Privacy & Confidentiality Policy

Web & Interactive Services
Effective Date: July 1, 2007  |  Last Revised: May 6, 2026

1.  Introduction

Triptych Interactive ("Triptych," "we," "us," or "our") is a privately held web and interactive services firm. We design, develop, and deliver digital experiences on behalf of our clients. In the course of that work we receive sensitive business and personal information from those clients, and we take the responsibility of protecting that information very seriously.

This Privacy & Confidentiality Policy describes how Triptych collects, uses, stores, protects, and — critically — does not disclose client information. It applies to all employees, contractors, vendors, and agents acting on behalf of Triptych, and to all client relationships regardless of engagement size or contract type.

2.  Scope

This policy applies to all categories of client information received by Triptych, including but not limited to:

• Business contact information (names, titles, email addresses, phone numbers, mailing addresses)
• Financial information (budgets, billing details, payment methods, financial records, account numbers)
• Proprietary business data, strategies, trade secrets, and intellectual property
• Login credentials, API keys, and system access information
• Personal information of a client's customers, users, or employees
• Marketing data, audience data, analytics, and campaign performance information
• Any information designated as confidential, proprietary, or sensitive by the client

This policy applies across all mediums and formats — written, electronic, verbal, visual, or otherwise — and covers information received before, during, and after an active client engagement.

3.  Core Commitment: We Do Not Share Client Information

Triptych Interactive does not sell, rent, trade, disclose, publish, or otherwise share any client information with third parties. This is an absolute commitment, not a qualified one. Specifically:

3.1  Contact & Identity Information

We do not share client names, titles, email addresses, phone numbers, mailing addresses, or any other contact or identity information with any outside party. Client contacts are used solely for the purpose of executing the agreed scope of work and communicating about that work.

3.2  Financial & Billing Information

We do not share, disclose, or reference client financial information, billing arrangements, payment methods, contract values, or budget details with any third party. All financial information provided by clients is handled with the highest degree of discretion and stored in secure, access-controlled systems.

3.3  Proprietary Business Information

Any business strategies, competitive intelligence, product roadmaps, unreleased campaigns, internal data, or trade secrets shared with Triptych in the course of an engagement are held in strict confidence. We will not disclose this information to competitors, partners, vendors, or any other party.

3.4  Client Relationship Confidentiality

Triptych treats the existence of a client relationship as confidential unless the client has expressly granted permission to reference or disclose it. We will not use a client's name, logo, or relationship with Triptych in any marketing, public relations, case study, or portfolio material without explicit written consent.

3.5  No Requirement for Client Disclosure

As a private company, Triptych is not subject to public disclosure requirements that would compel us to reveal client identities, project details, or any information about client engagements. We do not make such disclosures voluntarily, and we actively resist compelled disclosure through all lawful means available to us.

4.  Triptych's Own Company Information

While Triptych strictly protects client information, we do routinely provide information about Triptych Interactive itself — not client information — for legitimate business purposes. Such purposes may include:

• Loan applications and credit evaluations
• Government contract applications and agency approvals
• Vendor qualification and procurement processes
• Business licensing and regulatory filings
• Professional certifications and insurance documentation

In these contexts, Triptych may disclose its own financial statements, company contact information, ownership structure, service descriptions, and similar organizational information. Under no circumstances does this disclosure extend to any client information — client data is never included in, appended to, or inferred from Triptych's own company disclosures.

5.  Data Security & Access Controls

Triptych employs administrative, technical, and physical safeguards designed to protect client information from unauthorized access, disclosure, alteration, or destruction. Our practices include:

• Access controls that limit client information to personnel with a legitimate need-to-know
• Secure, encrypted storage for sensitive digital files and credentials
• Confidentiality obligations built into contracts with all employees, contractors, and vendors
• Regular review of access permissions and data handling practices
• Prompt notification to affected clients in the event of a confirmed data security incident

6.  Employee & Contractor Obligations

All Triptych employees and contractors are required, as a condition of their engagement, to read and comply with this policy. They are further required to execute confidentiality agreements that reflect the commitments set forth herein. Violations of this policy — including unauthorized disclosure of client information in any form — are treated as serious disciplinary matters and may result in termination of employment or contract, and civil or legal action as appropriate.

Confidentiality obligations survive the end of any employment or contractor relationship. Former employees and contractors remain bound by these commitments with respect to client information they accessed during their tenure.

7.  Third-Party Vendors & Subcontractors

On occasion, Triptych may engage specialized subcontractors or technology vendors to assist in delivering client work. In such cases, Triptych:

• Discloses only the minimum client information necessary for the vendor to perform their specific function
• Requires all vendors and subcontractors to execute confidentiality agreements consistent with the protections in this policy
• Retains responsibility for ensuring vendor compliance with these obligations
• Does not permit vendors to retain, use, or disclose client information beyond the scope of the specific engagement

8.  Legal Compliance & Compelled Disclosure

Triptych complies with applicable federal, state, and local laws governing privacy and data protection. In the rare and extraordinary circumstance that we receive a valid, legally binding order compelling disclosure of client information, Triptych will:

• Promptly notify the affected client, to the extent legally permissible to do so
• Object to or seek to limit the scope of the disclosure through all lawful means
• Disclose only the minimum information required to satisfy the legal obligation
• Document the disclosure and inform the client as soon as legally permitted

We will not comply with requests that are not legally binding (e.g., informal requests from third parties, non-governmental organizations, or foreign authorities without proper jurisdiction) and will direct such requests to legal counsel.

9.  Data Retention & Secure Disposal

Triptych retains client information only as long as necessary to fulfill the purposes for which it was collected, to comply with legal retention requirements, or as specified in the applicable client agreement. Upon expiration of the retention period, client information is securely deleted or destroyed in a manner that prevents reconstruction or recovery.

10.  Policy Updates

Triptych may update this policy from time to time to reflect changes in our practices, legal requirements, or business operations. Material changes will be communicated to active clients. The most current version of this policy is maintained in our company records and is available upon request.

11.  Contact Information

Questions, concerns, or requests related to this Privacy & Confidentiality Policy should be directed to:

Triptych Interactive
Attn: Privacy Officer
Email: privacy@triptych.co
Website: www.triptych.co/privacy