Tribo LogoTribo
Legal

Privacy Policy

Tribo is built for fraternal organizations and political districts that demand the strongest privacy standards. This policy explains — in plain language — exactly what we collect, why, and the controls you have over your information.

Last updated: May 12, 2026 · Effective immediately

1. Introduction

Tribo, Inc. (“Tribo,” “we,” “us,” or “our”) operates the Tribo mobile application and related services (collectively, the “Service”). The Service is provided to fraternal organizations, clubs, and political districts (each, an “Organization”) and their authorized members.

This Privacy Policy describes how we collect, use, disclose, and safeguard your personal data when you use the Service. By creating a Tribo account or otherwise using the Service, you agree to the practices described here.

2. Data We Collect

We only collect the data we genuinely need to operate the Service. The categories of personal data we may collect include:

Information you provide directly

  • Identity & profile: full name, member number, Organization affiliation, role/title, profile photo, date of birth (where required by your Organization).
  • Contact details: email address, mobile phone number, mailing address.
  • Authentication credentials: hashed passwords, multi-factor authentication settings, recovery codes.
  • Membership records: attendance, dues status, officer history, and other records provided by your Organization administrators.
  • Treasury data: digital receipts and approval records you upload to Smart Treasury.
  • Communications: messages you send through in-app support, contact forms, or to other members.

Information collected automatically

  • Device & technical data: device model, operating system version, app version, language, time zone, crash logs, and diagnostic information.
  • Usage data: pages and features accessed, actions taken, and timestamps. We do not use third-party advertising trackers.
  • Approximate location: derived from IP address, used solely for security (e.g., detecting suspicious sign-ins). We do not access precise GPS location unless you explicitly enable a feature that requires it.

Information from your Organization

Your Organization administrators may upload roster data, role assignments, and event participation records associated with your membership. You may review this information in-app and request corrections through your administrator or directly through Tribo.

3. How We Use Your Data

We use personal data for the following purposes:

  • To create and secure your account.
  • To provide the core features of the Service, including Digital Handshakes, the Megaphone news feed, Event Management, and Smart Treasury.
  • To enable connections between members and sister clubs via the Ka-Tribo Network, subject to your consent settings.
  • To send transactional communications (e.g., security alerts, event notifications, administrator announcements).
  • To investigate, prevent, and respond to fraud, abuse, security incidents, and violations of our Terms of Service.
  • To comply with applicable laws, including the Philippines Data Privacy Act of 2012 (Republic Act No. 10173, “DPA”) and comparable regulations in other jurisdictions where the Service is offered.
  • To improve the Service through aggregated, de-identified analytics. We never sell your personal data.

Tribo is designed around opt-in consent. By default, your profile is visible only to verified members of your own Organization. You control:

  • Directory visibility. Choose which profile fields (phone, email, address, etc.) are visible to other members of your Organization.
  • Ka-Tribo sharing. Sister-club access is off by default. You must explicitly opt in before any of your contact details become visible to allied clubs your Organization has partnered with.
  • Digital Handshake.Each handshake requires you to actively scan or accept a QR code. You can revoke a handshake at any time, which removes your card from the other member’s device on next sync.
  • Push notifications. Granular toggles by category (Megaphone, events, treasury approvals, direct messages).
  • Marketing communications. We do not send marketing emails to individual members. Communications from Tribo are operational in nature.

You may exercise any of these controls from Settings → Privacy inside the app. Where required by law, you also have the right to access, correct, port, restrict, or object to the processing of your personal data.

5. Data Sharing & Third Parties

We share personal data only in the following limited cases:

  • With your Organization. Administrators of the Organization you belong to can access roster and participation data necessary to run the club.
  • With other members, according to your directory visibility settings.
  • With sister clubs via Ka-Tribo, only after you have explicitly opted in.
  • With service providers who process data on our behalf (e.g., cloud hosting, crash reporting, transactional email). All providers are bound by data processing agreements that require equivalent privacy and security standards.
  • For legal reasons, when we believe disclosure is reasonably necessary to comply with a law, regulation, lawful order, or to protect the rights, property, or safety of Tribo, our users, or the public.
  • In a business transfer, in connection with a merger, acquisition, or sale of assets, in which case we will notify you before your personal data is transferred and becomes subject to a different privacy policy.

We do not sell personal data. We do not share personal data with advertising networks.

6. Data Retention

We retain personal data only for as long as necessary to provide the Service and to comply with our legal obligations. Specifically:

  • Account profile data is retained while your account is active.
  • Membership and treasury records are retained for the period required by your Organization’s governance rules and applicable record-keeping laws (typically 5–7 years).
  • Security logs are retained for up to 12 months.
  • Backups are retained for 30 days after deletion and then permanently purged.

7. Account & Data Deletion

You can delete your Tribo account and associated personal data at any time. In accordance with Apple App Store guidelines, account deletion is available directly inside the app — no email or support ticket is required.

How to delete your account in the app

  1. Open Tribo and sign in.
  2. Tap Me → Settings → Account → Delete my account.
  3. Confirm by entering your password (or biometric authentication).
  4. You will receive a confirmation email within 24 hours.

How to delete your account from the web

If you no longer have access to the app, email privacy@tribo.app from the address associated with your account. We will verify your identity and process the request within 30 days.

What happens when you delete

  • Your profile, contact details, and Digital Handshake history are deleted from production systems within 7 days.
  • Encrypted backups are purged within 30 days of deletion.
  • Treasury and membership records that your Organization is legally required to retain are anonymized rather than deleted, so they no longer identify you personally.
  • Aggregated, de-identified analytics may persist indefinitely.

8. Security

We protect your data with industry-standard safeguards, including TLS 1.3 in transit, AES-256 encryption at rest, multi-factor authentication, least-privilege access controls, continuous vulnerability scanning, and annual third-party penetration tests. While no system is perfectly secure, we work continuously to maintain a security posture appropriate for an enterprise-grade fraternal platform.

9. Children’s Privacy

Tribo is intended for adult members of fraternal organizations and political districts. We do not knowingly collect personal data from anyone under 16. If you believe a minor has provided data to us, please contact privacy@tribo.app and we will delete it promptly.

10. International Transfers

Tribo is operated primarily from the Philippines, with data processed by service providers in the United States, the European Union, and other jurisdictions with strong privacy frameworks. Where personal data is transferred internationally, we rely on appropriate safeguards such as standard contractual clauses to ensure your data continues to be protected at the standard required by the DPA and equivalent laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the app and update the “Last updated” date above. Continued use of the Service after changes take effect constitutes your acceptance of the revised policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out:

Data Protection Officer

Tribo, Inc. — Privacy Team

Reply within 5 business days, in line with DPA requirements.

privacy@tribo.app