Legal
Privacy Policy
Last updated: 2026-06-27.
1. Who we are
This Privacy Policy describes how WEB DIRECT SRL, a company incorporated under the laws of the Republic of Moldova, registered office at Calea Ieșilor 8, of.3, Chișinău, MD-2069, Moldova (hereafter "TryDirect", "we", "our", "us"), processes personal data when you use the website at try.direct and the related TryDirect platform.
WEB DIRECT SRL is the data controller for the personal data processed via try.direct. For privacy-related questions, contact:
- Email: privacy@try.direct
- Postal: WEB DIRECT SRL, Calea Ieșilor 8, of.3, Chișinău, MD-2069, Moldova
- Phone: +373 60 775 719
We follow the principles of the EU General Data Protection Regulation (Regulation 2016/679, "GDPR") and the Republic of Moldova Law No. 133/2011 on Personal Data Protection.
2. What personal data we collect
- Account data - email, first and last name, hashed password, preferred language, profile picture if uploaded, and OAuth identifiers from Google or GitHub if you sign in with those.
- Billing data - company name, billing address, VAT number, payment method metadata. Card details are handled by Stripe and never reach our servers; PayPal billing data stays with PayPal.
- Cloud connection data - cloud provider credentials you enter so TryDirect can deploy on your behalf. Encrypted at rest in HashiCorp Vault and discarded after the relevant provisioning operation.
- Deployment data - configuration of the stacks you create, the cloud provider and region you target, the names you give to deployments.
- Activity data - sign-in events, password recovery events, deployment events, payment events.
- Server log data - IP address, user agent, request URL, response status, timestamps.
- Support data - contents of messages sent via the contact form, support email, or marketplace review queue.
3. Why we process your personal data
- Provide the platform and your account - performance of a contract.
- Process payments and issue invoices - performance of a contract; legal obligation (tax law).
- Deploy stacks to your cloud account on your instruction - performance of a contract.
- Send transactional emails (sign-up, billing, deployment status, security alerts) - performance of a contract; legitimate interest.
- Send marketing email about new features - consent; you can unsubscribe at any time.
- Detect and prevent abuse, fraud, and security incidents - legitimate interest.
- Comply with legal obligations - legal obligation.
- Provide customer support - performance of a contract; legitimate interest.
4. Sub-processors
We use the following sub-processors. A current list is also maintained on the Trust & Security page.
- Stripe Payments Europe Ltd - card payment processing - Ireland (EU)
- PayPal (Europe) S.à r.l. et Cie, S.C.A. - alternative payment processing - Luxembourg (EU)
- Mailjet SAS - transactional and marketing email delivery - France (EU)
- Amazon Web Services (SES) - secondary email delivery - EU/US (region-dependent)
- Sentry (Functional Software, Inc.) - application error tracking - US
- Google LLC (Analytics 4) - anonymised traffic analytics - US
- Hetzner Online GmbH - hosting the TryDirect platform - Germany (EU)
- Cloud providers you connect - Hetzner, DigitalOcean, Linode, Vultr, Contabo, AWS, Oracle Cloud - only on your instruction.
We sign a Data Processing Agreement with each sub-processor that meets GDPR Article 28 requirements. EU Standard Contractual Clauses are used for any transfer outside the EU/EEA. See the full Data Processing Agreement.
5. International transfers
Some of our sub-processors are located outside the European Economic Area (notably Sentry and Google Analytics). For such transfers we rely on the European Commission's Standard Contractual Clauses or adequacy decisions where they apply. You can request a copy of the relevant transfer instruments from privacy@try.direct.
6. How long we keep your data
- Account data (active account) - for as long as your account is active.
- Account data after deletion request - after you request deletion, account data is retained for a grace period during which you can cancel from the dashboard. The grace period depends on your plan at the time of the request:
After the grace period, data is irreversibly deleted by an automated process.Your plan at the time of the request Grace period No active paid plan 7 days minimum Monthly paid plan until the end of the current monthly cycle (up to 30 days) Annual paid plan until the end of the current annual cycle (up to 365 days) - Inactive accounts - accounts with no sign-in for 4 months or more are flagged as inactive and queued for permanent deletion. We send an email reminder before deletion so you can sign in to keep the account active.
- Billing records - retained for 5 years after the transaction, as required by Moldovan tax law (Tax Code, Art. 134), regardless of account deletion.
- Server log files - maximum 7 days, unless retained for security incident investigation.
- Marketing-email opt-in records - for as long as you remain subscribed, plus 1 year after unsubscribing for compliance proof.
- Marketplace transaction records - 5 years for tax-record reasons.
- Backups - encrypted backups overwrite on a rolling cycle; personal data residue is purged within 30 days of the corresponding live-data deletion.
7. Your rights
Under the GDPR and Moldova Law No. 133/2011 you have the following rights:
- Access - request a copy of the personal data we hold about you.
- Rectification - ask us to correct inaccurate or incomplete data.
- Erasure - ask us to delete your data, subject to retention obligations in section 6.
- Restriction of processing - ask us to limit how we process your data.
- Data portability - receive your data in a structured, machine-readable format.
- Objection - object to processing based on legitimate interest or direct marketing.
- Withdraw consent - where processing is based on consent, withdraw it at any time.
- Lodge a complaint - with a supervisory authority. For users in the EU, this is your local Data Protection Authority. For users in Moldova, the National Centre for Personal Data Protection.
To exercise any of these rights, contact privacy@try.direct. We respond within 30 days.
8. Security
We protect your data with TLS 1.2 / 1.3 in transit, HashiCorp Vault for secrets at rest, two-factor authentication, role-based access control, and continuous monitoring. Full details are on our Trust & Security page.
9. Cookies
We use cookies as described in our Cookie Policy.
10. Children
The TryDirect platform is not intended for children under 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact privacy@try.direct.
11. Changes to this policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent change. Material changes are announced by email at least 30 days in advance to active account holders.
Frequently asked questions
What personal data does TryDirect collect?
Account data (email, name, hashed password, OAuth identifiers), billing data, cloud connection credentials (encrypted in Vault), deployment configuration, activity logs, and support correspondence. Full breakdown in section 2 of the Privacy Policy.
Does TryDirect sell my data?
No. TryDirect does not sell, rent, or share personal data with third parties for marketing purposes. Data is shared only with the sub-processors listed in section 4, strictly for delivering the platform.
How long does TryDirect keep my data after account deletion?
There is a minimum 7-day grace period during which you can cancel deletion. For users on paid plans, the grace period extends to the end of the current billing cycle (up to 30 days for monthly, up to 365 days for annual). After the grace period, data is irreversibly deleted by an automated process.
Can I export my data?
Yes. Email privacy@try.direct to exercise your GDPR right to data portability. We respond within 30 days.
Who is the data controller?
WEB DIRECT SRL, Calea Ieșilor 8, of.3, Chișinău, MD-2069, Moldova. Email: privacy@try.direct.
12. Contact
- privacy@try.direct - privacy and GDPR requests
- info@try.direct - general questions
- WEB DIRECT SRL, Calea Ieșilor 8, of.3, Chișinău, MD-2069, Moldova