PRIVACY & DATA PROTECTION

Privacy Policy

Your privacy is fundamental to our mission. This policy explains how TruthScan collects, uses, and protects your personal information across our enterprise AI detection services.

Last updated: January 24, 2025

Information We Collect

TruthScan collects information to provide, maintain, and improve our AI detection services. We collect information in the following ways:


Information You Provide Directly


Account Information: Name, email address, organization name, job title, and contact details

Payment Information: Billing address and payment method details (processed securely by our payment processors)

Content for Analysis: Text, images, audio, video, and other content you submit for AI detection analysis

Communications: Messages you send to us, including support requests and feedback

Survey Responses: Information from surveys, research, and feedback forms


Information We Collect Automatically


Usage Data: How you interact with our services, features used, and time spent

Device Information: IP address, browser type, operating system, and device characteristics

Log Information: Server logs, error reports, and performance data

Analytics Data: Usage patterns, user engagement, and service performance metrics


Information from Third Parties


Integration Partners: Data from integrated platforms and services

Public Sources: Publicly available information for service improvement and research

Business Partners: Information from authorized business partners and resellers

How We Use Your Information

We use the information we collect for legitimate business purposes, including:


Service Provision and Operation


  • Providing AI detection and analysis services across text, images, audio, and video
  • Processing and analyzing content submitted through our platform
  • Generating detection reports and confidence scores
  • Maintaining and improving service reliability and performance
  • Providing customer support and technical assistance

    • Service Improvement and Development


  • Improving AI detection algorithms and model accuracy
  • Developing new features and detection capabilities
  • Conducting research and analysis to enhance our services
  • Training machine learning models (using aggregated, anonymized data)

    • Communication and Administration


  • Sending service-related notifications and updates
  • Processing billing and account management
  • Responding to inquiries and providing customer support
  • Sending important security and policy updates

    • Legal and Security Purposes


  • Protecting against fraud, abuse, and security threats
  • Complying with legal obligations and regulatory requirements
  • Enforcing our terms of service and other agreements
  • Protecting the rights and safety of our users and others

    • Information Sharing and Disclosure

    We do not sell your personal information. We may share your information in the following limited circumstances:


    Service Providers


    We work with trusted third-party service providers who assist us in operating our services. These providers have access to your information only to perform specific tasks on our behalf and are contractually obligated to protect your information.


    Legal Requirements


    We may disclose your information when required by law or in response to valid legal processes, such as subpoenas, court orders, or government requests.


    Business Transfers


    In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction, subject to equivalent privacy protections.


    Consent


    We may share your information with your explicit consent or at your direction.

    Data Retention

    We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this privacy policy:


    Account Information: Retained while your account is active and for a reasonable period thereafter

    Content Submitted for Analysis: Typically deleted after analysis completion, unless retention is required for service improvement

    Usage and Analytics Data: Retained in aggregated, anonymized form for service improvement

    Legal and Compliance Data: Retained as required by applicable laws and regulations


    You may request deletion of your personal information at any time, subject to legal and contractual obligations. Enterprise customers may have custom retention terms as specified in their service agreements.

    Data Security

    We implement comprehensive security measures to protect your information:


    Technical Safeguards


  • End-to-end encryption for data in transit and at rest
  • Multi-factor authentication and access controls
  • Regular security audits and penetration testing
  • Secure cloud infrastructure with enterprise-grade protections
  • Real-time monitoring and threat detection systems

    • Organizational Safeguards


  • Employee background checks and security training
  • Principle of least privilege access controls
  • Regular security awareness training and updates
  • Incident response and breach notification procedures

    • Compliance Standards


  • SOC 2 Type II compliance
  • GDPR and CCPA compliance frameworks
  • Industry-standard security certifications
  • Regular compliance audits and assessments

    • Your Rights and Choices

    You have several rights regarding your personal information:


    Access: Request access to the personal information we hold about you

    Correction: Request correction of inaccurate or incomplete information

    Deletion: Request deletion of your personal information (subject to legal obligations)

    Portability: Request a copy of your information in a portable format

    Objection: Object to certain types of data processing

    Restriction: Request restriction of processing under certain circumstances


    To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

    GDPR Compliance

    For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR):


    Legal Basis for Processing


    Contract Performance: Processing necessary to provide our services

    Legitimate Interests: Service improvement, security, and business operations

    Legal Compliance: Meeting legal and regulatory obligations

    Consent: Specific consent for certain processing activities


    Data Subject Rights


    EEA residents have comprehensive rights under GDPR, including access, rectification, erasure, portability, and the right to lodge complaints with supervisory authorities.

    California Privacy Rights (CCPA)

    California residents have additional rights under the California Consumer Privacy Act (CCPA):


    Right to Know: Request information about personal information collection and use

    Right to Delete: Request deletion of personal information

    Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)

    Right to Non-Discrimination: Not receive discriminatory treatment for exercising privacy rights


    To exercise these rights, please contact us using the methods described in the "Contact Us" section.

    Changes to This Privacy Policy

    We may update this privacy policy from time to time to reflect changes in our practices, services, or legal requirements. We will notify you of material changes through:


  • Email notification to registered users
  • Prominent notice on our website
  • In-app notifications for significant changes
  • Direct notification to enterprise customers as required by contract

    • Continued use of our services after changes become effective constitutes acceptance of the updated privacy policy.

    Contact Us

    If you have questions about this privacy policy or our privacy practices, please contact us using the information below.

    Enterprise Data Processing

    For enterprise customers, we offer additional data processing protections including:

    • Data Processing Agreements (DPAs) with enhanced security terms

    • Custom data retention and deletion schedules

    • Dedicated security controls and audit capabilities

    • Single Sign-On (SSO) and advanced authentication options

    Privacy Contact

    If you have questions about this privacy policy or our privacy practices, please contact us:

    Email: grant@truthscan.com

    Address:

    TruthScan Privacy Office
    1309 Coffeen Ave
    Sheridan, WY 82801

    We will respond to your privacy-related inquiries within 30 days. For urgent privacy matters, please include “URGENT PRIVACY REQUEST” in your subject line.

    Privacy Notice: Your privacy is fundamental to our mission. We are committed to protecting your personal information and maintaining transparency about our data practices.