1 - PRIVACY POLICY

1.1 - Triyit Ltd. ("Triyit", "we", "our", or "us") is committed to protecting your privacy and ensuring that your personal data is protected.

1.2 - We have provided this Privacy Policy to inform you ("you" or "your") how we gather and use, and the circumstances under which we may disclose, personal data we collect from our members ("Community Members") through www.triyit.co.uk (the "Website") and/or in in connection with our online product discovery platform service and competitions and contests we run (the "Service").  For these purposes “personal data” is any information relating to an identified or identifiable individual.

1.3 - The owner of the Website is Triyit Ltd.  We act as the data controller in regards to the personal data you provide through your use of the Website (a data controller is responsible for determining why your data is collected and how it is processed.) Our address is Suite 3/1, 84 Miller Street, Glasgow, Scotland, G1 1DT, and our company number is SC538503.

1.4 - We may update this Privacy Policy from time to time at our discretion and will notify you of any material changes by posting an announcement notice on the Website or via email to our Members. We encourage you to revisit this Privacy Policy which was last updated on 06/05/2025].

2 - RIGHTS OF THE DATA SUBJECT

2.1 - Under the UK General Data Protection Regulation (“UK GDPR”), you have the following rights in regards to your personal data, which we will always work to uphold:

2.1.1 - The right to be informed about our collection and use of your personal data. This Privacy Policy should tell you everything you need to know, but you can always contact us to find out more or to ask any questions using the details in Part 15.

2.1.2 - The right to access the personal data we hold about you. Part 11 will tell you how to do this.

2.1.3 - The right to have your personal data rectified if any of your personal data held by us is inaccurate or incomplete. Please contact us using the details in Part 15 to find out more.

2.1.4 - The right to be forgotten, i.e. the right to ask us to delete or otherwise dispose of any of your personal data that we have. Please contact us using the details in Part 15 to find out more.

2.1.5 - The right to restrict (i.e. prevent) the processing of your personal data.

2.1.6 - The right to object to our using of your personal data for a particular purpose or purposes.

2.1.7 - The right to data portability. This means that, if you have provided personal data to us directly, we are using it with your consent or for the performance of a contract, and that data is processed using automated means, you can ask us for a copy of that personal data to re-use with another service or business in many cases.

2.1.8 - Rights relating to automated decision-making and profiling.

2.2 - For more information about our use of your personal data or exercising your rights as outlined above, please contact us using the details provided in Part 15.

2.3 - Certain personal data is treated as a special category to which additional protections apply under data protection laws:

2.3.1 - Personal data relating to race or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership;

2.3.2 - Genetic data;

2.3.3 - Biometric data (where used for identification);

2.3.4 - Data concerning health, sex life or sexual orientation,

the above categories being “Special Category Personal Data”.  Where we process Special Category Personal Data, we shall only do so with your consent.

2.4 - Further information about your rights can also be obtained from the Information Commissioner’s Office (at www.ico.org.uk) or your local Citizens Advice Bureau.

2.5 - If you have any cause for complaint about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.

3 - PRIVACY POLICY IS LIMITED TO TRIYIT

This Privacy Policy does not apply to third party sites to which we may link or to the products or services of our business partners such as the brands that we work with who provide product samples or third parties who may host and/or deliver our data to brands and other like services. The fact that we link to a website or display an advertisement or other third party content is not an endorsement, authorisation or representation of our affiliation with any of those third parties, nor is it an endorsement of their privacy or information security policies or practices.  Any access to such third party sites will be subject to their own privacy policy in regards to personal data which they may store and use.

4 - COLLECTION AND USE OF NON-IDENTIFYING INFORMATION

4.1 - We may collect, use, transfer, and disclose information in a form that does not personally identify you or any person on whose behalf you have provided to us their personal data ("Non-Identifying Information") for any purpose. Non-Identifying Information can include certain personally identifiable information that has been de-identified; that is, information that has been rendered anonymous. We and/or our third party service providers obtain and may collect Non-Identifying Information about you from information that you provide us and/or from your use of the Service, either separately or together with your personal data. We may combine your personal data with Non-Identifying Information and aggregate it with information collected from other users or sources (including publicly-available sources) to attempt to provide you with a better experience, to improve the quality and value of our products and services, and to analyse and understand how our products and services are used. We may also use the combined information without aggregating it to serve you specifically.  We may license or sell Non-Identifying Information derived from your personal data to third parties but under no circumstances will any such Non-Identifying Information so licensed or sold include any data which may identify you.

