Privacy Policy

Last updated: 07/14/2026

At Triangleye LLC, we respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we handle your personal data when you use our ChumMate service and tell you about your privacy rights and how the law protects you.

1. Data We Collect

We collect and process the following categories of personal data:

  • Account Information: Name, email address, and profile information when you create an account
  • Conversation Data: All text-based conversations between you and ChumMate, which are stored to enable AI functionality
  • Media Prompts: Images, voice recordings, and other media provided as prompts in conversations, which are stored to enhance AI responses
  • Integration Tokens: Securely encrypted access tokens for connected services (Slack, Google Workspace, etc.)
  • Technical Data: IP address, browser type, operating system, and other technical information for service functionality

2. Data We Do NOT Collect or Store

We are committed to minimizing data collection and storage. The following types of data are NOT collected or stored:

  • Attachments: We do not store any file attachments sent through messaging platforms
  • External Resources: Documents, spreadsheets, or other files accessed from integrated cloud services (e.g., Google Docs, Sheets) are not stored on our servers
  • Media Outside Conversations: Any media not directly used as a prompt in a conversation is not stored
  • Raw Passwords: User passwords are securely hashed and never stored in plain text
  • Unrelated Personal Data: We do not collect sensitive personal information beyond what is necessary for service functionality

3. Purpose of Data Processing

We process your personal data for the following purposes:

  • To provide and maintain our ChumMate service
  • To enable AI functionality by storing conversation history necessary for contextual responses
  • To authenticate your identity and secure your account
  • To connect with your authorized third-party services (Slack, Google Workspace, etc.)
  • To improve our AI models through analysis of conversation patterns (without identifying personal information)
  • To comply with legal obligations and protect against fraudulent activity

4. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of all sensitive data both in transit (using TLS) and at rest
  • Secure storage of integration tokens using industry-standard encryption
  • Regular security assessments and penetration testing
  • Access controls limiting data access to authorized personnel only
  • Regular security updates and patches to our systems
  • Secure authentication mechanisms including password hashing

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Specifically:

  • Conversation data is retained as long as your account is active
  • Account information is retained until you request deletion
  • Integration tokens are securely stored until you disconnect the integration
  • Media prompts are retained as long as they are needed for AI functionality

6. Your Rights Under GDPR

If you are a resident of the European Economic Area (EEA), you have specific rights under the General Data Protection Regulation (GDPR). These include the right to:

  • Access: Request access to your personal data and information about how it is processed
  • Rectification: Request correction of inaccurate or incomplete personal data
  • Erasure: Request deletion of your personal data (right to be forgotten)
  • Restriction: Request restriction of processing your personal data
  • Data Portability: Request transfer of your personal data to another organization
  • Object: Object to processing of your personal data in certain circumstances
  • Withdraw Consent: Withdraw your consent to data processing at any time

7. Right to Complete Data Deletion

You have the absolute right to request complete deletion of all your personal data from our servers at any time. When you request account deletion:

  • All your conversation history will be permanently deleted
  • Your account information will be removed from our databases
  • All media prompts you provided will be deleted
  • All integration tokens associated with your account will be revoked and deleted
  • Your data will be removed from all backups within 30 days

To request complete data deletion, please contact us at chum@triangleye.com. We will process your request within 30 days as required by GDPR.

8. Data Sharing and Third Parties

We do not sell, rent, or share your personal data with third parties for marketing purposes. We may share your data only in the following limited circumstances:

  • With service providers who assist us in operating our service (e.g., hosting providers, customer support)
  • When required by law or to protect our legal rights
  • With your explicit consent for specific purposes
  • With integrated services you have authorized (e.g., Google Workspace, Slack) for functionality purposes

9. International Data Transfers

Your personal data may be transferred to and maintained on computers located outside your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your personal data will take place to an organization or a country unless there are adequate controls in place to protect your data.

10. Children's Privacy

Our service is not intended for use by children under the age of 16. We do not knowingly collect personally identifiable information from children under 16. If we become aware that we have collected personal data from a child under age 16 without verification of parental consent, we will take steps to remove that information from our servers.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us: