Version 2026-06-09

Privacy

We measure traffic to this site so we know which campaigns work, and we ask for your email + Salesforce connection inside the app so we can deliver the scan. We do it without cookies on this page, without third-party trackers, and without selling or sharing data. Here's exactly what that means.

Who runs this site

This site and the Torienta application are operated by Torienta, run by Ayoub Khayati, a private individual based in Denmark, who is the controller of the personal data described here. Contact for any privacy question or data subject request: info@torienta.com. Business customers can request our full registered postal address and a counter-signable Data Processing Agreement at the same address.

The controller may, without your renewed consent, be succeeded by a Danish-registered legal entity wholly owned and controlled by Ayoub Khayati (e.g. a PMV, Enkeltmandsvirksomhed, or ApS) that succeeds to the service. Processing purposes, retention, sub-processors, and security measures stay unchanged through any such transition; only the controller's legal form changes. We will tell you in advance (in-app + email) before it takes effect.

What we collect

On the landing site (torienta.com)

When you visit a page on torienta.com, our self-hosted analytics records:

We do not collect your name, email, location beyond country, or any other identifier on this page. We do not fingerprint your device. We do not link visits across sessions.

When you sign up for the app

When you create a Torienta account at app.eu.torienta.com, we collect:

Your email and high-level scan summary are also replicated to our internal CRM system (ERPNext) so we can manage support and product communications. The CRM is self-hosted on our own infrastructure — it is not a third-party processor.

Salesforce data access

Salesforce does not offer a read-only or metadata-only OAuth scope, so Torienta requests the standard api scope — the narrowest scope that can read your schema. What we actually read is governed by the capabilities you grant in our consent UI:

The default scan never reads the values inside your records (Lead, Contact, Opportunity, Case, Task, or custom-object field data) — only object/field structure and counts. The connection can never do more than your own Salesforce user is permitted to do. Your access and refresh tokens are encrypted at rest and in transit, and you can revoke Torienta's access at any time from your Salesforce Setup → Connected Apps.

In-app product analytics

Inside the app we record pseudonymous behavioral events (the activation funnel and retention — e.g. "connected Salesforce", "viewed insights") so we can understand what to build next. These carry no cookies and no directly-identifying data: your identifier is a server-side pseudonymous key, never your email or account ID, and event details are limited to coarse, non-identifying categories. Legal basis: legitimate interest (Art. 6(1)(f)). Raw events are retained for at most 180 days, then automatically deleted. You can object at any time (Art. 21) and request erasure (Art. 17) — contact info@torienta.com or use the in-app disconnect/erasure flow.

Who made each change

Inside the change feed — and on each entry's page in the data dictionary — a detected change to your Salesforce configuration may show the name of the admin who made it — read from your own Salesforce org's Setup Audit Trail (Salesforce's built-in log of configuration changes). We process the admin's name, Salesforce user ID, the change type, and the timestamp to give your team accountability — who changed what, and when. We read only the structured change type and the changed item's name, not free-form audit comments, and never your records. If a change can't be confidently attributed to a single person (for example, a system-generated change), we show "—" and no name is stored. This is configuration-audit metadata from your own org's audit log — not data from inside your records. Legal basis: legitimate interest (Art. 6(1)(f)) — your org's interest in operational transparency during configuration changes. We retain it for at most 90 days, and delete it within 24 hours if you disconnect Torienta or on an erasure request (Art. 17) — contact info@torienta.com.

What we don't use

Session authentication (inside the app)

The Torienta app at app.eu.torienta.com uses a session cookie to keep you logged in. This cookie is strictly necessary for authentication and is not subject to cookie-consent requirements under the ePrivacy Directive. It is deleted when you log out or after extended inactivity.

How we use it

To understand which pages and which ad campaigns bring people to the site, to deliver the scan and dashboard you signed up for, to communicate with you about your account, and to understand which features get used (so we know what to build next). That's it. We do not profile you for advertising, retarget you, or build advertising audiences.

Aggregated, anonymized insights (in which no individual customer is identifiable) may be used to improve the product. Cross-customer benchmarking is not active today and will only be introduced with a documented decision and advance notice to customers.

We do not use your data — your Salesforce metadata, record values, or scan results — to train, fine-tune, or develop any AI or machine-learning model, whether directly or via a third-party AI service.

Legal basis (GDPR Art. 6)

Schema metadata + counts — our controller scope. During our free early-access period we rely on legitimate interest (Art. 6(1)(f)) for:

For this scope Torienta acts as an independent controller of the insights it derives.

Optional record-level features — our processor scope. The optional data-quality features (field-format checks, duplicate detection, activity-date summaries) read specific record values and rely on your explicit consent (Art. 6(1)(a)), which you grant — and can withdraw at any time — in the app's consent UI. Withdrawal stops new processing immediately but does not undo processing already completed under your prior consent. For this scope Torienta acts as a processor on your behalf under our DPA.

Balancing test: we process only transient, coarse data — no device fingerprinting, no persistent advertising identifier, no profiling for advertising, no third-party access, no data sold. Your IP is processed in memory to derive a country code, then discarded. We conclude the impact on your privacy is minimal and proportionate to our interest in measuring product usage during early access. Once we introduce paid plans, the basis for paid-customer processing shifts to contract (Art. 6(1)(b)), at which point you gain the right to data portability (Art. 20).

If you disagree with this basis, you can opt out (see below), object under Art. 21, or contact us.

Security

Where the data lives

All data is processed and stored on servers in the European Union (OVH, Gravelines, France). It is not transferred outside the EU.

The analytics software is Umami (open source, self-hosted by us). The CRM software is ERPNext (open source, self-hosted by us). Neither is a third-party data processor — there is no data processor outside Torienta involved, other than our hosting provider OVHcloud (EU) and Salesforce, Inc. as the source platform you connect.

How long we keep it

Your rights (GDPR Art. 15–22)

You have the right to:

To exercise any right, write to info@torienta.com with your account email. We will respond within 30 days (or up to 90 days for complex requests).

How to opt out (analytics)

Our analytics honors the Do Not Track browser setting. If your browser sends DNT, no event is recorded. To enable it:

You can also block our analytics endpoint (t.torienta.com) at any DNS or browser level. The site will continue to work normally.

Security incidents

If personal data is compromised in a security incident, we will notify our supervisory authority within 72 hours of becoming aware (GDPR Art. 33) and notify affected users without undue delay where the incident is likely to result in a high risk to your rights (Art. 34).

Children

Torienta is a B2B service intended for Salesforce administrators, architects, and the business teams that use Salesforce in their work. We do not knowingly process personal data of individuals under 16. If you are under 16, please do not submit your email or connect a Salesforce org. If you believe a child has submitted data to us, contact info@torienta.com and we will delete it.

If anything changes

We will update this page and the "Last updated" date at the top. The current version is always reachable at torienta.com/privacy.