Privacy Policy

Last updated: June 20, 2026

1. Introduction

Trendcas Company ("we," "our," or "us") operates SQLSSH (the "Application"). This Privacy Policy explains how we collect, store, process, and share your personal data when you use our Application. We are committed to protecting your privacy in compliance with the General Data Protection Regulation (GDPR), the Indonesian Personal Data Protection Law (UU PDP), and other applicable data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

Trendcas Company
Email: admin@trendcas.com

3. What Data We Collect

We collect the following categories of personal data:

  • Account Data: When you create an account, we collect your email address, username, and encrypted password.
  • Usage Data: Information about how you interact with the Application, including feature usage, crash reports, and performance metrics.
  • Device Data: Operating system version, device model, and unique device identifiers for license validation and analytics.
  • Communication Data: If you contact our support team, we collect your name, email address, and the contents of your message.

Important Notice on Database & SSH Content: SQLSSH operates strictly as a local-first client tool (a "window" to your infrastructure). We do not access, collect, log, or store any data contained within your connected databases, SQL query texts, query results, SSH terminal inputs/outputs, logs, or private keys. Trendcas Company is neither a Data Controller nor a Data Processor for the business data you manage through the Application; you retain sole compliance responsibility for such data under applicable laws.

4. How We Collect Your Data

We collect data through:

  • Direct interactions when you register, purchase a license, or contact support.
  • Automated technologies such as telemetry and crash-reporting modules built into the Application.
  • Cookies and similar tracking technologies on our website (see Section 8).

5. Legal Basis for Processing (GDPR & UU PDP)

We process your personal data on the following legal bases:

  • Contractual Necessity: To provide the Application and fulfill our license agreement with you.
  • Legitimate Interests: To improve the Application, ensure security, and prevent abuse. We balance these interests against your rights and freedoms.
  • Consent: For optional analytics and marketing communications, where you have given explicit consent.
  • Legal Obligation: To comply with applicable laws and regulations.

6. How We Use Your Data

We use your data for the following purposes:

  • To provide, maintain, and improve the Application.
  • To authenticate your account and manage your license.
  • To send critical service updates and security notices.
  • To respond to your support requests and inquiries.
  • To analyze usage patterns and fix crashes.
  • To comply with legal obligations.

7. Data Sharing & Third Parties

We do not sell your personal data. We may share data with trusted third-party service providers who assist us in operating the Application, such as:

  • Cloud hosting providers (e.g., AWS, DigitalOcean) — for infrastructure and data storage.
  • Crash reporting services — to diagnose and fix technical issues.
  • Payment processors — for license purchases (we do not store payment card details).

All third-party providers are contractually bound to process data only on our instructions and in compliance with the GDPR and UU PDP.

8. Cookies & Tracking

Our website uses essential cookies for authentication and security. We also use optional analytics cookies with your prior consent. You can manage your cookie preferences at any time through your browser settings. The Application itself does not use cookies.

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA) or Indonesia. When such transfers occur, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission or cross-border transfer agreements under the UU PDP.

10. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes described in this policy:

  • Account data: retained for the duration of your account plus 12 months after deletion, unless legal obligations require longer retention.
  • Usage data: anonymized or deleted after 24 months.
  • Communication data: retained for 36 months after the last interaction.

11. Your Rights Under GDPR & UU PDP

As a data subject, you have the following rights regarding your personal data:

  • Right of Access & Information: Request a copy of the personal data we hold about you and clear details of its processing.
  • Right to Rectification: Request correction of inaccurate, outdated, or incomplete data.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your data, subject to legal retention obligations.
  • Right to Restrict Processing: Request limitation of how we process your data.
  • Right to Data Portability: Request your data in a structured, machine-readable format.
  • Right to Object & Withdraw Consent: Object to processing based on legitimate interests, and withdraw consent at any time.

To exercise any of these rights, contact us at admin@trendcas.com. We will respond within 30 days.

12. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption at rest and in transit, access controls, and regular security audits. All connection credentials, including database passwords, SSH private keys, and passphrases stored locally by the Application, are encrypted using industry-standard secure storage mechanisms (such as Android Keystore and iOS Keychain).

13. Children's Privacy

The Application is not intended for individuals under the age of 16. We do not knowingly collect data from children. If we become aware that a child has provided us with personal data, we will delete it immediately.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or through the Application. We encourage you to review this policy periodically.

15. Complaints

If you believe we have violated your data protection rights, you have the right to lodge a complaint with your local supervisory authority (such as the Indonesian PDP Authority or European Data Protection Board). We encourage you to contact us first so we can resolve any concerns.

16. Contact

For any questions about this Privacy Policy or to exercise your rights, please contact us:

Email: admin@trendcas.com
Data Protection Officer: dpo@trendcas.com

← Back to Home