4.2 - When you access our Service, we and our third-party service providers may use a variety of technologies, now and hereafter devised, that automatically record certain usage information. This information may include your Internet Protocol address (and other unique identifiers for the particular device you use to access the Internet), browser type, your web or application request, your interaction with our Service, the webpage or other feature you were using before you came to our Service, pages of our websites that you visit, information you search for via our Service, access times and dates, and other similar information. We use this information for a variety of purposes, including analysing and enhancing our products and services, and to help personalise our Service for you. We do not treat this information as personal data (except to the extent required by law), although if we combine it with the personal data you provide, we will treat the combined information as personal data.

5 - COLLECTION OF PERSONAL DATA

5.1 - As part of your use of our Website and as part of our Service to the brands we work with, we may ask you to submit feedback on certain products, by way of surveys, testimonials, ratings and reviews or other format. In the course of using our Website and participating in our Service, we may collect the following personal data from you:

5.1.1 - Your name;

5.1.2 - Address;

5.1.3 - Phone number;

5.1.4 - E-mail address;

5.1.5 - Age;

5.1.6 - Gender;

5.1.7 - Your personal interests;

5.1.8 - Information from third party social media platforms you choose to link to our Website;

5.1.9 - Information about how you use our Website and technology systems;

5.1.10 - Your responses to surveys, competitions and promotions; and

5.1.11 - Any other personal data that we may require to fulfil our obligations,

Some of the personal data above has to be provided to enable us to deliver our Service to you.  For other personal data, we may ask if you want to give us certain personal Information and let us use it for the purposes we request it for.  Where this is the case we will tell you and give you the choice to share the personal data with us.  We will also tell you whether declining to share that personal data will have any effect on your use of our Website or the Service offered through it.  Certain surveys undertaken on the Website may also ask for personal data relating to other members of your household.  By sharing this information with us you are deemed as confirming to us that you have the consent of the relevant person to whom such personal data relates to share this with us.  We will not share identifiable personal data you provide on any third party’s behalf but may process this into Non-Identifying Information for sharing with third parties.

5.2 - Our justification for collecting this personal data is that it is necessary for us to do so in order to fulfil our obligations to our Members under the contract between us contained in our Terms and Conditions. We may also collect personal data on the basis that we have a legitimate interest in doing so, where this does not override your own rights and interests.  Such personal data may be collected for the purposes of data analytics.

5.3 - If you decide to access our Service or sign up via a third party social networking platform ("SNP"), such as Meta, via our Service, we may also collect personal data when you interact with the applicable SNP’s service. If you log into an SNP via the Service, you are allowing Triyit to access the personal data in your SNP account, as well as other information associated with your SNP account, pursuant to the SNP's applicable terms and conditions. The information we receive from an SNP may depend on the privacy settings you have with the SNP, so please check the SNP's privacy policy.

5.4 - We may also collect personal data from third party services which we use in connection with the Service.  We collect personal data from third parties form the following sources:

5.4.1 - Google – if you log in to your Triyit account using Google OAuth, we may collect your name, email address and contact details associated with your Google account as well as the permissions you grant to us by logging in using Google OAuth.

5.4.2 - Meta – We utilise Meta Pixel to help us understand our advertising on the across the Meta network and to provide you with relevant, targeted adverts. The Meta Pixel enables us to collect information about your browsing behaviour on our website, which may be shared with Meta to allow us to show you content and adverts across Meta platforms that are more relevant to you.  You may adjust or disable the Meta Pixel through your browser settings or Meta’s advert preferences.

5.5 - For information on how long we keep your personal data, see clause 7 below.

6 - USE OF PERSONAL DATA

6.1 - We may use your personal data, either alone or in combination with other information, so that we can provide, enhance and personalise our Service and related content, products, offers, and marketing efforts. The following is a non-exhaustive list of ways that we may use your personal data:

6.1.1 - To register and/or identify you as a user of the Service and to help authenticate any account you create with us;

6.1.2 - To match you with products, offers, and trials that best fit your likes and needs;

6.1.3 - To send you products or samples as part of a Triyit campaign or to winners of a competition administered by us;

6.1.4 - To communicate with you regarding product campaigns, the Service, updates, offers, promotions or events and to deliver products to you for sampling (if you have provided your consent for us to use your information in this way);

6.1.5 - To help us develop, customise, deliver, support and improve our Service, products, samples, content, and advertising and to provide you with the best user experience possible;

6.1.6 - To administer promotions, contests, competitions, or other offerings;

6.1.7 - To protect the rights or property or security of Triyit or our users, and prevent fraud and other prohibited or illegal activities;

6.1.8 - To process your personal data into Non-Identifying Information;

6.1.9 - For data analysis to gain insight into consumer product trends for our own or for our third party customers’ benefit;

6.1.10 - For our internal purposes (such as auditing, data analysis, and research to improve our services, and communications); and

6.1.11 - As may be disclosed to you at the point of collection.

