Privacy Policy

TRIBIZ CRM · Operated by JJLG Vending LLC · Last Updated: May 2026

1. Introduction

TRIBIZ CRM (“we,” “our,” “us,” or “TRIBIZ”) is a customer relationship management platform for small businesses. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using TRIBIZ, you consent to this Privacy Policy.

2. Information We Collect

2.1 Account Information

When you create a TRIBIZ account, we collect:

• Full name, email address, password
• Company name, phone number, website
• Billing address and payment information (processed by payment processors; we do not store credit card numbers)
• Organization settings and preferences

2.2 Business Data You Upload

• Contacts (names, emails, phone numbers, job titles, company names)
• Companies/accounts (business name, industry, location)
• Deals (opportunity names, values, stages, dates)
• Messages, notes, and communications within the platform
• Files and attachments
• Activity logs and task records

2.3 Synced Third-Party Data

• Email (Gmail/Outlook): Email messages, sender/recipient addresses, subject lines, timestamps
• WhatsApp: Message text, phone numbers, message timestamps
• Instagram DM: Message text, handle names, message timestamps
• SMS (Twilio): Message text, phone numbers, timestamps

2.4 Automatically Collected Information

• IP address, browser type, operating system, pages visited
• Session duration, clicks, form submissions
• Device type and unique device identifiers
• Cookies and similar tracking technologies

2.5 Usage Analytics

Feature usage, login frequency, error logs, performance metrics.

3. How We Use Your Information

3.1 Service Delivery

• Creating and managing your account
• Storing and displaying your contacts, deals, and communications
• Syncing email, WhatsApp, Instagram, and SMS messages
• Processing payments
• Sending transactional emails

3.2 Service Improvement

• Analyzing usage patterns to improve features
• Identifying and fixing bugs
• A/B testing new functionality

3.3 Communication

• Responding to support requests
• Sending service updates and security notices

3.4 Legal & Safety

• Complying with law enforcement requests
• Preventing fraud, abuse, and security incidents
• Enforcing our Terms of Service

4. Data Retention

• Account data: Retained as long as your account is active. Upon account deletion, data is anonymized or deleted within 30 days.
• Synced email: Indexed for 90 days.
• WhatsApp/Instagram/SMS messages: Retained for the duration of your subscription; deleted within 30 days after account closure.
• Payment information: Retained per payment processor policy (typically 7 years).
• Backups: Deleted within 90 days after account deletion.
• Activity logs: Retained for 12 months for security auditing.

5. Data Sharing & Third-Party Services

5.1 We Share Data With:

• Payment processors (Stripe, PayPal) — billing only
• Email providers (Gmail, SendGrid) — to sync and send emails on your behalf
• Messaging platforms (Meta, Twilio) — to sync WhatsApp, Instagram, SMS
• Cloud infrastructure providers (Vercel, Supabase) — for hosting and storage
• Analytics providers (PostHog, Sentry) — anonymized usage data
• Law enforcement — when legally required

5.2 We Do NOT Share:

• Customer contacts or deal information with third parties for marketing or resale
• Personal data with data brokers
• Any data except as required by law or with your explicit consent

5.3 Third-Party Integrations

• Meta (WhatsApp/Instagram): https://www.meta.com/privacy/
• Google (Gmail): https://policies.google.com/privacy
• Twilio (SMS): https://www.twilio.com/en-us/legal/privacy

6. Data Security

We implement:

• SSL/TLS encryption in transit
• AES-256 encryption at rest for sensitive data
• Password hashing with bcrypt
• Role-based access control
• Regular security audits and vulnerability testing

We are not liable for unauthorized access caused by your negligence (weak passwords, shared credentials, phishing).

7. Your Rights

7.1 Access & Portability

Email privacy@jjlgvending.com with “Data Access Request”.

7.2 Correction

Update account information directly in Settings.

7.3 Deletion

Delete your account in Account Settings. Data purged within 30 days.

7.4 Opt-Out of Marketing

Unsubscribe link in any marketing email. Transactional emails cannot be disabled.

7.5 GDPR (EU Users)

Rights to data portability, erasure, and objection to processing. Contact privacy@jjlgvending.com.

7.6 CCPA (California Users)

Rights to know, delete, and opt-out of sale. TRIBIZ does not sell personal data.

8. Cookies & Tracking

We use cookies for:

• Session management (authentication)
• Preferences (language, layout)
• Analytics

You can disable cookies in your browser, though this may limit functionality.

9. Children's Privacy

TRIBIZ is not intended for children under 13. We do not knowingly collect data from children.

10. Contact Us

• Privacy inquiries: privacy@jjlgvending.com
• Data subject requests (GDPR/CCPA): privacy@jjlgvending.com · Response time: 30 days
• Security vulnerabilities: security@jjlgvending.com

11. Changes to This Policy

We may update this policy as needed. We'll notify you of material changes via email. Continued use means you accept the new policy.

This Privacy Policy is effective as of May 2026.