About How to help Contact Donate

Privacy Policy



1. General Information

1.1 Treepilya recognises the importance of personal data and its protection in today's world. In this regard, we have adopted this Privacy Policy (hereinafter referred to as the "Policy"), which applies to the processing of personal data by Treepilya.

1.2 References in this Policy to "Treepilya" and "we", "us" or "our" are references to TRIPILLIA CARBON Limited Liability Company, incorporated under the laws of Ukraine and having its registered office in 7 Degtyarnaya St., Kyiv, Ukraine.

1.3 When giving your consent on our website to the processing of your personal data, you agree to the collection, use, and other processing of your data by us in accordance with the Policy.

1.4 We adhere to the requirements of the Law of Ukraine "On Protection of Personal Data" No. 2297-VI dated 01 June 2010 and other instruments of Ukrainian legislation regulating personal data protection as well as introduce the best practices to ensure the security of data you share with us.

1.5 As our services and products are aimed at, among others, foreign customers, in particular customers from EU countries, our personal data processing activities also comply with the requirements of the General Data Protection Regulation (EU) 2016/679, known as the GDPR.

1.6 Treepilya was created in Ukraine. Therefore, the laws and regulations of Ukraine apply to Treepilya by default.

2. What Personal Data we Collect

2.1 By filling out the forms on our website, applying for a job or internship or otherwise using our website as well as communicating with us via email or other channels we may collect and process the following personal data you share with us:

  • your name, surname, and patronymic;
  • email address;
  • phone number; and
  • company you are currently working for (if any).

3. Why we Collect your Personal Data

3.1 We collect and process your personal data to ensure we provide you with all of the necessary information and related services (such as webinars, events, etc.) as well as to improve your experience of interaction with us, including:

  • to provide you with our services available on the website;
  • to process analytical, statistical, and marketing data;
  • to ensure your comfortable navigation on the website;
  • to update you with relevant news from us; and
  • to keep a record of your interaction with us.

5. Where and how long we store your
personal data and how we may disclose it

5.1 We store and process your personal data for a period (no longer than needed) for the purposes of processing your personal data as indicated in clause 3.1 of the Policy, or no more than three years since your last contact with us.

5.2 After expiration of the period as indicated in clause 5.1 of the Policy, we will delete your data. We may store your personal data for internal analytics and statistics in a depersonalised form.

5.3 We may transfer your data to the processor of the personal data if we decide to involve any. Before transferring your personal data, we will introduce a relevant update to the Policy or otherwise inform you about our decision.

5.4 We do not and will not disclose your personal data to third parties, unless otherwise provided by the legislation.

6. Security

6.1 We implement all of our best efforts to ensure security and protection of your personal data.

6.2 Only a limited number of employees will have access to your personal data. These employees with access to your personal data will sign a non-disclosure agreement and will complete training on how to work with personal data.

6.3 We are not responsible for the content and behaviour of third parties' websites to which we may have links on our website.

7. Your Rights

7.1 You enjoy the following rights regarding your personal data:

  • to know about the sources of collection and the location of your personal data, the purposes of its collection, the location of the controller and processor;
  • to obtain information about the terms of access provision to your personal data, in particular, information about third parties to which your data can be transferred;
  • to access your personal data;
  • to obtain an answer within a period of 30 (thirty) calendar days, if your personal data is processed, as well as obtain the content of such personal data;
  • to object to the processing of your personal data;
  • to apply with a request to change or destroy your personal data;
  • to introduce reservations regarding limitation of the right to process your personal data while giving your consent;
  • to withdraw your consent to process your personal data;
  • to know the mechanism of automatic processing of your personal data;
  • to the protection of your personal data from illegal processing and accidental loss, destruction, damage, non-provision, or delayed provision as well as to the protection from provisions of information that is unreliable or a discredit to your honour, dignity, and/or business reputation;
  • to apply tools of legal protection in case of violation of the legislation on protection of personal data; and
  • to protection from decision, made only on the basis of automatic processing of your personal data, and which has legal consequences for you.

8. Cookies

8.1 We may use cookies to improve the performance of our website and provide you with more personalised content.

8.2 Cookies are small text files that are stored in a web browser on your computer or device through which you first visited our website and help us to remember who you are.

8.3 When first using our website, you will see a cookies banner allowing you to agree to cookies usage or learn more about them. By clicking "agree" on the cookies banner you agree to the use of cookies and confirm that you are familiar with our Policy.

8.4 If you do not agree, you can change your browser settings and completely disable all cookies or certain types of them.

9. Amendments to the Policy

All amendments to the Policy will be published on this webpage. Please review the Policy regularly to keep yourself updated with any amendments we may introduce. We will notify you or will wait for your consent if the amendments we introduce so require.

10. What is Treepilya Doing about the GDPR

Treepilya processes personal data both as a controller and as a processor and we take our obligations under the GDPR very seriously. In order to prepare for GDPR we undertook a program of activities including in particular:

An audit of our global data processing activities;

An assessment of data security across our group;

Updates to our training, policies and procedures;

Ensuring that appropriate terms are in place with our vendors acting as data processors and sub-processors.

Updates to our use of cookies and similar technology in our website, marketing emails and our mechanisms for allowing users to express their marketing preferences.

Under our GDPR program we continuously monitor changes of applicable laws, new data protection authorities’ guidelines and decisions, and best market practice. We review our practices, policies and procedures and update them accordingly, at least on an annual basis.

11. What are Treepilya’s commitments
to customers and data subjects

Treepilya is committed to complying with the requirements of the GDPR in practice. This means that we are committed to do the following when we are processing data for our customers:

We only process personal data, that you control and for which you are responsible, at your request, in accordance with the agreement we have with you, a written instruction or as required by law;

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risks that are presented by the processing, which may include End Point, Gateway and Server Level Security at our premises, strong password polices, daily anti-virus updates, use on encryption, SSL VPN for external access, secure access over wired and wireless networks to our systems, central patch management, access control, polices and training among others;

We take all reasonable steps to ensure that only authorised personnel subject to confidential obligations have access to the personal data;

We will only engage sub-processors to assist in the performance of the services we deliver to you, with your consent. We will hold sub-processors to terms no less onerous than these commitments made to you;

We will not deliberately do anything to place you in breach of the GDPR and will tell you if we become aware that your instructions run contrary to what the GDPR permits;

We will assist you to fulfil any requests received by data subjects (individuals) to exercise their rights or any regulator requests;

We will inform you straight away after becoming aware of any breach or suspected breach that might compromise your data or put it at risk;

Where we need to transfer personal data out of the EU/EEA, we will do so subject to appropriate legal safeguards.

The above list is not exhaustive and Treepilya is committed to meeting all of its obligations as processor of personal data controlled by our customers or their end clients under the GDPR.

12. Contacts

If you have any questions, objections, suggestions, or complaints regarding
the processing of your personal data, you may contact us via email below: