Privacy Policy
Last updated: 14 April 2026
This Privacy Policy explains how personal data is collected, used, shared, and protected when you use Tryable and participate in product tests.
1. Data Controller
The controller responsible for your personal data is Unhead AS, Åssiden Terrasse 44E, 1160 Oslo, Norway.
2. Data We Collect
- Account and contact data (for example email and account identifiers).
- Profile data (for example demographic details and optional household information).
- Location and shipping data where needed for campaign eligibility and sample delivery.
- Application and feedback data submitted in product tests and surveys.
- Technical and usage data (for example device/browser metadata, logs, and service diagnostics).
3. How We Collect Data
We collect data directly from you (for example during sign-up, profile completion, and campaign applications), automatically from service usage, and from service providers that support platform operation (such as hosting, analytics, authentication, and communications).
4. Why We Process Data (GDPR Article 6 Legal Bases)
- Contract performance (Art. 6(1)(b)): to provide your account, match campaigns, process applications, and deliver service features.
- Legitimate interests (Art. 6(1)(f)): to improve platform quality, detect abuse, secure systems, and run reporting and product operations.
- Consent (Art. 6(1)(a)): where required, for optional communications or optional data processing features. You can withdraw consent at any time.
- Legal obligations (Art. 6(1)(c)): where processing is necessary to comply with applicable laws, accounting duties, and regulatory requirements.
5. Data Sharing
We share personal data only where necessary with:
- Participating brands running product tests (limited to relevant campaign purposes).
- Service providers acting as processors on our behalf.
- Authorities or other parties where disclosure is required by law or to protect legal rights.
We do not sell your personal data.
6. International Data Transfers
If personal data is transferred outside the EEA/UK/Switzerland, we use appropriate safeguards such as Standard Contractual Clauses and supplementary protection measures where required.
7. Data Retention
We retain personal data only for as long as needed for the purposes described in this policy, including campaign administration, legal compliance, dispute handling, and fraud prevention. Retention periods may vary by data category and legal requirement.
8. Your GDPR Rights
Subject to applicable law, you may have the right to:
- Access your personal data.
- Correct inaccurate data.
- Delete data in certain circumstances.
- Restrict or object to specific processing.
- Receive a portable copy of data you provided to us.
- Withdraw consent at any time (where processing is based on consent).
- File a complaint with your local supervisory authority.
9. Automated Decision-Making
We do not use solely automated decision-making that produces legal effects or similarly significant effects on you without human involvement.
10. Security
We apply technical and organizational safeguards designed to protect personal data against unauthorized access, alteration, loss, or disclosure. No method of transmission or storage is fully secure, and we cannot guarantee absolute security.
11. Children and Minors
The service is not directed to children below the minimum age required by applicable law to provide valid consent. If you believe data has been provided unlawfully by a minor, contact us so we can review and take appropriate action.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material updates will be communicated through the platform or other reasonable channels. Continued use after the effective date means you acknowledge the updated policy.
13. Contact and Complaints
For privacy requests or complaints, contact support@tryable.com. You can also submit a complaint to your local data protection authority, including the Norwegian Data Protection Authority (Datatilsynet), if applicable.