Privacy Policy

0. Definitions

For the purposes of this Privacy Policy, the following terms shall have the meanings set forth below:

• Personal Data: Any information relating to an identified or identifiable natural person, including name, email, and online identifiers.
• Processing: Any operation performed on personal data, whether automated or non-automated, such as collection, storage, retrieval, alteration, or destruction.
• Data Controller: The entity determining the purposes and means of data processing (Trendly AI LTD).
• Data Processor: Any third party processing personal data on behalf of the Data Controller.
• User: Any individual who accesses or uses the Trendly platform.

1. Who We Are

Trendly AI LTD is a global company specializing in AI-driven social media management services. Our platform offers features such as:

• Post Generation: AI-powered tools to create engaging social media posts tailored to your audience.
• Scheduling: Automated scheduling to optimize post timing for maximum engagement.
• Sentiment Analysis: Insights into audience sentiment based on interactions and comments.
• Performance Tracking: Detailed analytics to measure the success of your social media campaigns.

We operate in compliance with international data protection laws, ensuring the privacy and security of our users worldwide.

2. Information We Collect

We collect the following categories of personal data to provide and improve our services:

• Identity Information: Includes your name and email address for account creation and communication.
• Social Media Credentials: OAuth tokens or equivalent access tokens to securely connect your social profiles without storing passwords.
• Usage Data: Interaction logs, feature usage telemetry, and time spent on the platform to enhance user experience.
• Social Media Insights: Engagement metrics, follower growth, and analytics obtained through authorized platform APIs.
• AI-Generated Content: Captions, hashtags, and recommendations created by our AI tools to optimize your social media strategy.

We ensure that all data collection is conducted transparently and in accordance with the terms of the social media platforms you authorize.

3. How We Collect Data

Data is collected through the following methods:

• User Input: Information provided during sign-up, profile configuration, and feature usage.
• OAuth Authorization: Secure authentication with social media platforms to access analytics and insights.
• API Access: Integration with platform APIs to retrieve engagement metrics and other data.
• Interaction Logs: Tracking user interactions with features to identify areas for improvement.

We do not collect passwords for your social media accounts, ensuring compliance with third-party platform policies.

4. How We Use Your Data

Your data is used for the following purposes:

• Authentication: To securely connect your social media accounts.
• Content Generation: To create and schedule AI-generated social media posts.
• Analytics: To analyze engagement metrics and provide actionable insights.
• Service Updates: To communicate updates and improvements to our platform.

We do not use your data to train AI models. All AI features operate in inference-only mode, ensuring your data remains private.

5. Data Sharing and Third Parties

We may share your data with:

• Service Providers: Third-party providers for AI model APIs, cloud hosting, and other essential services.
• Social Media Platforms: Data shared via developer APIs, subject to platform policies.
• Legal Authorities: Data disclosed only when required by law.

We never sell your data to third parties and ensure that all data sharing is conducted securely and transparently.

6. Security Measures

We implement the following security measures to protect your data:

• Encryption: Argon3-encrypted passwords and HTTPS for secure data transmission.
• Access Controls: Role-based access controls to limit data access to authorized personnel.
• Audits: Regular security audits and threat monitoring to identify and mitigate risks.

While no system can guarantee absolute security, we encourage users to maintain strong passwords and report any suspected breaches.

7. Your Rights

You have the following rights under applicable data protection laws:

• Access: Request access to the personal data we hold about you.
• Rectification: Correct inaccurate or incomplete data.
• Erasure: Request deletion of your data, subject to legal exceptions.
• Restriction: Limit processing under specific circumstances.
• Portability: Receive your data in a structured, machine-readable format.
• Objection: Object to processing for direct marketing or legitimate interests.
• Withdrawal: Withdraw consent at any time without affecting prior processing.

To exercise these rights, contact us at hello@trendly.lol with sufficient information to verify your identity and request details.

8. Data Retention

We retain user data only for as long as necessary to fulfill the following purposes:

• Service Provision: To provide and maintain the functionality of our services, including troubleshooting and customer support.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes, including tax, accounting, and data protection obligations.
• Dispute Resolution: To resolve disputes, enforce our terms of service, and protect our legal rights.

Retention periods may vary depending on the type of data and the purpose of processing. Upon expiration of the retention period, data will be securely deleted or anonymized, unless otherwise required by law.

9. Children's Privacy

Trendly is designed for users aged 13 and older. We do not knowingly collect, use, or disclose personal data from children under the age of 13. If we become aware that we have inadvertently collected data from a minor, we will take immediate steps to delete such data and, where applicable, notify the relevant authorities. Parents or guardians who believe their child has provided us with personal data may contact us at hello@trendly.lol to request deletion.

10. International Transfers

Your personal data may be transferred to and processed in jurisdictions outside your country of residence, including but not limited to the European Union (EU), United Kingdom (UK), and United States (US). Such transfers are conducted in compliance with applicable data protection laws and are subject to the following safeguards:

• Standard Contractual Clauses (SCCs): Where required, we implement SCCs approved by the European Commission to ensure adequate protection of your data.
• Binding Corporate Rules (BCRs): For intra-group transfers, we may adopt BCRs to ensure consistent data protection standards across our organization.
• Adequacy Decisions: Transfers to countries deemed to provide an adequate level of data protection by the European Commission.
• Additional Safeguards: Encryption, pseudonymization, and other technical measures to protect your data during transfer.

