These Terms govern your access to and use of the TRIKERA MATRIX API platform. By activating an account, you agree to these Terms on behalf of yourself and the organisation you represent.
TRIKERA MATRIX ("TRIKERA", "we", "us") provides a multi-tenant enterprise API platform that converts consumer environmental and biological signals into structured multi-product beauty routines ("the Service"). Access is provided through API keys issued to verified enterprise clients ("Tenants").
The Service is available to registered businesses only. By agreeing to these Terms, you represent that you are authorised to bind your organisation.
API keys are issued per tenant and must be kept confidential. You are responsible for all activity under your API keys. Notify us immediately at security@trikeramatrix.com if you suspect unauthorised use.
Your plan includes a rate limit specified in your account agreement. Exceeding this limit may result in temporary suspension. Contact us to adjust limits as your usage grows.
You agree not to:
The Four Element Framework, scoring methodology, ingredient intelligence, CFEP-aligned decision logic, and all related proprietary systems remain the exclusive intellectual property of TRIKERA MATRIX. No licence to this IP is granted beyond what is necessary to consume the API outputs.
Product data you upload to the Service remains your property. You grant TRIKERA a limited licence to process this data solely for the purpose of generating routines for your consumers.
Routine outputs generated by the API for your consumers may be used in your commerce flows without restriction.
Your use of the Service is governed by our Privacy Policy and, where applicable, our Data Processing Agreement. You are responsible for obtaining appropriate consent from your consumers before passing any data to the API.
We target 99.5% monthly uptime. Scheduled maintenance will be communicated in advance where possible. We are not liable for downtime caused by third-party infrastructure including Cloudflare, Supabase, or your own systems.
Fees are as agreed in your account agreement. Invoices are issued monthly. Accounts more than 30 days past due may be suspended. All fees are non-refundable unless otherwise agreed in writing.
Either party may terminate with 30 days written notice. We may terminate immediately for breach of Section 3 (Acceptable Use) or non-payment. Upon termination, your API keys are revoked and your product data is deleted within 30 days unless you request earlier deletion.
To the maximum extent permitted by law, TRIKERA MATRIX's total liability to you shall not exceed the fees paid in the three months preceding the claim. We are not liable for indirect, consequential, or punitive damages, loss of profits, or revenue.
We may update these Terms with 14 days notice via email. Continued use of the Service after that period constitutes acceptance.
These Terms are governed by the laws of the jurisdiction in which TRIKERA MATRIX is registered. Disputes shall first be attempted to be resolved by good-faith negotiation, then by binding arbitration if unresolved within 60 days.
Legal enquiries: legal@trikeramatrix.com
Security issues: security@trikeramatrix.com
General: hello@trikeramatrix.com
TRIKERA MATRIX is a B2B API platform. We do not sell consumer data. We do not use consumer data for advertising. The data you send us is used only to generate routines for your consumers.
TRIKERA MATRIX provides an enterprise beauty intelligence API. Our clients are brands, retailers, and commerce platforms ("Tenants"). Their customers are end consumers ("Consumer Users").
When a Tenant account is created, we collect: company name, contact name, email address, billing information, and usage data. This is used to manage the account, provide the service, and communicate with you.
We log API calls including: timestamp, endpoint, pillar (skin/hair/nails), response time, and whether a routine was generated. We do not log the full request or response body in production.
When your consumers use the API through your integration, signal data (skin type, hair type, climate, concern) is processed transiently to generate a routine. We store a record of the routine output linked to the user account ID you provide. We do not link this to real-world identity unless you pass identifying information in the user_account field.
Product data you upload (names, ingredients, categories, prices) is stored and processed solely to generate routines for your consumers.
We do not use your data or your consumers' data for advertising, profiling, or resale.
Each Tenant operates in a fully isolated environment enforced at the database level. Tenant A cannot access Tenant B's data. This isolation is enforced through Row Level Security on all tables and validated on every query.
As a Tenant, you have the right to:
To exercise these rights, contact privacy@trikeramatrix.com. We respond within 30 days.
For your Consumer Users' rights under GDPR, you act as the data controller and are responsible for handling their requests. We act as your data processor — see our Data Processing Agreement.
We use the following sub-processors:
All sub-processors are bound by data processing agreements and operate under appropriate legal frameworks for international data transfers.
We implement: row-level security on all database tables, service key isolation (keys never exposed in client-side code), API key hashing (raw keys are never stored), TLS encryption in transit, and access logging. We conduct regular security reviews.
The TRIKERA tenant portal uses a session token stored in localStorage for authentication. No third-party tracking cookies are used. The public landing page does not use any cookies or tracking.
Privacy enquiries: privacy@trikeramatrix.com
Data deletion requests: privacy@trikeramatrix.com
Security disclosures: security@trikeramatrix.com
This Data Processing Agreement ("DPA") applies when TRIKERA MATRIX processes personal data on behalf of a Tenant in connection with the TRIKERA API service. It forms part of the Terms of Service and governs the processing of personal data in accordance with GDPR and applicable data protection law.
Generation of personalised beauty routines from consumer signal data.
For the duration of the Tenant's active account, plus 30 days following termination.
Collection, storage, analysis, and structured output of consumer signal data (skin type, hair type, nail condition, climate, primary concern) to generate product recommendations.
Skin type, hair type, nail condition, geographic climate indicator, primary beauty concern, and a Tenant-assigned user account identifier. TRIKERA does not require, collect, or process name, contact details, or other directly identifying information unless the Tenant explicitly includes it in the user_account field.
The Tenant's end consumers who interact with TRIKERA-powered features.
TRIKERA MATRIX agrees to:
The Tenant agrees to:
The Tenant provides general authorisation to engage the following sub-processors:
We will notify Tenants at least 14 days before adding new sub-processors. If a Tenant objects, they may terminate the agreement without penalty within that 14-day window.
Where personal data is transferred outside the EEA, we rely on Standard Contractual Clauses (SCCs) as the transfer mechanism. Copies of relevant SCCs are available on request.
Technical and organisational measures include:
Upon request, TRIKERA will provide the Tenant with the routine records associated with a given user_account ID so the Tenant can fulfil access, portability, or erasure requests from their consumers. Erasure of a specific consumer's routine records can be requested via privacy@trikeramatrix.com with the relevant user_account ID(s).
Tenants may request a summary security audit report once per calendar year. Physical or full technical audits require 30 days notice and are subject to a reasonable fee.
DPA enquiries and data subject requests: privacy@trikeramatrix.com