TrustFrame

Privacy Policy

Last updated: January 1, 2026

1. Information We Collect

TrustFrame collects information necessary to provide SOC 2 readiness assessments, including:

  • Account information (email address, company name)
  • Configuration metadata from connected services (GitHub, GitLab, AWS, Azure)
  • Uploaded policy documents for analysis
  • Usage data and analytics

2. How We Use Your Information

We use collected information to:

  • Evaluate your SOC 2 control compliance
  • Generate readiness reports and action plans
  • Improve our assessment accuracy and services
  • Communicate with you about your account and assessments

3. Data Security

We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security audits. We never store your source code, customer data, or sensitive credentials.

4. Data Retention

Assessment data is retained for the duration of your subscription. You may request complete data deletion at any time by contacting support@trustframe.tech.

5. Contact Us

For privacy-related questions, contact us at privacy@trustframe.tech