Riffo Privacy Policy

Effective Date: August 7, 2024

We are committed to protecting your privacy.

For Riffo, the protection of security and data privacy is of utmost importance. This Privacy Policy outlines our commitment to safeguarding the privacy of individuals in accordance with USA data protection laws and the GDPR. PLEASE DO NOT USE, INSTALL OR ACCESS THE SERVICES IF YOU DO NOT AGREE TO THIS PRIVACY POLICY.

We are committed to not storing any user file content. Our programs only process user file content locally on the user's device, performing initial processing of the files and extracting only the necessary file characteristics required for the service. Once these characteristics are obtained, they are transmitted via encrypted requests, without personal information and in a non-traceable manner, to our AI and machine learning algorithm providers, as well as to our own cloud computing nodes. After receiving the processed results, we perform authorized operations such as renaming files, creating new folders, moving files, and deleting empty directories based on the authorized files and paths. The only information related to file content that we retain is the processed file name, which helps us ensure service validation and maintain stability.

Our Data Privacy Commitment

Information we collect includes both information you knowingly and actively provide us when using or participating in any of our services and promotions, and any information automatically sent by your devices in the course of accessing our products and services.

Information We Collect

Name, file name, e-mail address, address, credit card, account number, telephone number.

What kind of personal data do we process?

We may collect personal information from you when you do any of the following on our website:

  • Sign up to receive updates from us via email or social media channels
  • Use a mobile device or web browser to access our content
  • Contact us via email, social media, or on any similar technologies
  • When you mention us on social media

We may collect, hold, use, and disclose information for the following purposes, and personal information will not be further processed in a manner that is incompatible with these purposes:

  • to enable you to customise or personalise your experience of our website
  • to contact and communicate with you

When you purchase a subscription, you also need to provide payment information, which will be handled by secure processing services.

We collect data through cookies and similar technologies on our website.

We collect data from our website visitors – we can’t identify you directly without your consent.

We log website visits and application usage statistics to improve our services.

We also receive personal data when new users are invited to a business subscription or to a Tresorit Folder.

Use of Collected Information

We may process your personal data for several purposes. How we use your personal data depends on your subscription plan, on how you use the Riffo services, and your preferences you have communicated with us.

Services

  • We will use your personal data, such as Registration and Account Information, for the provision and maintenance of your user account, for authentication purposes, and for providing the Riffo service to you and to other registered Riffo users as designated by you.

Billing

  • We will process your Registration and Billing Information for billing purposes, i.e. to complete transactions, and send you related information, including purchase confirmations and invoices.

Communications

  • We will send you technical notices, updates, security alerts, support and administrative messages. Please be aware that you cannot opt out of receiving certain service messages from us, including necessary security alerts and legal notices.
  • We also send messages about how to use the services.
  • Push notifications (in-app) may be sent to your device to notify you of new folders being shared or certain events or user actions regarding the user account or the user’s data. To opt out of push notifications, please edit settings at the device level.
  • Our service also enables communications between you and others. In particular, sending and delivering invitations, between you and the person who invites you or whom you invited.

Developing Services

  • We are always looking for ways to make Riffo services better, faster, smarter, and more secure. We use aggregated web statistics and logs about how people use our services and feedback provided directly to us to troubleshoot and to identify trends, usage, activity patterns and improvement of our services.
  • We also test and analyze certain new features with some users before rolling the feature out to all users.

Marketing

  • If you are an existing customer of Riffo, we may use your email address and phone number provided to us to send you marketing communications, such as providing you with information about similar Tresorit products and services, unless you have opted-out.
  • We may also use information about you, including web statistics and logs, to personalize the content and experience you receive on our websites or in our marketing communications, as well as by displaying Riffo ads on other companies' websites and applications, such as on platforms like Facebook and Google. Where legally required, also seek your consent for sending marketing communications.

Security

  • We use information about you to secure your profile, verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of our Terms of Service or Acceptable Use Policy.

