Privacy Policy
Rainex is a billing system that allows you to flexibly manage pricing plans, receive payments from your customers for your product or service based on a subscription model or at a time, as well as analyze the entire cash flow of your product.
Rainex.io (“Rainex”, “we”, “our”, “us”) is committed to keeping information of our users (‘you”, “your”) private in accordance with law. Our Privacy Policy is designed to help you understand how, what personal data and for what purposes Rainex collects, holds, uses, discloses and safeguards.
We inform you that by visiting or using our website (the “Website”) or using our services (the “Services”) and any other content, features and related services, you agree to the collection of personal information and non-personal information. “Personal Information” means any information about an identifiable individual and information which can be reasonably used to identify an individual. We may collect this information directly from you or from third parties, in certain cases. “Non-Personal Information” means information that cannot be used to personally identify you. That type of data is collected automatically. Information acquired is limited to only information required to provide Services to visitors and end users and as needed to support Service usage.
This Privacy Policy includes important information about your personal data and we encourage you to read it carefully.
Rainex treats your personal data responsibly, so if you have any questions or concerns please contact support@rainex.io.
Information We Collect and Process
Depending on your interaction with us, we may collect non-personal and personal information including:
Information Collected Automatically
We want to inform you that whenever you visit our Service, some data is automatically collected, such as Log data – information that your browser sends to us:
- IP address
- Device identifiers
- Web browser identifier
- Internet service provider
- Browsing and search history of your interaction with our website from analytics services
- Page view statistics
- Usage information
- Operating system
- Unique pseudonyms and other persistent and probabilistic identifiers that can be used to identify a particular individual or device
- Cookies and other tracking technologies (e.g. web beacons, pixel tags, SDKs, etc.).
A “cookie” is a small data file transferred to your computer’s hard drive. It allows a Website to respond to you as an individual by collecting and storing information about your preferences in order to adapt its operation to your needs, likes, and dislikes.
“Cookies” are identifiers that allow us to recognize your browser or mobile device and to find out how, when and how many users visit the pages and features of our Services.
Cookies help us to improve our Website, deliver better and more personalized Services, look for possible fraudulent activity, and better understand the sources of traffic to our Website.
We use cookies that identify your device solely to customize your web interface. Accepting cookies does not provide us access to your computer or any personal information about you, other than the information you choose to share. Other servers cannot read them, and they cannot be used to spread the virus. Also, we do not use so-called “surveillance” cookies that track your activity elsewhere on the Web.
You can opt out of disabling cookies by activating the appropriate setting in your browser. If you have not configured your browser settings so that it refuses cookies, our system automatically issues cookies when you log in to our Website.
You have the option to either accept or refuse the cookies, and know when a cookie is being sent to your computer. If you choose to refuse our cookies, you may not be able to use some parts of our Services.
Information Collected Directly from You
We receive Personal Information directly from you when you provide us with such. Information, including without limitation the following:
- Contact information: first and last name, email address, telephone number, mailing address
- Company information: company name, location data, job title, position, industry, area of work, VAT number (optionally)
- Account information: username, account code (can include email addresses)
- Payment related information: billing address, cardholder details, card number, bank account number, payment method information, information about that transaction and other financial information
Information Received from Third Party Sources
Some third parties, such as service providers or platforms, provide us with Personal Information about you:
- Account information for third party services. We maintain the pages of our company and our products on various third-party platforms, such as LinkedIn, Twitter and other social networking services. When you interact with a third-party service when using our Services, for example, use to log-in to our Services or share content from our pages through third-party social networks, this third-party service will send us information about you, for example, information from your public profile, if the third-party service and your account settings allow such a sharing. The information we receive will depend on the policies and your account settings with the third party service. When you interact with our pages on those third-party platforms, the third-party’s privacy policy will govern your interactions on the relevant platform.
- Campaign performance data. This includes the operation of third-party applications used for the sole purpose of tracking and analyzing your interaction with our Services, the effectiveness of advertising platforms, and so on to measure and improve the performance of our Website.
We are not responsible for how any third-party application collects, processes, uses, stores, or discloses your Information. The way the Information is processed by a third-party application is regulated by the policies of the third-party application. We disclaim any liability or damages that may arise as a result of the practices, actions or omissions of any third-party application that you integrate.