6.2 - Special Category Personal Data may be processed in connection with specific purposes not listed above.  Such uses may include (but are not necessarily limited to) recording any restrictions which may impact on products or services offered through the Website or Service, for example, due to your religious or other beliefs.

6.3 - We may provide certain Non-Identifying Information to our third party customers for the purposes of offering third party surveys to our registered users through the Website.  This will be on an opt-in basis for users to provide their consent to having their Non-Identifying Information shared for the purposes of the relevant survey.

6.4 - Except as described in this Privacy Policy we will not share your identifiable personal data with other companies or individuals outside of Triyit and its affiliates, unless we have received your consent. For example, we will ask for your consent to share your identifiable personal data with certain third parties including but not limited to third parties who undertake data aggregation on our behalf, our brand partners relating to your feedback on their goods and services, and other third parties.  

7 - STORAGE OF PERSONAL DATA

7.1 - We will not keep your personal data for any longer than is necessary in light of the reason(s) for which it was first collected. Your personal data will therefore be kept for the following periods (or, where there is no fixed period, the following factors will be used to determine how long it is kept):

Type of Data - Name of Data Subject

Retention Period or Criteria - At least 5 years from creation or for as long as you maintain an account with us and 5 years after

Type of Data - Email Address of Data Subject

Retention Period or Criteria - At least 5 years from creation or for as long as you maintain an account with us and 5 years after

Type of Data - Data Subject gender and date of birth

Retention Period or Criteria - At least 5 years from creation or for as long as you maintain an account with us and 5 years after

Type of Data - Data Subject address and telephone number

Retention Period or Criteria - At least 5 years from creation or for as long as you maintain an account with us and 5 years after

Type of Data - Any Special Category Personal Data which the Data Subject has provided

Retention Period or Criteria - At least 5 years from creation or for as long as you maintain an account with us and 5 years after

Type of Data - Technical activity tracking during use of our Website

Retention Period or Criteria - At least 5 years from creation

If you withdraw an account you create on our Website, after the retention period expires we will anonymise any personal data and retain the Non-Identifying Information for analytics purposes, following which we will delete your identifiable personal data.  Please note that the retention periods above apply only to personal data which contains identifiable information and does not apply to any Non-Identifying Information, which will be retained in accordance with our internal data retention policy.  We may also periodically review the personal data we retain and delete your identifiable personal data prior to the retention periods stated above expiring, if we no longer have a reason to continue retaining it.

7.2 - We will only store or transfer your personal data within the UK and the European Economic Area (the “EEA”). The EEA consists of all EU member states, plus Norway, Iceland, and Liechtenstein. This means that your personal data will be fully protected under the UK GDPR or to equivalent standards by law. By supplying your Personal data to Triyit, you are consenting to Triyit passing your information outside of the EEA. Wherever your personal information is transferred, stored or processed by us, we will take reasonable steps to safeguard the privacy of your personal information. These steps may include implementing standard contractual clauses where recognized by law, obtaining your consent, or other lawful means of transferring personal data.

7.3 - The security of your personal data is essential to us, and to protect your data, we take a number of important measures, including the following:

7.3.1 - Personal data may be transmitted over secure networks only, transmission over unsecured networks is not permitted in any circumstances;

7.3.2 - Personal data may not be transmitted over a wireless network if there is a wired alternative that is reasonably practicable;

7.3.3 - Personal data contained in the body of an email, whether sent or received, should be copied from the body of that email and stored securely. The email itself should be deleted. All temporary files associated therewith should also be deleted using permanent deletion of the email from trash;

7.3.4 - Special Category Data will be stored or transferred by encrypted means;

7.3.5 - Where personal data is to be transferred in hardcopy form it should be passed directly to the recipient; and

7.3.6 - All personal data to be transferred physically, whether in hardcopy form or on removable electronic media shall be transferred in a suitable container marked “confidential”.

8 - SHARING CAMPAIGN FEEDBACK & OTHER CONTENT

8.1 - The information collected during the feedback/survey process is used to prepare statistical reports and analytics for our clients (also known as our “Brand Partners”). The reports give insight into the performance of the product during a campaign run on a Brand Partner’s behalf. The reports will not contain your personal data, unless you have specifically given permission for this to be included via an opt-in at the time you join a campaign or leave feedback.  Under the UK GDPR we may share Non-Identifying Information with Brand Partners for these purposes.

