Privacy Policy

TragoCRM Privacy Policy

Last updated: November 1st 2025

This Privacy Policy explains how TragoCRM (“TragoCRM,” “we,” “us,” or “our”) collects, uses, discloses, and protects information when you use our websites, apps, and related services, including tragocrm.com and any connected features, APIs, or mobile experiences (the “Service”).

If you do not agree with this Policy, please do not access or use the Service.


1) Who We Are (Controller)

  • Entity: FZolutions, LLC
  • Address: Minneapolis, MN 55401
  • Email: privacy@tragocrm.com
  • Data Protection Contact: dpo@tragocrm.com (for EU/UK inquiries)


2) Information We Collect

We collect information in three primary ways:

A. Information you provide

  • Account & Profile: name, company name, role, email, phone, password (hashed), time zone, and preferences.
  • Billing: organization details, plan selection, tax/VAT IDs; payments are processed by Stripe (we receive limited payment metadata, not full card numbers).
  • Content you create: clients, employees, projects, tasks, time logs, invoices/estimates/payments, attendance/leaves, files, messages, and other records you upload (“Customer Data”).
  • Support/Contact: chat or email content, screenshots, and attachments.


B. Information collected automatically

  • Usage: feature interactions, pages viewed, clicks, approximate location (derived from IP), device/browser type, language, referrer/UTM, and session timestamps.
  • Cookies & similar tech: essential cookies for login/session; analytics cookies to improve performance; optional marketing cookies (if enabled). See Cookies below.


C. Information from third parties

  • Integrations you connect: Slack, PayPal, OneSignal, Pusher, email gateways, etc. We receive the minimum data required to operate the integration.
  • Service providers: analytics, error monitoring, and anti-abuse tools.


3) How We Use Information (Purposes)

We process information to:

  1. Provide the Service and core features (CRM, HR, billing, projects, attendance, reporting, notifications).
  2. Operate, maintain, and secure accounts, detect/prevent fraud or abuse, and troubleshoot.
  3. Process payments and manage subscriptions, invoices, and receipts.
  4. Improve and develop the Service, including analytics, testing, and research.
  5. Support and communicate (respond to requests, send updates, service notices, and security alerts).
  6. Comply with law and enforce our Terms of Use, policies, and contractual rights.
  7. Marketing (optional): with consent where required; you can opt out at any time.

Legal bases (EEA/UK): contract performance, legitimate interests (e.g., security, product improvement), consent (where required), and legal obligations.


4) Customer Data

Customer Data” is the business information you or your users input into TragoCRM (e.g., your clients, employees, projects, invoices, files).

  • You own Customer Data.
  • We process Customer Data only to provide the Service, per your instructions (including via features, API, and settings), to maintain security, and as required by law.
  • You are responsible for obtaining any necessary permissions/consents from your users/contacts for Customer Data you submit.


5) When We Share Information

We do not sell personal information. We may share information with:

  • Service providers / subprocessors (hosting, storage, payments, email/SMS, analytics, support). Typical providers include: cloud hosting, Stripe, Slack (if you connect it), Pusher, OneSignal, email delivery, and logging/monitoring.
  • Integration partners you choose to enable.
  • Professional advisors (legal, accounting), and authorities where required by law or to protect rights, safety, and security.
  • Corporate transactions (merger, acquisition). We will notify you where required.

We require vendors to use safeguards and process data only for our documented purposes.


6) International Transfers

We operate globally and may transfer information to countries with different data-protection laws. Where required, we use appropriate safeguards (e.g., SCCs/IDTA) for EEA/UK personal data.


7) Data Retention

  • Account/profile data: retained while your account is active and for a reasonable period thereafter for legal, accounting, and backup purposes.
  • Customer Data: retained during your subscription; upon termination, we delete or anonymize per our retention schedules. You can export data before closure.
  • Logs/analytics: retained for a limited time to operate and secure the Service.


8) Security

We implement administrative, technical, and physical safeguards designed to protect information (encryption in transit, access controls, backups, monitoring). No system is 100% secure; you are responsible for maintaining strong passwords, access rules, and device security.


9) Your Choices & Rights

Email & notifications

  • You can manage marketing preferences via in-email links.
  • Service/transactional emails (invoices, security alerts) are required for your account.


Access, correction, deletion (global)

  • You may access, update, or delete profile data through your account or by contacting privacy@tragocrm.com.
  • For Customer Data, contact your account admin; we act as a processor and will assist the controller as required.


GDPR/UK rights (if applicable)

  • Right of access, rectification, erasure, restriction, portability, and to object to processing (including legitimate interests and direct marketing).
  • Right to withdraw consent at any time (without affecting prior processing).
  • Right to lodge a complaint with your supervisory authority.


California (CPRA/CCPA) disclosures

  • We do not sell or share personal information for cross-context behavioral advertising.
  • You may request access, deletion, and correction of personal information, and may limit use of sensitive information where applicable.
  • We will not discriminate for exercising your rights.

Submit requests: privacy@tragocrm.com (we will verify your identity).


10) Children’s Privacy

The Service is not intended for children under 16. We do not knowingly collect personal information from children. If you believe a child has provided personal data, contact us to remove it.


11) Cookies & Similar Technologies

We use:

  • Essential cookies (authentication, session, security).
  • Performance/analytics (e.g., page metrics, feature usage).
  • Optional marketing (only if enabled/consented).

You can manage cookies through your browser settings and any in-product cookie banner. Disabling essential cookies may break the Service.


12) Third-Party Links & Services

The Service may link to or integrate with third-party sites and services. Their privacy practices are governed by their own policies. We are not responsible for third-party content or practices.


13) Do Not Track

Our Service does not respond to “Do Not Track” browser signals.


14) Changes to This Policy

We may update this Policy to reflect changes in technology, law, or our services. If changes are material, we will provide notice (e.g., email or in-app). The “Last updated” date indicates the latest version.


15) Contact Us

Questions or requests about this Policy or your data?

TragoCRM Privacy

Email: privacy@tragocrm.com

Address: Minneapolis, MN 55401

Ready to streamline your business?

Try TragoCRM free for 7 days — no credit card needed.

Get Started

TragoCRM is an all-in-one business management platform offering CRM, project management, HR tools, automated billing, invoicing, time tracking, analytics, and workflow automation for businesses of all sizes.