Privacy Policy
Last updated: June 2026
This Privacy Policy explains how Trufe ("we", "us") collects, uses, and protects information in connection with the Fortifyze platform ("Fortifyze", the "Service"). Fortifyze is a proprietary product of Trufe. This page is a summary and will be superseded by the definitive agreement executed with your organisation.
Information we process
As a data-protection platform, Fortifyze processes information on behalf of your organisation (the data controller), including account and authentication details, configuration, and metadata about personal data discovered within your connected systems. Wherever possible, Fortifyze classifies data with masking at the source so raw personal data need not be centralised.
How we use information
- To provide, secure and operate the Service for your organisation;
- To authenticate users and enforce role-based access;
- To generate compliance evidence, audit trails and reporting you request;
- To support, maintain and improve the Service.
Security
We protect information with encryption in transit and at rest, least-privilege and read-only access to connected sources, tenant isolation, and audit logging of privileged actions. See our Security page for more detail.
Data retention
We retain information for as long as needed to provide the Service and to meet legal obligations, after which it is deleted or anonymised in line with your organisation's configuration and our agreement.
Your rights
Where you are a data principal whose personal data is processed through Fortifyze by an organisation, please direct rights requests to that organisation, which acts as the controller. For requests relating to Trufe directly, contact us at the address below.
Contact
Questions about this policy can be sent to hello@fortifyze.com.
Fortifyze is a proprietary product of Trufe. For questions about this document, contact hello@fortifyze.com.