8.2 - By creating an account for the Service, you acknowledge and agree that: (a) we are not under any obligation of confidentiality (express or implied) with respect to your campaign/product feedback; (b) we and our clients can use or disclose (or choose not to use or disclose) your feedback for any purpose, in any way, in any media worldwide; and (c) you are not entitled to any compensation or reimbursement of any kind from us or any of our clients under any circumstances.

8.3 - By posting content to our Website or any third party sites as part of a Triyit campaign, promotion or competition, you represent that you own or have the right to use all of the content and information you post. Although you will continue to own your content (unless stated otherwise in the terms of any third party site used), when you publish content as described, you agree that you are allowing us and our clients to access and use that content & information. For content that is covered by intellectual property rights (like photos and videos) you grant us a non-exclusive, sub-licensable, royalty-free, worldwide license to use this content in connection with current & future Triyit campaigns/marketing and our Brand Partners’ own marketing communications. For example, our client could create an ad using content that you have placed/posted as part of a Triyit campaign, promotion or competition. You are not entitled to any compensation or reimbursement of any kind from us or our Brand Partners for any use of such content under any circumstances.

8.4 - You, and not us, are entirely responsible for all content that you upload, post, email, transmit or otherwise make available via Triyit and/or any of our product campaigns.  We will handle any personal data provided in accordance with this Privacy Policy but you are responsible for disclosing the same.

8.5 - We do not have an obligation to review the content posted to our site, but you understand that we may refuse to post or remove any of your content at our sole discretion.

9 - OUR SERVICE PROVIDERS

9.1 - We may engage third parties to perform services on our behalf, such as hosting and storage services, software maintenance services, e-mail notifications, database management, analytics and other services. These third parties may have access to your personal data to perform certain tasks on our behalf but they are not authorised by us to otherwise use or disclose your personal data.  We only allow these organisations to handle your personal data if we are satisfied they take appropriate measures to protect your personal data. 

9.2 - In addition, if you voluntarily participate in a contest, competition, rewards program or other promotion through our Website or Service, we may share your personal data  with the participating sponsors or with third parties who assist us in using the content or other information you have posted or shared with us for the purposes of assessing eligibility for promotion or for determining contest winners, or for making prizes available to winning entrants.  By entering into these competitions, rewards programs and promotions you accept that we may share personal data with these third parties for these purposes.

9.3 - The service providers we are currently engaged with and to whom we transfer personal data are:

9.3.1 - Google Cloud Platform – Cloud storage platform for all profiles and member data.

9.3.2 - DPD (DPDGroupUK Limited) – are provided with community member’s names and addresses to facilitate package delivery. 

9.3.3 - EVRI (EVRI LIMITED) – are provided with community member’s names and addresses to facilitate package delivery. 

9.3.4 - Royal Mail – are provided with community member’s names and addresses to facilitate package delivery.

9.3.5 - Amazon Web Services (AWS) –we use AWS to securely store certain information received in connection with the Service, which may include your personal data.  This includes your responses to surveys and personal details used to undertake matchmaking for a Triyit campaign and to store feedback on products received as part of Triyit campaign.  This also includes survey responses and personal details provided in connection with a competition, context or giveaway.

9.4 - If you participate in a sweepstakes, contest, rewards program or other promotion through our Service, we may share your personal data with the participating sponsors or with third parties who assist us in using the content or other information you have posted or shared with us.

10 - OTHER GENERAL INFORMATION

10.1 - Public Posts on the Service

Any information that you disclose to publicly accessible areas of the Website or to the Service is at your own risk and may be seen or collected by other persons, including third parties that may not adhere to the standards set forth in this Privacy Policy. Do not submit information, comments, or other content that you want to keep strictly private. We are not responsible for events arising from the distribution of any information you choose to publicly post or share through our Website or Service.

10.2 - Changing or Deleting Your Information

To view and change personal data such as your name, address and contact details that you have directly provided to Triyit via the Service, you can contact Triyit by sending an email to help@triyit.co.uk.  Information may also be accessible via the "account profile" section of our Website. Please note we may retain server/backup copies of all such data for compliance with our legal obligations or for statistical analysis purposes where the erasure of the same is likely to render such activity impossible, and that we may decline to process change or deletion requests that we deem to be unreasonable, or require disproportionate technical effort, or jeopardise the privacy of others.

