Privacy & Data Security Policy

At TrustBridge Escrow Inc. ("TrustBridge," "we," "us," or "our"), safeguarding your privacy and the confidentiality of your personal, financial, and transactional data is a core tenet of our business philosophy. We recognize the importance of providing transparent and comprehensive details regarding our data collection, processing, and storage practices. This Privacy & Data Security Policy ("Policy") describes how we collect, use, store, share, and protect your information when you access our platform, use our escrow facilitation services, or interact with us.

This Policy is designed to comply with global data protection standards, including the General Data Protection Regulation (GDPR) for residents of the European Economic Area (EEA), the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) for California residents, and the Personal Information Protection and Electronic Documents Act (PIPEDA) for Canadian residents. By using our Services, you consent to the practices detailed in this Policy. If you disagree with any terms herein, please cease using the Services immediately.

We review and update this Policy periodically to ensure alignment with technological advancements, statutory obligations, and changes in business operations. Any updates will be marked by a revised "Last Updated" date at the top of this page. Registered users will receive notification of material revisions, which take effect thirty (30) days from publication.

To deliver our Services securely and comply with regulatory requirements, we collect several categories of information. This includes Personal Information such as your legal name, email address, physical mailing address, telephone number, and identity verification details (government-issued identification documents, date of birth, tax identification numbers, or legal selfies). For corporate accounts, we collect business documentation, commercial registries, tax certifications, and information about ultimate beneficial owners.

We also collect Financial Information necessary to complete transactions. This includes banking details (routing and account numbers), credit card processing indicators, cryptocurrency wallet addresses (where applicable), transaction details, fund origins, and payout preferences. We minimize physical disk footprint using zero-disk architecture and encrypted transient memory structures.

Additionally, we gather Technical & Usage Information automatically when you interact with our platform. This includes your IP address, device specifications, browser type, geographic location, operational systems, clickstream patterns, duration of page visits, and referral links. This metadata helps us optimize page responses and detect potential fraudulent activities.

TrustBridge uses the collected information for specific, legally permissible purposes. Primary uses include executing and administering escrow transactions, validating milestone approvals, managing payout distributions, and providing customer support. We also process transactional metadata to evaluate system performance and implement system improvements.

We also process your information to fulfill statutory and regulatory duties, including verifying identity (KYC) to prevent money laundering (AML), conducting sanctions screening, and detecting potential financial misconduct. This processing is mandatory to operate as a licensed money services business and escrow entity.

We may also use data for internal security monitoring and communication. This involves sending transactional alerts, security updates, policy announcements, and responding to system inquiries. Marketing communications are sent only to users who have explicitly opted in via their email preferences.

TrustBridge does not sell, rent, lease, or trade your personal information to third-party marketing entities under any circumstances. We only share information with trusted third-party service providers who assist us in operating our platform, delivering services, and fulfilling legal duties. These providers include payment processors, KYC/AML validation systems, email dispatch tools, and database hosting providers.

These service providers are bound by strict contract agreements that compel them to safeguard your data, limit usage to specified task instructions, and prohibit further data disclosure. All partner integrations are audited annually to verify data security standards.

We may also disclose information when required by law or to protect legal interests. This includes sharing details with law enforcement, regulatory bodies, or tax agencies in response to valid subpoenas, court orders, or statutory disclosures, and sharing information to investigate fraud, enforce terms, or defend against legal claims.

We implement robust administrative, technical, and physical security measures to protect your personal and financial data. All electronic data in transit is protected using Transport Layer Security (TLS 1.3) protocols. Data stored at rest is secured using Advanced Encryption Standard (AES-256) encryption with automated key rotation routines.

Our system architecture isolates sensitive operational databases from external layers. We employ a Zero-Disk avatar generation structure to reduce file payload footprints and prevent external uploads. We host our databases in SOC 2 Type II certified cloud environments with continuous monitoring, firewalls, and active intrusion prevention systems.

However, no electronic transmission or digital storage method is completely secure. We cannot guarantee absolute security of your data. We maintain a detailed Incident Response Plan to address potential breaches, notify affected users, and inform regulatory agencies in compliance with applicable breach notification statutes.

Depending on your jurisdiction, you possess specific statutory rights regarding your personal data. We provide tools to access, correct, and manage your data. Your privacy rights include:

• Right of Access: You can request detailed reports of the categories and specific pieces of personal information we maintain.
• Right to Rectification: You can request corrections to incomplete or inaccurate personal data.
• Right to Erasure (Right to Be Forgotten): You can request deletion of personal information, subject to regulatory retention mandates.
• Right to Restrict Processing: You can request that we limit the processing of your data under specific conditions.
• Right to Data Portability: You can request your data in a structured, machine-readable format for transfer to other platforms.
• Right to Object: You can object to data processing based on legitimate business interests or direct marketing efforts.

To exercise any of these rights, please submit a request to privacy@trustbridge.com. We will verify your identity before processing requests, responding within thirty (30) days as required by law.

TrustBridge uses cookies, web beacons, and similar tracking technologies to enhance user experiences, analyze traffic patterns, and enforce platform security. Essential Cookies are required to maintain active sessions, verify login states, and prevent security vulnerabilities. These cookies are active by default and cannot be disabled without affecting platform access.

We also utilize Preference & Analytics Cookies to remember settings, evaluate site traffic, and optimize feature response speeds. These cookies help us understand how users navigate our pages, showing us where we can improve interface design and responsiveness.

You can manage cookie preferences through your web browser settings. Disabling non-essential cookies will not limit access to primary escrow services, though some personalized interface features may become unavailable.

Our platform may contain links to external websites, payment gateways, or integration partners. We do not own, control, or operate these third-party platforms. This Policy applies solely to data collected directly by TrustBridge. We are not responsible for the privacy practices or content of external sites.

We recommend reviewing the privacy statements of any external site you visit. Linking to external partners does not constitute an endorsement of their data hygiene, security policies, or operational standards.

TrustBridge is designed exclusively for individuals who meet legal majority requirements. Our platform is restricted to users aged eighteen (18) and older. We do not knowingly collect, request, or maintain personal information from individuals under eighteen (18).

If we learn that personal information has been collected from a minor, we will deactivate the account and delete the associated data immediately. Please contact us if you believe we possess information about a minor.

TrustBridge operates globally, meaning your information may be transferred to and stored in jurisdictions outside your home country. These locations may have different data protection regulations than your jurisdiction. We take steps to ensure transferred data receives an equivalent level of protection.

For data transfers originating in the European Economic Area (EEA), the United Kingdom, or Switzerland, we utilize standard contractual clauses approved by the European Commission, ensuring recipients safeguard personal data in line with European protection standards.

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, resolve disputes, enforce agreements, and comply with regulatory mandates. Active account data is preserved for the lifetime of your account relationship.

Under bank secrecy, anti-money laundering (AML), and financial service licensing regulations, we are required to retain identity verification documents, financial transactions, and escrow logs for a minimum of five (5) years following account closure. Data is deleted or anonymized once retention periods expire.

If you have questions about this Policy, wish to file a complaint, or want to exercise your data rights, please contact our Data Protection Officer:

Email: privacy@trustbridge.com
Mailing Address: TrustBridge Escrow Inc., Attn: Data Protection Officer, 123 Financial District, New York, NY 10004