TOF, Inc. ("TOF," "we," "our," or "us") is committed to protecting the privacy of individuals whose information we process. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website (tof.io), use our platform and services, or when we process consumer data on behalf of our business customers.
TOF operates as both a data controller (for information about our own customers and website visitors) and a data processor (for consumer data we process on behalf of enterprise clients). This policy addresses both roles.
Summary: We collect information to operate our platform and improve our services. We do not sell your personal information to third parties. You have rights to access, correct, and delete your data. Consumer data in our graph is sourced from permissioned partners and is subject to robust suppression and opt-out processes.
We collect information you provide directly to us, including when you:
This may include your name, work email address, company name, job title, phone number, and any information you choose to include in messages to us.
When you visit our website or use our platform, we automatically collect certain technical information, including:
We may receive information about you from third-party sources, including business contact databases, marketing partners, and publicly available sources, for the purpose of understanding and reaching prospective business customers.
We use the information we collect to:
We do not sell your personal information. We may share your information with:
We share information with third-party vendors and service providers that perform services on our behalf, such as cloud hosting, CRM, analytics, email delivery, and payment processing. These providers are contractually prohibited from using your information for any purpose other than providing services to us.
If TOF is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership and your choices regarding your information.
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
TOF maintains a consumer identity graph containing data about individuals derived from permissioned partner sources, including publisher networks, retail data cooperatives, public records, and registered partner programs. This data is used to power identity resolution and audience targeting for our enterprise customers.
All data in our consumer graph is sourced from partners who represent that they have obtained the necessary consents or have a valid legal basis for sharing consumer data with us. We conduct ongoing due diligence on our data supply chain to ensure compliance with applicable privacy laws.
Consumer data in our graph is not used for employment screening, credit decisions, insurance underwriting, or any purpose covered by the Fair Credit Reporting Act (FCRA). Our contracts with customers prohibit such uses.
Individuals may request suppression of their data from our consumer graph by submitting a request through the methods described in the "Your Rights" section below. Suppression requests are honored within 30 days and propagated to active customer deployments.
Depending on your location, you may have certain rights regarding your personal information, including:
To exercise any of these rights, or to submit a consumer data suppression request, please contact us at privacy@tof.io or write to us at the address below. We will respond within 45 days of receiving a verifiable request.
We implement and maintain technical and organizational security measures designed to protect your information against unauthorized access, loss, destruction, or alteration. These measures include encryption at rest and in transit, access controls, network segmentation, and regular security assessments.
However, no method of transmission over the Internet or method of electronic storage is completely secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.
We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When determining retention periods, we consider the nature and sensitivity of the data, the purposes for which it is processed, and applicable legal requirements.
Account information is retained for the duration of the customer relationship and for up to three years thereafter for legal and business purposes. Consumer graph data is subject to ongoing freshness and suppression processes to ensure accuracy and compliance with deletion requests.
We use cookies and similar tracking technologies to collect and use information about you and your interaction with our website. We use the following types of cookies:
You can control cookies through your browser settings and, where applicable, our cookie consent manager. Note that disabling certain cookies may affect the functionality of our website.
Our services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal information from a child under 16, we will take steps to delete that information promptly. If you believe we have collected information from a minor, please contact us at privacy@tof.io.
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this page and, where appropriate, by sending an email notification to customers on record. Your continued use of our services after any changes constitutes your acceptance of the revised policy.
If you have questions, concerns, or requests related to this Privacy Policy or your personal information, please contact us:
For residents of the European Economic Area, TOF, Inc. is the data controller responsible for your personal information. You also have the right to lodge a complaint with your local data protection authority.