11. Changes to This Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or other circumstances. Updates will be posted on this page with a revised effective date. We encourage you to review this page periodically to stay informed of any changes. Continued use of Trendly following the posting of changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or wish to exercise your rights under this Privacy Policy, please contact us using the following details:

Trendly AI LTD
Email: hello@trendly.lol

For expedited processing, please include the nature of your inquiry and any relevant details in your communication.

13. Cookies and Tracking Technologies

Trendly uses cookies and similar tracking technologies to enhance user experience, analyze site traffic, and deliver personalized content. These technologies may include:

• Session Cookies: Temporary cookies that expire once you close your browser.
• Persistent Cookies: Cookies that remain on your device until deleted or expired.
• Third-Party Cookies: Cookies set by third-party services integrated into our platform.

You can manage your cookie preferences through your browser settings or by using cookie management tools provided on our website. Disabling cookies may impact the functionality of certain features.

14. Data Breach Notification

In the event of a data breach, we will:

• Notify affected users promptly, including details of the breach and recommended actions.
• Report the breach to relevant supervisory authorities as required by applicable laws.
• Implement corrective measures to prevent future breaches.

We encourage users to report any suspected breaches or vulnerabilities to hello@trendly.lol.

15. Third-Party Links and Services

Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices or content of these third parties. We encourage users to review the privacy policies of any third-party services they interact with.

By using Trendly, you acknowledge that third-party services may collect and process your data independently of our platform.

16. Compliance with GDPR and Other Laws

Trendly is committed to adhering to the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws globally. Below is a detailed breakdown of our compliance measures:

16.1 GDPR Compliance

Under GDPR, Trendly ensures compliance with the following key principles:

• Article 5 - Principles Relating to Processing: We process personal data lawfully, fairly, and transparently, ensuring data minimization, accuracy, and integrity.
• Article 6 - Lawful Basis for Processing: Processing activities are based on consent, contractual necessity, legitimate interests, or legal obligations.
• Article 13/14 - Transparency: We provide detailed information about data collection, processing purposes, and user rights.
• Article 15 - Right of Access: Users can request access to their data, including processing purposes and categories of data.
• Article 17 - Right to Erasure: Users can request deletion of their data, subject to legal exceptions.
• Article 20 - Data Portability: Users can receive their data in a structured, machine-readable format.
• Article 25 - Privacy by Design: Data protection measures are integrated into all systems and processes.
• Article 32 - Security: We implement encryption, pseudonymization, and access controls to protect data.
• Article 35 - Data Protection Impact Assessments (DPIAs): DPIAs are conducted for high-risk processing activities.

16.2 CCPA Compliance

For California residents, Trendly complies with the CCPA by providing the following rights:

• Right to Know: Users can request information about the categories of data collected, purposes of collection, and third parties with whom data is shared.
• Right to Delete: Users can request deletion of their personal data, subject to exceptions such as legal compliance.
• Right to Opt-Out: Users can opt out of the sale of their personal data (Note: Trendly does not sell user data).
• Right to Non-Discrimination: Users will not be discriminated against for exercising their rights under CCPA.

16.3 International Compliance Measures

Trendly ensures compliance with data protection laws in other jurisdictions, including:

• UK GDPR: Equivalent to EU GDPR, with additional provisions for UK-specific regulations.
• PIPEDA (Canada): Ensures data protection and user rights for Canadian residents.
• APPI (Japan): Complies with Japan's Act on the Protection of Personal Information.
• LGPD (Brazil): Adheres to Brazil's General Data Protection Law, including provisions for data subject rights and international transfers.

16.4 Regulatory Cooperation

Trendly actively cooperates with regulatory authorities to ensure compliance and resolve disputes:

• Supervisory Authorities: We engage with EU Data Protection Authorities (DPAs) and other global regulators as required.
• Incident Reporting: Data breaches are reported to relevant authorities within statutory timeframes.
• Cross-Border Transfers: Safeguards such as Standard Contractual Clauses (SCCs) and Binding Corporate Rules (BCRs) are implemented for international transfers.

16.5 User Rights Under GDPR

Users have the following rights under GDPR:

• Right to Rectification: Correct inaccurate or incomplete data.
• Right to Restriction: Limit processing under specific circumstances.
• Right to Object: Object to processing for direct marketing or legitimate interests.
• Right to Withdraw Consent: Withdraw consent at any time without affecting prior processing.

16.6 CCPA Consumer Rights

California residents have the following rights under CCPA:

• Access Requests: Request detailed information about data collection and sharing practices.
• Deletion Requests: Request deletion of personal data, subject to legal exceptions.
• Opt-Out Requests: Opt out of data sales (if applicable).

By using Trendly, you acknowledge and agree to our compliance measures as outlined above.

