How we handle the data you trust us with.

Who we are

This privacy policy is published by Tridence ("we", "us", "our"), a digital agency headquartered in Jacksonville, Florida with a studio in Chicago, Illinois. We design, build, and maintain websites, applications, brand systems, and marketing programs for clients across the United States.

For the purposes of GDPR, Tridence is the data controller for the personal information described in this policy. For CCPA, we are a business as defined in the statute.

What we collect

We collect information you give us directly, information collected automatically as you use the site, and information from third-party services that help us operate.

Information you provide:

• Contact details — name, email, phone, company — when you fill out a form or email us
• Project details — scope, timelines, budgets, and notes you include in a brief or quote request
• Communications — anything you write to us via email, calls, or chat

Information collected automatically:

• Device & browser metadata — IP address, user agent, referring URL, screen size, language
• Usage data — pages visited, time on page, click events, scroll depth
• Cookies and similar storage — see Section 4

How we use it

We use the information described above to operate the site, respond to inquiries, deliver work to clients, and improve what we do. Specifically:

• Respond to your inquiries, schedule discovery calls, and prepare proposals
• Deliver services to clients under signed engagement agreements
• Maintain billing, accounting, and statutory records
• Measure site performance and conversion paths in aggregate
• Secure our infrastructure and detect abuse or fraudulent submissions
• Communicate updates, where you have opted in to receive them

Cookies & tracking

We use cookies and similar storage technologies to keep the site working, remember preferences, and understand how visitors interact with our pages. You can control cookies through your browser or our consent banner where applicable.

Essential cookies are required for the site to function — session state, security, and form submission protection (reCAPTCHA). These cannot be disabled without breaking core functionality.

Analytics cookies help us understand traffic patterns in aggregate. We currently use Google Analytics 4 with IP anonymization enabled. You can opt out at any time using your browser settings or the Google Analytics opt-out add-on.

Third-party processors

We work with carefully selected vendors who process data on our behalf under written contracts (DPAs where applicable). They are bound to use your information only for the purposes we instruct.

• HubSpot — form intake, CRM, scheduling
• Google Workspace — email, calendar, document storage
• Google Analytics 4 — site analytics with IP anonymization
• WP Engine / managed hosting — website infrastructure
• Stripe / QuickBooks — invoicing and payment processing for clients
• Zoom / Google Meet — video conferencing for discovery and project calls

We do not sell your personal information. We do not share it with advertisers. Sub-processors used by these vendors are governed by their own privacy programs.

How long we keep it

We retain personal information only as long as we need it for the purposes described above, plus any period required by law.

• Inquiry / brief data — 24 months from last contact, then deleted or anonymized
• Active client records — duration of engagement plus 7 years (US tax & business records)
• Marketing list — until you unsubscribe; suppression list kept indefinitely to honor opt-outs
• Server logs — 90 days rolling
• Backups — 30 days rolling, encrypted at rest

Your rights & choices

Depending on where you live, you may have the following rights regarding your personal information. We honor all of these regardless of jurisdiction, as a matter of policy.

• Access — request a copy of the personal information we hold about you
• Correction — ask us to fix inaccurate or incomplete data
• Deletion — request that we delete your information, subject to legal retention obligations
• Portability — receive your data in a machine-readable format
• Objection / restriction — limit how we process your information
• Opt-out of marketing — unsubscribe from any marketing email at any time
• Do Not Sell or Share (CCPA) — we do not sell or share personal information for cross-context behavioral advertising

To exercise any right, email [email protected]. We respond within 30 days and may need to verify your identity before fulfilling the request.

Security & breach posture

We use commercially reasonable technical and organizational measures to protect personal information, including:

• TLS 1.3 encryption in transit · AES-256 encryption at rest
• Role-based access control on internal systems
• Two-factor authentication required for all team accounts
• Quarterly access reviews and credential rotation
• Vendor security assessments before onboarding processors
• Encrypted backups stored in a geographically separate region

If we ever experience a breach affecting your personal information, we will notify affected individuals and applicable regulators within the timelines required by law (typically 72 hours for GDPR-covered events).

International transfers

Tridence is based in the United States and our primary infrastructure is hosted in the US. If you are visiting from outside the US, your information will be transferred to and processed in the US.

For transfers from the EEA, UK, or Switzerland, we rely on Standard Contractual Clauses (SCCs) and supplementary measures where required, and we work only with processors that meet equivalent standards.

Children's privacy

Our website and services are intended for business audiences and are not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at [email protected] and we will delete it promptly.

Changes to this policy

We may update this policy from time to time as our services, technology, or legal obligations evolve. When we make material changes, we will update the "Effective" date at the top of this page and, where appropriate, provide additional notice (such as a banner on the site or an email to people on our list).

Continuing to use the site after changes take effect means you accept the updated policy. If you do not agree with the changes, please stop using the site and contact us to exercise your rights.

How to contact us

Questions, requests, or complaints about this policy or our handling of your data? Reach us directly:

• Email — [email protected]
• General — [email protected]
• Mail — Tridence · Privacy Office · Jacksonville, FL (HQ)

If you are in the EEA or UK and believe we have not adequately addressed your concern, you have the right to lodge a complaint with your local data protection authority.