Privacy Policy

Last Updated: January 2025

RIFT RAVEN INFORMATION TECHNOLOGY SERVICES - SOLE PROPRIETORSHIP L.L.C. ("RiftRaven," "we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.riftraven.com or engage our services.

1. Information We Collect

1.1 Personal Information You Provide

We collect personal information that you voluntarily provide to us, including:

  • Identity Information: Full name, job title, company name
  • Contact Information: Email address, phone number, business address
  • Account Information: Username, password, account preferences
  • Payment Information: Billing address, payment card details (processed securely through our payment processor)
  • Communication Data: Content of emails, contact form submissions, support requests, and other correspondence
  • Service-Related Information: Technical requirements, system access credentials (provided for service delivery), project specifications

1.2 Information Collected Automatically

When you visit our website, we automatically collect certain information, including:

  • Device Information: IP address, browser type and version, operating system, device type
  • Usage Information: Pages visited, time spent on pages, referring website, click patterns, date and time of visits
  • Location Information: General geographic location based on IP address

2. How We Collect Information

We collect information through:

  • Direct Interactions: Contact forms, consultation requests, service inquiries, account registration, and direct communications
  • Payment Processing: When you make payments through our website or invoiced services
  • Cookies and Tracking Technologies: Cookies, web beacons, and similar technologies (see Section 10)
  • Analytics Tools: Third-party analytics services that help us understand website usage
  • Service Delivery: Information necessary to provide our IT services

3. Purpose of Data Collection

We use your personal information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our IT infrastructure services, consulting, and support
  • Communication: To respond to inquiries, provide customer support, send service updates, and deliver important notices
  • Payment Processing: To process payments, invoices, and manage billing
  • Account Management: To create and manage your account, authenticate access, and maintain records
  • Business Operations: To manage our business, including quality assurance, training, and internal reporting
  • Marketing: To send promotional materials about our services (with your consent where required)
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Security: To protect our website, services, and users from fraud, unauthorized access, and other security threats
  • Analytics: To analyze website usage and improve user experience

4. Legal Basis for Processing (GDPR)

For individuals in the European Economic Area (EEA), we process personal data based on:

  • Contract Performance: Processing necessary to fulfill our contractual obligations to you
  • Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our services and marketing
  • Consent: Where you have given explicit consent for specific processing activities
  • Legal Obligation: Processing necessary to comply with legal requirements

5. Payment Processing

We use Stripe, Inc. ("Stripe") as our payment processor to handle online payments. When you make a payment:

  • Your payment card details are collected and processed directly by Stripe using industry-standard encryption and security measures
  • RiftRaven does not store complete credit card numbers on our servers
  • Stripe may collect additional information as described in their privacy policy
  • Stripe's handling of your payment information is governed by their Privacy Policy

6. Third-Party Services

We may share your information with third-party service providers who assist us in operating our business:

  • Payment Processors: Stripe for secure payment processing
  • Analytics Providers: Google Analytics and similar tools to analyze website traffic and usage patterns
  • Cloud Services: Hosting and infrastructure providers
  • Communication Tools: Email service providers for transactional and marketing communications
  • Professional Services: Legal, accounting, and other professional advisors

These third parties are contractually obligated to protect your information and use it only for the purposes we specify.

7. Data Sharing and Disclosure

We may disclose your personal information in the following circumstances:

  • With Your Consent: When you have given explicit permission
  • Service Providers: To third parties who perform services on our behalf
  • Legal Requirements: To comply with applicable laws, court orders, or legal processes
  • Protection of Rights: To protect our rights, privacy, safety, or property, or that of our users or the public
  • Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets

We do not sell your personal information to third parties.

8. Data Retention

We retain your personal information for as long as necessary to:

  • Fulfill the purposes outlined in this Privacy Policy
  • Provide our services and maintain our business relationship
  • Comply with legal obligations and regulatory requirements
  • Resolve disputes and enforce our agreements

Specific retention periods:

  • Account Information: Retained while your account is active and for seven (7) years after account closure for legal and tax purposes
  • Transaction Records: Retained for seven (7) years as required by UAE commercial law
  • Marketing Preferences: Retained until you withdraw consent or request deletion
  • Website Analytics: Typically retained for twenty-six (26) months

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete information
  • Right to Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restriction: Request limitation of processing of your personal data
  • Right to Data Portability: Request transfer of your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing purposes
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise these rights, please contact us at [email protected]. We will respond to your request within thirty (30) days.

10. Cookies and Tracking Technologies

10.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website. They help us provide and improve our services.

10.2 Types of Cookies We Use

  • Essential Cookies: Necessary for website functionality and security
  • Performance Cookies: Help us understand how visitors use our website
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Collect anonymous statistics about website usage

10.3 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

  • View and delete cookies
  • Block all or certain cookies
  • Set preferences for certain websites

Note that disabling certain cookies may affect website functionality.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit using TLS/SSL
  • Secure storage with access controls
  • Regular security assessments and updates
  • Employee training on data protection
  • Incident response procedures

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

12. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information. If you believe we have collected information from a child, please contact us immediately.

13. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence, including countries that may have different data protection laws. When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Standard contractual clauses approved by relevant authorities
  • Adequacy decisions recognizing equivalent protection levels
  • Binding corporate rules for intra-group transfers

14. UAE Data Protection Compliance

This Privacy Policy is designed to comply with Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data ("UAE Data Protection Law") and its implementing regulations. In accordance with UAE law:

  • We process personal data lawfully, fairly, and transparently
  • We collect data for specified, explicit, and legitimate purposes
  • We ensure data accuracy and keep it up to date
  • We retain data only as long as necessary
  • We implement appropriate security measures

15. GDPR Compliance (For EU/EEA Residents)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

  • You have the right to lodge a complaint with your local data protection authority
  • We will only transfer your data outside the EEA with appropriate safeguards
  • We will obtain your explicit consent for any processing that requires it under GDPR
  • We will notify you and the relevant authority of any data breach that poses a risk to your rights and freedoms

16. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read the privacy policies of any linked websites you visit.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date at the top
  • Sending email notification for significant changes (where appropriate)

Your continued use of our services after any changes indicates acceptance of the updated Privacy Policy.

18. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

RIFT RAVEN INFORMATION TECHNOLOGY SERVICES - SOLE PROPRIETORSHIP L.L.C.

Data Protection Contact

Email: [email protected]

Website: www.riftraven.com

Location: Abu Dhabi, United Arab Emirates

We will respond to your inquiry within thirty (30) days.