17. Data Subject Rights in Detail

In addition to the rights outlined in Section 7, Trendly provides the following detailed mechanisms for exercising your rights under applicable data protection laws:

• Verification Process: To ensure the security of your data, we require verification of your identity before processing any rights requests. This may include providing government-issued identification or other documentation.
• Response Timeframes: We aim to respond to all rights requests within 30 days, as mandated by GDPR. For complex requests, this period may be extended by an additional 60 days, with prior notification.
• Limitations: Certain rights may be restricted under specific circumstances, such as ongoing legal proceedings or statutory obligations.

18. Legal Basis for Processing

Trendly processes personal data under the following legal bases:

• Consent: Where you have explicitly provided consent for specific processing activities, such as receiving marketing communications.
• Contractual Necessity: To fulfill our obligations under the Terms of Service, including providing AI-driven social media management services.
• Legitimate Interests: For purposes such as improving our services, ensuring security, and preventing fraud, provided these interests do not override your fundamental rights.
• Legal Obligations: To comply with applicable laws, regulations, and judicial orders.

19. Retention Policy

Trendly employs a tiered retention policy based on the type of data and its purpose:

• Transactional Data: Retained for 7 years to comply with tax and accounting regulations.
• User Account Data: Retained for the duration of your account's active status and deleted within 90 days of account closure.
• Telemetry Data: Retained for 12 months for service improvement purposes.

Upon expiration of retention periods, data is securely deleted or anonymized using industry-standard methods.

20. Accountability and Governance

Trendly has implemented a comprehensive data protection framework to ensure compliance with applicable laws:

• Data Protection Officer (DPO): A designated DPO oversees our data protection practices and serves as the point of contact for regulatory authorities.
• Training and Awareness: Regular training sessions are conducted for employees to ensure adherence to data protection policies.
• Privacy by Design: Data protection principles are integrated into the development of all new features and services.
• Third-Party Audits: Independent audits are conducted annually to assess compliance and identify areas for improvement.

By using Trendly, you agree to our governance measures and acknowledge our commitment to accountability.

21. Advertising and Analytics

Trendly uses advertising and analytics tools to improve user experience and deliver targeted content. These tools may include:

• Behavioral Advertising: We use data about your interactions with our platform to deliver personalized advertisements.
• Third-Party Analytics: Services such as Google Analytics and similar tools help us understand user behavior and optimize our services.

You can opt out of personalized advertising by adjusting your account settings or using third-party opt-out tools, such as the Digital Advertising Alliance (DAA) opt-out page.

22. Data Storage and Security

Trendly employs industry-standard security measures to protect your data, including:

• Encryption: All sensitive data is encrypted both in transit and at rest.
• Access Controls: Role-based access controls ensure that only authorized personnel can access your data.
• Redundancy: Data is stored across multiple secure locations to ensure availability.

Despite these measures, no system can guarantee absolute security. We encourage users to report any vulnerabilities to hello@trendly.lol.

23. User-Generated Content

Trendly allows users to create and share content through our platform. By submitting content, you grant Trendly a non-exclusive, royalty-free license to use, display, and distribute your content for the purposes of providing our services. You are responsible for ensuring that your content complies with applicable laws and does not infringe on third-party rights.

24. Changes to User Preferences

Users can update their preferences for data collection, communication, and advertising at any time through their account settings. Changes will take effect immediately but may not apply retroactively to data already collected.

25. Legal Disclosures

Trendly may disclose your data under the following circumstances:

• Compliance with Laws: To comply with legal obligations, such as subpoenas or court orders.
• Protection of Rights: To protect the rights, property, or safety of Trendly, its users, or the public.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity.

26. Additional Information

For more details about our privacy practices, please contact us at hello@trendly.lol or review our Terms of Service.

27. Record of Processing Activities (RoPA)

Trendly maintains a comprehensive Record of Processing Activities in accordance with Article 30 GDPR, documenting:

• Categories of data subjects and personal data processed
• Processing purposes and legal bases
• Data recipients and sub-processors
• Data storage locations and retention periods
• Security measures and risk assessments

This record is reviewed annually or when significant changes occur.

28. Automated Decision Making and Profiling

We use algorithmic processes to generate content recommendations and scheduling optimizations. Under GDPR Article 22:

• Users can request meaningful information about the logic involved
• Users may object to solely automated decisions that produce legal or similarly significant effects
• Human review is provided upon request to challenge automated outcomes

29. Data Accuracy and Quality Assurance

Trendly implements procedures to ensure data accuracy:

• Periodic data audits and validation checks
• User notifications to update or correct information
• Error handling protocols to resolve discrepancies

30. Data Minimization Principles

We adhere to data minimization by:

• Collecting only data necessary for specified purposes
• Regularly reviewing data collection practices
• Implementing retention schedules to purge unnecessary data

31. Consent and Withdrawal Mechanisms

For processing based on consent:

• Explicit opt-in is obtained via account settings or consent banners
• Detailed records of consent transactions are maintained
• Users can withdraw consent at any time, ceasing further processing

32. Version Control and Effective Dates

Each section includes version references and effective dates. The current version is 1.1 effective 01/01/2026. Future updates will be timestamped accordingly.