor Management: Third-party security assessments and agreements

Multi-Tenant Architecture

• Data Isolation: Each user's data stored in separate database schemas
• Schema-Level Security: Individual security boundaries per customer
• No Cross-Contamination: Technical measures prevent data mixing

Your Rights and Choices

Data Access and Control

• Access: Request copies of your personal information
• Correction: Update or correct inaccurate data
• Deletion: Request removal of your personal information
• Portability: Export your data in a structured format
• Restriction: Limit how we process your information

Communication Preferences

• Marketing Opt-Out: Unsubscribe from promotional communications
• Notification Settings: Control Service-related notifications
• Cookie Management: Adjust cookie preferences in your browser

Account Management

• Data Export: Download your analytics and attribution data
• Account Deletion: Permanently delete your account and associated data
• Integration Control: Connect or disconnect third-party platforms

Data Retention

Retention Periods

• Active Accounts: Data retained while your account is active
• Inactive Accounts: Data may be retained for 12 months after last activity
• Legal Requirements: Some data retained longer when required by law
• Backup Systems: Data in backups retained for up to 90 days

Deletion Process

• User-Requested: Data deleted within 30 days of valid deletion request
• Automated Cleanup: Inactive accounts processed quarterly
• Third-Party Data: Disconnected platform data removed within 7 days

International Data Transfers

Cross-Border Processing

• Primary Storage: Data primarily stored in United States
• EU Users: Adequate protection measures for European data
• Standard Contractual Clauses: Used for international transfers
• Data Localization: Compliance with local data residency requirements

Children's Privacy

Our Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information immediately.

Third-Party Services

Platform Integrations

This policy does not cover data practices of third-party platforms (YouTube, Calendly, Typeform, Stripe, Instagram). Please review their privacy policies for information about their data handling.

Links and Widgets

Our Service may contain links to external websites. We are not responsible for the privacy practices of these third-party sites.

Cookie Policy

Types of Cookies

• Essential: Required for Service functionality
• Analytics: Help us understand usage patterns
• Preferences: Remember your settings and choices
• Marketing: Deliver relevant advertisements (with consent)

Cookie Management

You can control cookies through your browser settings. Disabling certain cookies may limit Service functionality.

Updates to This Policy

We may update this Privacy Policy periodically. We will:

• Notify Users: Email notification for material changes
• Post Updates: Display revised policy on our website
• Effective Date: Changes take effect on the date specified
• Continued Use: Using the Service after updates constitutes acceptance

Compliance and Certifications

Regulatory Compliance

• GDPR: European Union data protection compliance
• CCPA: California Consumer Privacy Act compliance
• PIPEDA: Canadian privacy law compliance
• SOC 2: Security and availability standards

Industry Standards

• ISO 27001: Information security management
• OWASP: Web application security guidelines
• Cloud Security: Following cloud provider best practices

Contact Information

Data Protection Office

Email: roger@lamicolabs.com
Address: 30 N Gould St Ste R, Sheridan, WY 82801
Phone: 306-250-3681

Questions and Requests

For privacy-related questions, data requests, or concerns, please contact us using the information above. We will respond within 30 days of receiving your request.

This Privacy Policy is effective as of the date listed above and applies to all users of the Trakyo Service.