Privacy Policy

Last Updated: January 24, 2026

This Privacy Policy describes how Trelliswork Inc. ("Trelliswork," "we," "us," or "our") collects, uses, and discloses information when you visit our website at trelliswork.com (the "Site"), engage us for professional services, or otherwise interact with us.

By using our Site or engaging our services, you agree to the practices described in this policy.

1.0 Information We Collect

1.1 Information You Provide to Us

Contact information such as your name, email address, phone number, company name, and job title when you fill out a form, request a consultation, or engage us for services.
Business information you share with us in connection with a services engagement, including company data, marketing materials, brand assets, customer information, sales data, analytics credentials, and other materials necessary to perform our services.
Communications including emails, messages, and other correspondence between you and Trelliswork.

1.2 Information Collected Automatically

When you visit our Site, we may automatically collect:

Usage data such as your IP address, browser type and version, operating system, referring URLs, pages viewed, time spent on pages, and date/time of access.
Device information including device type, screen resolution, and unique device identifiers.
Cookies and similar technologies as described in Section 5.0 below.

1.3 Information From Third Parties

We may receive information about you from third-party sources such as analytics providers, advertising partners, and publicly available business databases, which we may combine with other information we hold about you.

2.0 How We Use Your Information

We use information we collect to:

Provide, deliver, and improve our professional services.
Communicate with you about engagements, proposals, deliverables, and account matters.
Respond to your inquiries and requests.
Send marketing communications about our services, events, and content (you can opt out at any time).
Operate, maintain, and improve our Site.
Analyze Site usage and trends.
Comply with legal obligations and enforce our agreements.

3.0 How We Handle Client Data

When you engage Trelliswork for professional services, you may provide us with access to your business systems, customer data, analytics platforms, CRM tools, advertising accounts, and other proprietary information ("Client Data").

We treat Client Data as confidential. Our handling of Client Data is governed by the terms of our services agreement with you. Specifically:

We access and use Client Data only as necessary to perform the services you have engaged us to provide.
We do not sell, rent, or share Client Data with third parties for their own purposes.
We do not use Client Data from one client to benefit another client.
We maintain commercially reasonable security measures to protect Client Data in our possession.
Upon termination of a services engagement, we will return or delete Client Data in accordance with our agreement with you.

If you require a formal Data Processing Agreement (DPA), please contact us at support@trelliswork.com.

4.0 Third-Party Tools and Services

In the course of providing our services and operating our Site, we may use third-party tools and platforms including but not limited to:

Analytics services (e.g., Google Analytics, HubSpot) to understand Site traffic and usage patterns.
Marketing and CRM platforms (e.g., HubSpot, email marketing tools) to manage communications and client relationships.
Advertising platforms (e.g., Google Ads, LinkedIn Ads) to deliver targeted advertisements.
AI and automation tools to support content creation, data analysis, and operational efficiency. When using AI tools in connection with client engagements, we follow safeguards including abstracting, removing, or anonymizing sensitive information before processing, and we do not use AI tools to process data a client has identified as sensitive without explicit discussion and agreement. For more detail on our AI tool practices, see our Security & Data Privacy Policy, available upon request.
Cloud storage and collaboration tools to manage project deliverables and communications.

These third-party providers have their own privacy policies governing their use of data. We select providers that maintain commercially reasonable privacy and security practices, but we are not responsible for the privacy practices of third parties.

When we access your third-party accounts (such as your CRM, analytics, or advertising platforms) to perform services, we do so under the authorization you grant us and in accordance with our services agreement.

5.0 Cookies and Tracking Technologies

Our Site uses cookies and similar technologies to enhance your experience.

Types of cookies we use:

Cookie Type	Purpose	Duration
Essential cookies	Required for Site functionality (e.g., security, load balancing)	Session
Analytics cookies	Help us understand how visitors interact with our Site	Persistent
Preference cookies	Remember your settings and choices	Persistent
Marketing cookies	Used to deliver relevant advertisements and measure campaign effectiveness	Persistent

Cookie consent: When you first visit our Site, we present a cookie consent tool that allows you to accept or manage your cookie preferences. You can update your preferences at any time through this tool.

Your choices: Most web browsers allow you to manage cookie preferences through browser settings. You can choose to block or delete cookies, though this may affect Site functionality.

Do Not Track: Our Site does not currently respond to Do Not Track browser signals. There is no uniform standard for how websites should respond to these signals, so we do not alter our data collection practices when we detect such a signal.

6.0 How We Share Information

We may share your information in the following circumstances:

Service providers: With vendors, contractors, and partners who assist us in operating our business and delivering services, subject to confidentiality obligations.
Subcontractors: With qualified professionals we engage to support client service delivery, subject to confidentiality agreements.
Legal requirements: When required by law, regulation, legal process, or governmental request.
Business transfers: In connection with a merger, acquisition, reorganization, or sale of assets, in which case your information may be transferred as part of that transaction.
With your consent: When you direct us to share information with a third party.

We do not sell your personal information.

7.0 Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. As a general guide:

Website analytics data (e.g., usage data collected via Google Analytics): retained for up to 26 months.
Marketing contact data (e.g., newsletter subscribers, form submissions): retained until you opt out, plus a reasonable wind-down period to process your request.
Client engagement data: retained in accordance with the terms of our services agreement, and in the absence of specific terms, for up to one (1) year following the conclusion of the engagement.
Business records: retained as required by applicable law and our internal record-keeping obligations.

When information is no longer needed, we delete or anonymize it in accordance with our data retention practices.

8.0 Data Security

We implement commercially reasonable technical and organizational measures to protect information in our possession against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and secure storage practices.

For additional detail on our security controls, see our Security & Data Privacy Policy, available upon request.

9.0 Data Breach Notification

In the event of a security incident involving unauthorized access to, or disclosure of, personal information or Client Data, we will:

Investigate the incident promptly and take steps to contain and remediate it.
Notify affected clients within 24 hours of discovery, consistent with our Security & Data Privacy Policy.
Notify affected individuals as required by applicable law (including GDPR and state breach notification statutes), generally within 72 hours of becoming aware of a breach involving personal data.
Provide information about the nature of the incident, the data affected, and steps we are taking in response.

If you require a formal incident response addendum as part of your services agreement, contact us at support@trelliswork.com.

10.0 Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information:

10.1 All Users

Opt out of marketing: You can unsubscribe from marketing emails by clicking the "unsubscribe" link in any marketing email or by contacting us.
Access and correction: You can request access to or correction of the personal information we hold about you.

10.2 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

Know what personal information we collect, use, and disclose about you.
Request deletion of your personal information.
Opt out of the sale or sharing of your personal information (we do not sell personal information).
Not be discriminated against for exercising your privacy rights.

To exercise these rights, contact us at support@trelliswork.com. We will verify your identity before processing your request.

10.3 European Economic Area, UK, and Swiss Residents (GDPR)

If you are located in the EEA, UK, or Switzerland, you have additional rights including:

Access, rectification, and erasure of your personal data.
Restriction of or objection to processing.
Data portability.
Withdrawal of consent at any time.
The right to lodge a complaint with a supervisory authority.

Our legal bases for processing your personal data include your consent, performance of a contract, our legitimate business interests, and compliance with legal obligations.

10.4 International Data Transfers

Trelliswork is based in the United States, and personal data we collect is processed and stored in the United States. If you are located in the European Economic Area, United Kingdom, or Switzerland, your personal data will be transferred to the United States. We rely on the EU-U.S. Data Privacy Framework (and the UK and Swiss extensions) and, where applicable, Standard Contractual Clauses approved by the European Commission, to provide adequate protection for these transfers.

To exercise these rights, contact us at support@trelliswork.com.

11.0 Additional Disclosures

11.1 Links to Other Websites

Our Site may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. We encourage you to review the privacy policies of any third-party sites you visit.

11.2 Email Communications and CAN-SPAM Compliance

We comply with the CAN-SPAM Act and applicable anti-spam laws. All marketing emails we send include a clear "unsubscribe" mechanism, our physical mailing address, and accurate sender information. We honor opt-out requests promptly, typically within five (5) business days. When we send emails on behalf of clients as part of our Services, we follow the same standards and work with clients to ensure compliance.

12.0 Changes and Contact

12.1 Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, notify you by email or through our Site.

12.2 Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact us at:

Trelliswork Inc.
‍Seattle, WA
Email: support@trelliswork.com

This Privacy Policy should be read alongside our Terms of Service and our Security & Data Privacy Policy (available upon request), which together describe how we operate and protect your information.

‍