Privacy Policy

Trusta collects account, workspace, and infrastructure metadata that is needed to run the product, publish trust pages, and support security review workflows.

We minimize collection, prefer auditable system metadata over free-form content, and keep raw evidence artifacts out of relational storage. Sensitive artifacts are stored in managed object storage with access controls.

If you need details about retention, subprocessors, or deletion workflows, contact hello@trusta.dev.