Quick Summary

Thrivepix takes security and privacy seriously. Learn how we protect your data, maintain confidentiality, provide white-label delivery, and comply with privacy regulations.

What You'll Learn

• How we protect your data
• NDA and confidentiality practices
• White-label delivery for agencies
• Data encryption standards
• GDPR compliance
• Your privacy rights

How We Protect Your Data

Data Security Measures

Infrastructure Security:

• Secure cloud hosting
• Regular security audits
• Firewall protection
• DDoS protection
• Intrusion detection
• 24/7 monitoring

Application Security:

• Secure coding practices
• Regular security updates
• Vulnerability scanning
• Penetration testing
• Security patches

Access Control:

• Role-based permissions
• Secure authentication
• Session management
• IP restrictions (optional)
• Activity logging

Data Encryption

In Transit:

• SSL/TLS encryption
• HTTPS for all connections
• Secure API communications
• Encrypted file transfers

At Rest:

• Database encryption
• File storage encryption
• Backup encryption
• Secure key management

Password Security

• Passwords hashed and salted
• Never stored in plain text
• Strong password requirements
• Secure password reset process

NDA and Confidentiality

Our Confidentiality Commitment

What We Protect:

• Your business information
• Project details
• Client information
• Proprietary data
• Trade secrets
• Sensitive content

How We Protect:

• Strict confidentiality policies
• Team member NDAs
• Limited access to data
• Secure communication
• No data sharing

Non-Disclosure Agreement

Standard NDA:

• All team members sign NDAs
• Covers all client information
• Legally binding
• Protects your confidentiality

Custom NDA:

• Can sign your NDA
• Contact support to arrange
• Review and execution process
• Mutual NDAs available

What We Don't Share

• Your project details
• Client information
• Business strategies
• Proprietary information
• Access credentials
• Any confidential data

Portfolio and Case Studies

Our Policy:

• We never showcase work without permission
• Always ask before using in portfolio
• Can anonymize if preferred
• You control what we share

If You Want Privacy:

• Tell us not to showcase
• We respect your wishes
• No questions asked
• Complete confidentiality

White-Label Delivery

What is White-Label

White-label means we work invisibly under your brand. Your clients never know we exist.

How White-Label Works

For Agencies:

• We work as your team
• No Thrivepix branding
• You present work as yours
• Your clients see only you
• We stay completely invisible

Communication:

• All communication through you
• We don't contact your clients
• You relay feedback
• You manage client relationship

Deliverables:

• No Thrivepix watermarks
• No Thrivepix branding
• Clean, unbranded work
• You add your branding

White-Label Best Practices

For Agencies Using White-Label:

• Don't mention Thrivepix to clients
• Present work as your own
• Handle all client communication
• Add your branding to deliverables
• Maintain your client relationship

We Will Never:

• Contact your clients
• Reveal our involvement
• Add our branding
• Claim credit for work
• Interfere with your relationship

Data Privacy

What Data We Collect

Account Information:

• Name and email
• Company name
• Phone number (optional)
• Profile photo (optional)

Usage Data:

• Login activity
• Request history
• Feature usage
• Performance data

Project Data:

• Request descriptions
• Files you upload
• Comments and messages
• Project information

How We Use Your Data

To Provide Service:

• Process your requests
• Communicate with you
• Deliver completed work
• Manage your account

To Improve Service:

• Analyze usage patterns
• Improve features
• Fix bugs
• Enhance performance

We Never:

• Sell your data
• Share with third parties (except service providers)
• Use for advertising
• Mine for other purposes

Data Retention

Active Accounts:

• Data retained while account active
• Available for your access
• Backed up regularly

Cancelled Accounts:

• Data retained for 90 days
• Can reactivate within 90 days
• After 90 days, data deleted
• Backups purged

Legal Requirements:

• Some data retained for legal compliance
• Billing records (7 years)
• Tax documents
• As required by law

GDPR Compliance

Your Rights Under GDPR

Right to Access:

• Request copy of your data
• See what we have
• Understand how it's used

Right to Rectification:

• Correct inaccurate data
• Update information
• Keep data current

Right to Erasure:

• Request data deletion
• "Right to be forgotten"
• Subject to legal requirements

Right to Portability:

• Export your data
• Receive in common format
• Transfer to another service

Right to Object:

• Object to data processing
• Opt out of marketing
• Limit data use

Exercising Your Rights

To Request:

1. Email support@thrivepix.com
2. Specify your request
3. Verify your identity
4. We respond within 30 days

Data Protection Officer

• Contact: privacy@thrivepix.com
• Handles privacy inquiries
• Ensures GDPR compliance
• Responds to data requests

Third-Party Services

Service Providers We Use

Infrastructure:

• Cloud hosting providers
• CDN services
• Backup services

Payment Processing:

• Stripe (payment processing)
• PCI DSS compliant
• Secure payment handling

Communication:

• Email service providers
• Notification services

Analytics:

• Usage analytics (anonymized)
• Performance monitoring

Third-Party Security

• All vendors vetted for security
• Data processing agreements
• GDPR-compliant vendors
• Regular security reviews

Security Incidents

Incident Response

If Security Breach Occurs:

1. Immediate containment
2. Investigation and assessment
3. Affected users notified
4. Remediation steps taken
5. Authorities notified if required

Reporting Security Issues

If You Find a Vulnerability:

• Email: security@thrivepix.com
• Describe the issue
• Provide steps to reproduce
• We investigate promptly
• Responsible disclosure appreciated

Your Responsibilities

Account Security

You Should:

• Use strong passwords
• Keep credentials secure
• Don't share passwords
• Log out on shared devices
• Report suspicious activity

Data You Share

Be Careful With:

• Sensitive information in requests
• Personal data of others
• Confidential business info
• Access credentials

Best Practices:

• Only share what's necessary
• Use secure credential sharing
• Don't include unnecessary sensitive data
• Remove data when no longer needed

Compliance and Certifications

Standards We Follow

• GDPR (General Data Protection Regulation)
• CCPA (California Consumer Privacy Act)
• SOC 2 Type II (in progress)
• Industry best practices

Regular Audits

• Security audits
• Compliance reviews
• Penetration testing
• Vulnerability assessments

Common Questions

Q: Is my data safe with Thrivepix?
A: Yes, we use industry-standard security measures including encryption, secure hosting, and regular audits.

Q: Can I sign an NDA?
A: Yes, all team members sign NDAs. We can also sign your custom NDA.

Q: Do you share my work in your portfolio?
A: Only with your explicit permission. We never showcase work without asking.

Q: What happens to my data if I cancel?
A: Data retained for 90 days, then permanently deleted.

Q: Can I export my data?
A: Yes, contact support@thrivepix.com to request data export.

Q: Are you GDPR compliant?
A: Yes, we comply with GDPR and respect all data protection rights.

Q: Who has access to my data?
A: Only team members working on your requests, with strict confidentiality.

Q: How do you handle white-label work?
A: We work invisibly under your brand. Your clients never know we exist.

Need More Help?

Contact support@thrivepix.com or privacy@thrivepix.com for privacy-specific inquiries