This Privacy Policy explains how [LEGAL ENTITY NAME] ("we", "us") collects, uses and protects personal data when you use RapidTok (the "Service"). It applies to visitors and account holders.
To provide and secure the Service, process subscriptions, send transactional email (e.g. verification and password-reset messages via Resend), respond to support requests, and improve the product. [List each purpose you actually rely on.]
Where GDPR applies, we process data under [contract necessity, legitimate interests, consent for analytics/marketing, and legal obligation]. [Confirm the bases per purpose.]
We share data with service providers who process it on our behalf, including [Stripe (payments), Resend (email), your hosting/database provider, Google (analytics/ads)]. We do not sell your personal data. [Confirm your sub-processors.]
We use essential cookies for authentication and [analytics/advertising] cookies where permitted. [Describe your cookie/consent approach — a consent banner may be required for EU visitors.]
We keep account data while your account is active and for [period] afterwards, then delete or anonymise it, except where longer retention is legally required.
Depending on where you live, you may have rights to access, correct, delete, or export your data, and to object to or restrict certain processing (GDPR), or to opt out of "sale"/"sharing" (CCPA). To exercise these, contact team@rapidtok.com. [Confirm how you handle and verify these requests.]
We use reasonable technical and organisational measures, including hashed passwords and encrypted connections. No method is 100% secure. [Describe your safeguards.]
[If data leaves the user's region — e.g. EU to US via Stripe/hosting — describe the safeguards, such as Standard Contractual Clauses.]
The Service is not directed to children under [16/13] and we do not knowingly collect their data.
We may update this policy; material changes will be notified by [email / in-app notice].
Questions or requests? Email team@rapidtok.com or use our contact page.