Legal Basis for Collecting Personal Information
Whenever we collect your Personal Information, we do so on the following legal grounds:
- Your consent to the collection and use of your personal information to interact with our Services
- Pre-Contractual and contractual business relationships
- Legal obligations compliance
- Legitimate business interests
- Any other legal basis relevant to the specific personal information as permitted under applicable law.
Children’s Privacy
Our Website and the Services we offer are directed to the general public, but are not directed at persons under the age of 13. We do not knowingly collect or solicit Information from anyone under the age 13 years nor do we have any reasonable grounds for believing that children under the age of 13 are accessing our Website or using our services.
If we do learn that we have inadvertently gathered Personal Information from a person under the age of 13 without the consent of a parent or a guardian, we will promptly delete that Information. If you believe that we might have collected such Information, please contact us at support@rainex.io.
Use of Personal and Non-Personal Information
The collected Personal and Non-Personal Information is used for the following purposes:
- Consent. We process Personal Information based on the consent you expressly grant to us at the time we collect such data. When we process Personal Information based on your consent, it will be expressly indicated to you at the point and time of collection.
- Legitimate interests. We use your Information to process registrations and complete transactions. Also to provide, improve and develop our products, Services and Website.
- Contractual obligations. We use your Information to perform our contractual obligations that enable us to provide you with the Services. If you do not provide us with Personal Data that we need to perform our contract with you, you will not be able to use some or all portions of the Services that require such data.
- Legal compliance. We collect or process Information to comply with business and legal obligations.
- Security and auditing. We collect and process some Information to ensure data security, provide fraud alerting, and auditing.
- Sales and marketing activities. We use your Information for marketing communications, contextualizing and personalizing marketing content, sending information and updates, analyzing your usage and behavior patterns, and so on.
- Other Processing Grounds. From time to time we may also need to collect and process Information for various purposes like API Keys and login credentials, certificate signing requests, business and research, recruitment, etc.
Disclosure of Personal and Non-Personal Information
While we make every effort to preserve your privacy, we may need to disclose personal information when required or permitted by law.
According to the Policy, we will not sell or rent information about you, and we will not disclose information about you in a manner inconsistent with this Privacy Policy, except as required by law or government regulation. We will not share the Personal Information we collect about you with any third party for their own marketing purposes without your consent.
Where reasonable, we will promptly notify you of any potential disclosure so that you can take appropriate protective measures.
If we do not request and you do not give your additional consent in writing, we will not disclose your Personal and Non-Personal Information to third parties, except in the following cases:
- Service providers. We use the Services of other companies that help us with our business operations. Therefore, we may need to share Personal Information with them to provide certain services. We use a third-party payment processor to process payments made to us. We currently use Stripe to process our payments. Stripe may use Personal Information it collects when processing our payments at our direction and for certain additional purposes. The Information Stripe receives in connection with the processing of our payments is subject to Stripe’s Privacy Policy. Unless we inform you otherwise, such third parties have no right to use the Personal Information we share with them beyond what is necessary for them to provide the tasks and services on our behalf.
- Professional advisors. We may need the help of lawyers, accountants, auditors, insurers and other professional consultants. We may share your Personal Information with them, where necessary in the course of the professional services that they render to us.
- Regulators, law enforcement authorities and courts. We may disclose any Information about you to law enforcement, other government officials, any lawsuit or any other third party in the event of any request from them for Information or, if necessary, to protect you, third parties or our rights, as well as in court or as part of litigation, arbitration or other dispute resolution mechanism. We may disclose your Information to federal, state, provincial, or local officials in order to, and only to the extent necessary, inform the official of activities that may constitute, or may have constituted, a violation of any criminal law or to assist the official in investigating or prosecuting a violation of criminal law.
- Potential affiliates, investors or acquirers. In the case of establishing a branch, we may disclose your Personal Information, as it is legally part of the company, which also helps us in providing you with our Services. We may also disclose your Information to potential investors as part of reporting. In the event of business transactions such as a merger, consolidation or acquisition, we will make reasonable efforts to require the recipient to comply with this Privacy Policy with respect to your Personal and Non-Personal Information. In case of insolvency, bankruptcy or receivership, your Personal Information may be made available or otherwise transferred to the new controlling entity, in accordance with applicable law. The basis for disclosure of information in this event is the fact that Customer Information is one of the company’s assets subject to evaluation and further transaction. If the above changes result in a material change to this Privacy Policy, we will notify you by email or by posting a prominent notice on the Website before any Personal Information is transferred and becomes subject to another Privacy Policy.
