1. Introduction
This Privacy Policy explains how TrustDPV collects, uses, stores, and protects your personal data when you use trustdpv.com and related services.
2. Data We Collect
- Account data such as email address, username, display name, and bio
- Verification data from connected platforms such as GitHub and Google
- Public trust profile data including trust score, badges, evidence, and endorsements
- Technical data such as IP address, browser type, device information, and access logs
3. How We Use Your Data
- To create and maintain your account
- To verify linked platform accounts
- To calculate and display your trust score
- To improve security, prevent fraud, and maintain platform integrity
- To respond to support requests
4. OAuth & Third-Party Platforms
When you connect a third-party account, we use official OAuth flows where available. We do not request or store your third-party passwords. Access tokens are used for verification and are not retained beyond what is necessary to complete the verification process.
5. Public Profile Data
TrustDPV is designed around public trust profiles. Information such as your username, display name, bio, verified platform badges, trust score, evidence, and endorsements may be publicly visible. Some connected data, such as Google email addresses, is masked for privacy.
6. Legal Basis
Where applicable under UK GDPR, we process personal data on the basis of contract, legitimate interests, consent, and legal obligations.
7. Data Retention
We retain account and profile data for as long as your account remains active, unless a longer retention period is required by law or necessary for security and fraud prevention.
8. Your Rights
You may have the right to access, correct, delete, or restrict the use of your personal data, depending on your jurisdiction. You may also object to certain processing or request a copy of your data.
9. Security
We take reasonable technical and organisational measures to protect your data. However, no online system is 100% secure, and you use the Service at your own risk.
10. International Transfers
Your data may be processed in countries outside your own where our infrastructure or service providers operate. Where required, we take appropriate safeguards.
11. Contact
If you have any privacy questions, please contact us.