Privacy Policy
Last updated: 12 September 2025
Effective date: 19 December 2025
Who we are
Tangi5 Strategic Innovation Labs LLP (LLPIN ACK‑9545), trading as “TringTring” or “TringTring.ai” (“we”, “us”, “our”), operates the website https://tringtring.ai (the “Website”) and our orchestration platform and related services (the “Services”).
Registered office: 3, Vora Industrial Estate, Navghar, Vasai Road E. Dist. Palghar, Maharashtra – 401202, India.
Privacy contact: privacy@tringtring.ai
EU/UK Article 27 representative: Not appointed at this time. If this changes, we will update this Policy.
Our role
We act as an independent controller for Website operations, account administration, billing, marketing, security/abuse prevention, and when we decide the purposes and means of processing.
We act as a processor for Customer Data that business customers submit to or generate in our Services (e.g., audio, transcripts, prompts, call/message metadata and content) in order to orchestrate processing across TTS, STT, LLMs, diallers/telephony, Meta platforms (e.g., WhatsApp), and other channels. That processing is governed by our Data Processing Agreement (DPA), which will prevail where there is any inconsistency with this Policy.
This Policy addresses our activities as controller. Your DPA governs our processor role.
Plain‑English summary
We collect Account, Billing, Usage/Log, and (if you choose) Support/Diagnostic data as controller.
We process Customer Data on your instructions to provide the orchestration you configure across your chosen integrations.
We use industry‑standard safeguards and support compliant international transfers (e.g., SCCs and equivalent mechanisms).
You have privacy rights (access, correction, deletion, objection, portability, consent withdrawal) depending on where you live.
We operate a cookie banner; non‑essential cookies require consent where the law says so. We honour recognised opt‑out signals where required.
We do not sell personal information.
Key definitions
Customer: A business that contracts with us to use the Services.
Customer Data: Any data a Customer (or its end users) submits to or generates in the Services, including audio, transcripts, prompts, numbers, call/message content and metadata, and outputs from models or channels.
Service Data: Personal data we process as controller to run our business (e.g., account records, logs, billing).
Integrations/Channels: Third‑party providers you enable (e.g., TTS/STT/LLM vendors, diallers/telephony carriers, Meta/WhatsApp, email/SMS gateways, analytics/monitoring tools).
Learner: A person under the relevant age threshold in their country (we use the term “learner” for minors).
What we collect as controller
1) Data you provide
Account & profile: name, business email, phone, company, role.
Credentials (hashed), API keys generated within the Service.
Billing: billing contact, address, tax IDs, payment tokens via our payment processor.
Support: tickets, diagnostic logs or sample payloads you voluntarily provide.
Marketing preferences/consents.
2) Data collected automatically
Usage/telemetry: features used, timestamps, device/browser type, IP address, error codes.
Website analytics (only with consent where required).
Security signals: failed logins, abuse/fraud patterns.
3) Data from others
Integrations you connect (e.g., diallers, TTS/STT/LLMs, WhatsApp).
Partners/affiliates (if you sign up via a partner).
Public/third‑party sources where lawful.
What we process on your behalf
When you run calls or messaging through our Services, we process Customer Data (e.g., audio streams, transcripts, call recordings, call/SMS/WhatsApp metadata, prompts, model inputs/outputs) only on your documented instructions, for the purpose of providing, maintaining, and securing the Services and the integrations you enable.
Your responsibilities include ensuring you have a lawful basis, providing any required notices/consents (e.g., call‑recording disclosures, marketing consent, WhatsApp templates), and configuring providers’ retention and training settings appropriately. Where feasible, we request that sub‑processors disable model training and minimise retention for Customer Data.
How we use Service Data
| Purpose | Examples | Legal basis (GDPR/UK GDPR) |
|---|---|---|
| Provide and secure the Services | account set‑up, authentication, uptime, incident response, fraud/abuse prevention | Contract (Art. 6(1)(b)); Legitimate interests (security) (Art. 6(1)(f)) |
| Billing & account administration | invoicing, subscription management, tax/audit compliance | Contract; Legal obligation (Art. 6(1)(c)) |
| Product improvement | aggregated/de‑identified analytics, quality assurance, telemetry | Legitimate interests (improving Services) (Art. 6(1)(f)) |
| Marketing (B2B) | service and feature updates; you can opt out at any time | Consent where required by ePrivacy/PECR; otherwise Legitimate interests |
| Compliance & enforcement | record‑keeping, responding to lawful requests, defending claims | Legal obligation; Legitimate interests |
Automated decision‑making
We do not make solely automated decisions producing legal or similarly significant effects about individuals. Limited profiling may be used for security/quality, subject to safeguards and the right to object where applicable.
Cookies & similar technologies
We use cookies and similar technologies (including SDKs, pixels and local storage) to operate the Website, remember preferences, measure performance and—only where permitted—for marketing. Non‑essential cookies require prior consent in many jurisdictions. You may change your choices at any time via Cookie Settings on our site or via your browser. Where required by law, we also recognise Global Privacy Control (GPC) and other supported universal opt‑out signals.
International data transfers
We are based in India and use infrastructure and providers in multiple countries. Where we transfer personal data from regions with transfer rules (e.g., EEA/UK/Switzerland) to countries without an adequacy decision, we rely on appropriate safeguards such as Standard Contractual Clauses (and UK equivalents) together with supplementary measures and transfer assessments as needed.