10.3 - Compliance with Laws, Legal Process and Authorities

We may disclose personal data or other information about you to government or law enforcement officials, in connection with court orders or  judicial process, to protect the property and rights of us or a third party, to protect the safety of the public or any person, or to prevent or stop activity we may consider to be, or to pose a risk of being, illegal, unethical or legally actionable.

10.4 - Business Transfers

We reserve the right to transfer or otherwise disclose your personal data in connection with a merger, acquisition, or other change in control, joint venture, reorganisation or sale of assets or in the event of bankruptcy or liquidation proceeding.

10.5 - Data Transfers

Triyit processes personal data via 3rd party service providers. Your personal data may be transferred to, and used by, entities located outside of your country or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction. Such export is a requirement of providing your information to Triyit, and you consent to such transfer and use in all respects.

10.6 - Our Policy Toward Children

We do not knowingly collect personally identifiable information from anyone under 18 and do not target our online services to anyone under 18. If we discover that someone under the age of 18 has provided personal data we will delete such information from our Website and server. We encourage parental controls to prevent children from submitting information or data on our Website.

11 - HOW CAN YOU ACCESS YOUR PERSONAL DATA?

11.1 - If you want to know what personal data we have about you, you can ask us for details of that personal data and for a copy of it (where any such personal data is held). This is known as a “subject access request”.

11.2 - All subject access requests should be made in writing and sent to the email or postal addresses shown in Part 15.

11.3 - There is not normally any charge for a subject access request. If your request is ‘manifestly unfounded or excessive’ (for example, if you make repetitive requests) a fee may be charged to cover our administrative costs in responding.

11.4 - We will respond to your subject access request within 28 days and, in any case, not more than one month of receiving it. Normally, we aim to provide a complete response, including a copy of your personal data within that time. In some cases, however, particularly if your request is more complex, more time may be required up to a maximum of three months from the date we receive your request. You will be kept fully informed of our progress.

12 - RIGHT TO RECTIFICATION

In accordance with the rights indicated in Part 2, you have the right to request that any of your personal data which we hold and which is or has become inaccurate, be changed to reflect your correct information. Most of this information can be managed yourself using the settings of your community member account, however if this is unavailable or the request relates to information which isn’t part of your profile, please write to us at the address in Part 1, or email us at the email address in Part 15 with the details of your request.

13 - SECURITY IS IMPORTANT TO US

We strive to protect your personal data and privacy. We employ security measures to protect your personal data from unauthorised access and disclosure. Our service providers use secure sockets layer ("SSL") technology. An SSL certificate is a digital certificate that authenticates the identity of a website and encrypts information sent to the server. Encryption is the process of scrambling data into an undecipherable format that can only be returned to a readable format with the proper decryption key. Please be advised that we cannot guarantee or warrant the security of any information you disclose or transmit to us online and are not responsible for the theft, destruction, unauthorised access by third parties or inadvertent disclosure of your personal data.

14 - USE OF COOKIES

14.1 - We and our third-party service providers may automatically collect personal data using various methods, including, without limitation, cookies. A cookie is a small data file transferred to your computer (or other device) when it is used to access our Service. Cookies may be used for many purposes, including to enable certain features of our Service, to better understand how you interact with our Service and to monitor aggregate usage by visitors and online traffic routing.  Some of the data collected through these technologies will be aggregated or statistical, which means that it will not identify you individually. You may be able to instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the online services you visit. If you do not accept cookies, however, you may not be able to use all portions of our online services or all functionality of our Service.  If you choose to withdraw your consent to the use of cookies, you may need to refresh the webpage for this to take effect.

14.2 - Non-Identifying Information may be provided to third parties for marketing, advertising, for analytics purposes by Non-Identifying Information with information available from publicly accessible data, or other uses. For example, we may share aggregated demographic data about our members without disclosing personal data except as described in this Privacy Policy.  If we combine Non-Identifying Information with third party data which enables an individual to be identified, the information will be treated as personal data and handled in accordance with this Privacy Policy. 

15 - OPT-OUT AND CONTACT INFORMATION

If you decide at any time that you no longer wish to receive communications from us, please follow our unsubscribe instructions on one of our email communications, update your marketing communication preferences on your account dashboard or email us at help@triyit.co.uk . While you are a member of Triyit you may not opt-out of important communications from us such as service related announcements or notifications about changes to our Terms and Conditions or Privacy Policy.

If you have any questions about this Privacy Policy, please feel free to contact us by sending an email to datateam@triyit.co.uk