Privacy Policy Ritto
Last updated:
Ritto respects your privacy. This Policy explains how we collect, use, share, and protect personal data when operating our platform and services (“Services”). Questions? Contact: help@ritto.software.
Table of Contents
1. Who We Are
Controller: Ritto LLC, 412 W 7th St STE 1072, Clovis, NM 88101, United States. Website: ritto.software. Email: help@ritto.software.
2. Scope & Definitions
This Policy applies when you visit our website, create an account, connect integrations, use automation/messaging features, or otherwise interact with us.
Personal Data: any information relating to an identified or identifiable natural person (Brazil LGPD). Sensitive Data: special categories such as health, biometrics, union membership, etc.
3. Data We Collect
- Account & profile: name, email, company, role, phone, password (hashed), preferences, permissions.
- Billing/subscription: address, tax/VAT IDs where applicable, plan, payment history, invoices, charge IDs.
- Integrations: API tokens/keys (e.g., payment gateways, email providers, WhatsApp Business API), webhooks, and metadata required to operate automations.
- Usage & logs: IP, device, browser, pages, events, timestamps, errors, performance metrics.
- Communications: message content and metadata sent via the system (email/WhatsApp), approved templates, delivery results.
- Cookies & similar: identifiers, preferences, analytics.
4. How We Use Data
- Provide, maintain, and improve the Services (operations, automations, reporting, support).
- Authenticate users, prevent abuse/fraud, ensure security and integrity.
- Process billing, issue service invoices (NFS-e) where applicable, manage subscriptions and limits.
- Communicate about features, updates, incidents, support, and operational materials.
- Create aggregated analytics and statistics to improve performance and usability.
- Comply with legal and regulatory requirements.
5. Legal Bases (LGPD)
We process data based on: (i) contract performance (providing the Services); (ii) legal/regulatory obligation; (iii) legitimate interests (security, improvement, fraud prevention—subject to balancing tests); (iv) consent where required (e.g., certain cookies/marketing).
6. Sharing with Third Parties
- Processors: hosting, databases, monitoring, email, messaging, analytics, support providers.
- Payments & invoicing: gateways, banks, fiscal platforms (e.g., service invoicing).
- Messaging: providers and APIs (e.g., WhatsApp Business API) to send/receive messages.
- Authorities: when required by law, court order, or to protect rights.
- Corporate transactions: during mergers, acquisitions, or reorganizations with contractual safeguards.
7. International Transfers
We may transfer data to the United States and other countries where we or our providers operate. We implement appropriate safeguards (e.g., standard contractual clauses, risk assessments, and required technical/organizational measures).
8. Retention & Deletion
We retain data for as long as needed for the purposes in this Policy, including legal obligations and audits. After account termination, records may be retained for limited periods. Upon request, we will make reasonable efforts to delete or anonymize data unless legally restricted.
9. Security
We employ reasonable technical and organizational measures (access control, encryption in transit, monitoring). No system is 100% secure; we recommend good practices in your environment, such as credential hygiene, MFA, and permission scoping.
10. Your Rights
Under Brazil’s LGPD, you may request: (i) processing confirmation; (ii) access; (iii) rectification; (iv) anonymization, restriction, or deletion; (v) portability; (vi) information on sharing; (vii) withdrawal of consent; (viii) review of automated decisions where applicable.
To exercise rights, contact help@ritto.software. We will respond within reasonable timeframes.
11. Cookies & Similar Technologies
We use essential cookies to operate the website and optional cookies (e.g., analytics) with your consent. You can manage preferences via the cookie banner or your browser. Disabling cookies may impact functionality.
12. Messaging: WhatsApp & Email
- Opt-in: you are responsible for obtaining and maintaining valid consent and providing opt-out mechanisms.
- Templates & rules: you must comply with Meta/WhatsApp policies and applicable laws (e.g., session windows, template categories, send limits).
- Unsubscribe: messages will include opt-out instructions where applicable.
13. Children & Teens
Our Services are not directed to individuals under 18. We do not knowingly collect data from minors. If you believe a minor provided data, please contact us for removal.
14. Regional Notices
- Brazil (LGPD): we apply LGPD principles, rights, and legal bases.
- EEA/UK (GDPR/UK GDPR): where relevant, we implement transfer safeguards and respect equivalent rights.
- United States: Ritto LLC is US-based; state laws may apply in specific cases.
15. Changes to this Policy
We may update this Policy from time to time. Material changes will be communicated through reasonable means. Continued use after changes take effect indicates awareness of the updated version.
16. Contact
Controller: Ritto LLC — 412 W 7th St STE 1072, Clovis, NM 88101, United States
Email: help@ritto.software
Website: ritto.software