Customer Support

  • Occasionally, we connect personal information to information gathered in our log files as necessary to provide better customer experience and to improve our services. In such a case, we would treat the combined information in accordance with this policy.
  • You may opt-out of these statistics or logs at any time by editing settings, but please note that in this case, it might be more difficult for our support team to find the problem when something goes wrong.

Protecting our legitimate business interests and legal rights

  • Where required by law or where we believe it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions, and disclosures in connection with the acquisition, merger or sale of a business.

Disclosure of Personal Information to Third Parties

We may disclose personal information to:

  • a parent, subsidiary, or affiliate of our company
  • third party service providers for the purpose of enabling them to provide their services, for example, IT service providers, data storage, hosting and server providers, advertisers, or analytics platforms
  • our employees, contractors, and/or related entities
  • our existing or potential agents or business partners
  • sponsors or promoters of any competition, sweepstakes, or promotion we run
  • courts, tribunals, regulatory authorities, and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise, or defend our legal rights
  • third parties, including agents or sub-contractors, who assist us in providing information, products, services, or direct marketing to third parties to collect and process data.

How Long We Keep Your Personal Information

We keep your personal information only for as long as we need to. This time period may depend on what we are using your information for, in accordance with this privacy policy. If your personal information is no longer required, we will delete it or make it anonymous by removing all details that identify you.

However, if necessary, we may retain your personal information for our compliance with a legal, accounting, or reporting obligation or for archiving purposes in the public interest, scientific, or historical research purposes or statistical purposes.

Security of Your Personal Information

Riffo uses appropriate technical and organizational measures to protect Your Personal Data. Only authorized Riffo staff or third-party company staff (i.e. service providers) have access to Your Personal Data. All such staff are required to adhere to our Privacy Notice. Additionally, all third-party employees who have access to Your Personal Data must sign non-disclosure agreements. In addition, Riffo has contracts in place with third-party companies that have access to Your Personal Data in order to protect it. To protect Your Personal Data, Riffo maintains a secure IT environment and has measures in place to prevent unauthorized access to it. All communication and file transfers to and from our server are encrypted with TLS. Passwords are only stored in encrypted (hashed) form, never in plain text.

Your data protection rights

You have certain rights over Your Personal Data under data protection laws, including, for example, the California Consumer Privacy Act, or the EU GDPR etc.

  • You have the right to have your data deleted. In certain circumstances, you may have a broader right to erasure of your personal data. For example, if it is no longer necessary in relation to the purposes for which it was originally collected. Please note, however, that we may need to retain certain information for record keeping purposes, to complete transactions or to comply with our legal obligations.
  • You have the right to request us to stop processing your personal data and/or to stop sending you marketing communications.
  • You have the right to request that we restrict processing of your personal data in certain circumstances (for example, where you believe that the personal data we hold about you is inaccurate or unlawfully held). You also have the right to have incorrect data corrected. If the accuracy of the data cannot be definitively established, the data may be marked with a note of dispute/denial notice.

International Transfers of Personal Information

The personal information we collect is stored and/or processed where we or our partners, affiliates, and third-party providers maintain facilities. Please be aware that the locations to which we store, process, or transfer your personal information may not have the same data protection laws as the country in which you initially provided the information. If we transfer your personal information to third parties in other countries: (i) we will perform those transfers in accordance with the requirements of applicable law; and (ii) we will protect the transferred personal information in accordance with this privacy policy.

Cookies

We use “cookies” to collect information about you and your activity across our site. A cookie is a small piece of data that our website stores on your computer, and accesses each time you visit, so we can understand how you use our site. This helps us serve you content based on preferences you have specified.

Children’s Privacy

We do not aim for any of our products or services directly at children under the age of 13, and we do not knowingly collect personal information about children under 13.

Changes to This Policy

Riffo may occasionally make changes and corrections to this Privacy Notice. Please check this Privacy Notice regularly to see the changes and how they may affect you.

Contact Us

For any questions or concerns regarding your privacy, you may contact us using the following details:

support@riffo.ai