Privacy Policy
What we collect, why we collect it, and the control you have over it.
Last updated: 17 July 2026
Trustiry helps people tell what is real online. We take the view that a trust product has to be trustworthy with your data first. This policy explains, in plain terms, what we collect and the choices you have.
1. Who we are
Trustiry (“we”, “us”) is operated by Bolrach Technologies. If you are in the EEA, UK, or Canada, you have specific rights described below. You can reach our privacy team at privacy@trustiry.com.
2. What we collect
| Data | Why |
|---|---|
| Your IP address | To detect an approximate country, apply abuse limits, and secure the service. Search and API telemetry uses a keyed pseudonymous value rather than the raw address. Audit-log address fields are scrubbed after 30 days. |
| Links you check | The checker processes the full URL in memory. Its stored check record contains only the registrable domain or origin, result, observed signals, and time. Raw public link checks are not published. |
| Cookies & preferences | Your region preference and consent choice. See the Cookie Policy. |
| Account data | If you sign in, we use auth.ng for identity. We receive your basic profile (such as your name and email) to run your account. |
| Reports you submit | If you report a scam, we keep the origin-level domain, your summary, evidence references, and any contact details you choose to add so reviewers can investigate it. A submission stays private until reviewed. |
| Billing and webhooks | Payment providers process checkout details. We keep provider references, plan state, invoice status, and delivery records. We do not store full card numbers. If you register an outbound webhook, we store its URL and delivery history. |
| Basic device & log data | Standard server logs (request time, page, coarse device type) to keep the service secure and working. |
We do not sell your personal data. We do not run third-party advertising trackers.
3. How the answer engine uses your query
When you ask a question, Trustiry may send the text to the language-model provider configured for the service. Do not include personal or confidential information in a query. If no provider is configured or a request fails, Trustiry uses a rule-based response. Provider terms and data settings apply to provider-processed requests.
4. Why we are allowed to use it (legal bases)
- Legitimate interests — running the checker, showing relevant results, keeping the service secure, and preventing abuse.
- Consent — for any non-essential cookies if they are introduced; you can withdraw it at any time.
- Contract — to provide an account you have signed up for.
- Legal obligation — where we must retain or disclose data by law.
5. Who we share it with
Only with providers needed to run Trustiry: auth.ng for identity, the configured answer-engine provider for submitted query text, payment processors when you start checkout, and infrastructure, email, storage, and monitoring providers. We may disclose information when required by law or when reasonably needed to protect people and the service.
6. How long we keep it
- Origin-level link-check records and search telemetry: up to 90 days.
- Generated-answer cache: up to 2 days.
- API usage and quota records: up to 400 days.
- Delivered webhook history: up to 90 days. Failed deliveries: up to 365 days.
- Provider webhook ledger and trust-decision records: up to 400 days.
- Reporter identity on closed reports: scrubbed after 180 days. Report facts may remain for abuse prevention and disputes.
- Account and active subscription records: while the account or contract is active, then as required for security, tax, accounting, disputes, and law.
7. Your rights
Your rights depend on where you live. They may include access, correction, deletion, portability, restriction, objection, and withdrawal of consent. Email privacy@trustiry.com with the account email or enough information to locate the record. We may verify your identity before acting. You can also complain to the privacy regulator that applies where you live.
8. International transfers
Trustiry is a global service, so your data may be processed in countries other than your own, including where our providers operate. Where required, we use appropriate safeguards (such as standard contractual clauses) for those transfers.
9. Security
We use encryption in transit, access controls, and abuse protection. No system is perfectly secure, but we work to protect your data and to respond quickly if something goes wrong. Security researchers: see our Security page.
10. Children
Trustiry is not directed at children under 13 (or the minimum age in your country), and we do not knowingly collect their data. If you believe a child has given us data, contact us and we will remove it.
11. Changes
We will update this policy as Trustiry evolves and revise the date at the top. Significant changes will be highlighted on the site.
12. Contact
Privacy questions or requests: privacy@trustiry.com. General help: our Contact page.