Disclosures
We disclose personal data to:
Affiliates (for the purposes in this Policy).
Service providers / sub‑processors under contract, confidentiality and data‑protection terms.
Partners (if you sign up via a referral or marketplace).
Authorities/third parties where required by law or to protect rights, users or the public.
Prospective buyers or financing parties in connection with a corporate transaction (subject to appropriate protections).
See our Sub‑processor List below.
Retention
We retain Service Data for as long as necessary to provide the Services and comply with law (e.g., tax/audit), then delete or irreversibly anonymise it. Customer Data retention is driven by your configuration and our DPA; if not specified, we retain it only as long as required to deliver the Services, troubleshoot, meet legal obligations, resolve disputes, and enforce agreements.
Security
We implement appropriate technical and organisational measures, including encryption in transit, access controls/least privilege, segregated environments, logging/monitoring, vulnerability management and staff training. No system is perfectly secure; please help by using strong passwords, enabling multi‑factor authentication, and limiting access appropriately.
Learners
Our Website and Services are not directed to learners, and we do not knowingly collect personal data from learners. If you believe we have collected data about a learner, contact privacy@tringtring.ai so we can take appropriate steps. Customers using our Services in educational contexts must ensure lawful bases, any required parental/guardian consent, and appropriate configuration to minimise data.
Your rights
Your rights depend on your location and the applicable law. Subject to exceptions and verification, you may have the right to access, rectify, erase, restrict, object, portability, and withdraw consent. You can contact us at privacy@tringtring.ai to exercise these rights. You may also have the right to complain to your local regulator; we would appreciate the chance to respond first.
Marketing communications
You may opt out of marketing emails at any time via the unsubscribe link or by emailing us. Transactional and service emails are necessary for your account.
“Sale” / “Sharing” / Targeted advertising
We do not sell personal information. If and when we engage in activities considered “sharing” for cross‑context behavioural advertising under specific state laws, we will provide a clear opt‑out mechanism and respect recognised signals where required.
Changes to this Policy
We may update this Policy from time to time. Material changes will be notified via the Website and/or email to account holders. The “Last updated” date above shows when this Policy last changed.
Contact us
Tangi5 Strategic Innovation Labs LLP (LLPIN ACK‑9545)
Email: privacy@tringtring.ai
Postal: 3, Vora Industrial Estate, Navghar, Vasai Road E. Dist. Palghar, Maharashtra – 401202, India.
Sub‑processor List
Scope: These entities may process Customer Data and/or Service Data to help us deliver and support the Services. Locations reflect typical regions or data‑residency options published by the providers; your configured region (where offered) and network routing may affect where processing occurs. We review security, confidentiality, and data‑protection terms with each provider and strive to minimise retention and disable model‑training on Customer Data where feasible.
Change notifications: We may update this list. Where required by your DPA, we will give advance notice and a right to object.
| Entity | Product or Service | Location of Processing | Purpose of Processing |
|---|---|---|---|
| Cloudflare | All Services | Processing is performed at the data centre closest to the end user | Content delivery network and edge security |
| Amazon Web Services (AWS) | All Services | United States, Europe, Asia (region as configured) | Cloud infrastructure and storage |
| Google Cloud Platform (GCP) | All Services | United States, Europe, Asia (region as configured) | Cloud infrastructure and computing services |
| Microsoft Azure | All Services | United States, Europe, Asia (region as configured) | Cloud infrastructure and computing services |
| Supabase | All Services | United States, Europe, Asia (region as configured) | Database management and storage |
| Google Workspace | Internal Services | United States, Europe, Asia | Business productivity and collaboration tools (email, docs, drive) |
| HashiCorp Cloud | Infrastructure Services | United States, Europe, Asia (region as configured) | Infrastructure‑as‑code and secrets management |
| Plivo | Customer Communication | United States, Europe, India, Singapore (region as configured) | Telephony and messaging APIs; call/SMS routing and delivery |
| Atlassian | Internal Services | United States, Europe (data‑residency options available) | Project management and issue tracking (e.g., Jira, Confluence) |
| GitLab | Development Services | United States, Europe (SaaS regions) | Code repository, version control and CI/CD |
| Razorpay | Payment Services | India | Payment processing and subscription management |
| Zoho | Internal Services | India, United States, Europe | CRM, support desk and related business operations |
| Mailchimp (Intuit Mailchimp) | Marketing Services | United States, Europe | Email marketing and (if enabled) transactional email |
| Meta Platforms (e.g., WhatsApp Business, Messenger, Instagram) | Channels / Customer Communication | Worldwide (per Meta’s infrastructure) | Customer messaging channels and delivery, subject to your configuration |
If you need a historical log of sub‑processor changes or a machine‑readable copy of this list, email privacy@tringtring.ai.
Regional notes
GDPR/UK GDPR: We use applicable lawful bases, honour data subject rights, and support compliant transfers (e.g., SCCs with supplementary measures).
ePrivacy/PECR: We obtain consent for non‑essential cookies and provide cookie controls.
India (DPDP Act, 2023): We provide notice, obtain consent where required, maintain a grievance mechanism via privacy@tringtring.ai, and support rights to access/correction/erasure.
US state privacy laws: We provide opt‑out mechanisms where required and recognise supported universal opt‑out signals.