Except as set forth above, you will be notified when your Personal Information may be shared with third parties in personally identifiable form, and will be able to prevent the sharing of this information.
If our Information practices change at any time in the future, we will post the Policy changes to the Website so that you may opt out of the new Information practices.
Retention of Information
We process Personal Information only for the purposes for which it was collected and in accordance with this Privacy Policy.
We use and retain your Personal Information for as long as necessary to fulfill the purposes for which it is being processed, to carry out legitimate business interests, as well as on the basis of applicable legal requirements, such as applicable statute of limitations. The Information may be retained in copies made for backup and business continuity purposes for additional time.
We regularly review our data collection, storage, and processing practices to ensure that we only collect, retain, and process the minimum Personal Information necessary for the purpose collected.
After expiry of the applicable retention periods, your Personal Information will be deleted. If there is any data that we are unable, for technical reasons, to delete entirely from our systems, we will take appropriate measures to prevent any further use of such data.
Security of Information
We take organizational, technical and administrative measures designed to protect Information and follow generally accepted industry standards to ensure that the Personal Information we hold is protected from misuse, interference, loss, unauthorized access, modification or disclosure using various methods
Security safeguards include data encryption, firewalls, and physical access controls to building and files.
However, these measures do not guarantee that your Information will not be accessed, disclosed, modified or destroyed as a result of breach of such firewalls and protected server software. By using our Services, you confirm that you understand and agree to assume these risks.
You are responsible for the use and safeguarding of any login ID that we issue to you to use our Service, and any associated passwords. To help us protect your Personal Information, we recommend that you provide protection against unauthorized access to your login ID and password, to other sensitive data related to your account with us, as well as to your computer and systems. Your account is protected by your account password, and we urge you to take steps to ensure the security of your Personal Information by using a strong password, not disclosing your password, not using the same password with other sites or accounts, and logging out of your account after each use.
If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of your account has been compromised), please immediately notify us of the problem by contacting us in any way available to you from the “Contact Us” section on our Website.
If we learn of a security systems breach, then we may attempt to notify you electronically so that you can take appropriate protective steps.
Links to Third Party Website
Our Website and Services may contain links to other websites or applications. These are third-party websites or applications, and we are not responsible for the privacy practices employed by them or for the information or content they contain. Therefore, our Privacy Policy does not apply to your use of a third-party website or application accessed by selecting a link on our Website or through our Services. When you go to a third-party website or application, your access, use and collection of personal and non-personal information is carried out in accordance with the privacy policy of this website or application. We encourage you to read the privacy policies of the websites and applications you visit before proceeding to use them.
International Information Transfers
We are a global business, so Personal Information can be stored and processed in any country where we do business, where our service providers do business, or if you use an international payment method or a financial partner service, in the countries in which this payment method or financial partner operates. We may transfer your Information to countries other than your own country, therefore, the storage, processing and protection of your Information takes place in accordance with the applicable laws of each specific country. We will take reasonable measures to ensure that your Personal Information is subject to appropriate safeguards. In certain situations, we may be required to disclose your Information in response to legitimate requests from officials (for example, law enforcement or security agencies).
Your Rights and Choices Regarding the Use of Your Personal Information
You may have certain rights relating to your Personal Information, subject to local data protection law.
In accordance with applicable law, our Services provide you with access to a wide range of rights directly related to your Personal Information, which include:
- Access to Stored Personal Information
- Obtaining a Copy of your Personal Information
- Correction of inaccurate Information or addition of any incomplete information
- Objection to the processing of your Personal Information under certain circumstances
- Restriction by you of the Information received and processed by us
- Exporting your Personal Information in a structured format according to your request
- Withdrawing of consent to the processing of Personal Information
- Deleting your Personal Information
You also have the right to prevent us from contacting you for marketing purposes at any time. When we send an advertising message, you can opt out of further advertising messages by following the unsubscribe instructions provided in each advertising email. Please note that despite the advertising preferences you indicate, we may continue to send you administrative emails, including, for example, periodic updates to our Privacy Policy.
To exercise your rights, you can contact us at the email address listed in the “Contact Us” section below or on our Website. We will review your requests and respond within the time limits set by applicable law. We are committed to comply with all applicable legal requirements related to your requests.
Please note that we are not legally obligated to delete or restrict the use of your Information in a way that prevents us from fulfilling our legal obligations to our customer or interferes with our reasonable record keeping necessary to demonstrate compliance with our contracts and applicable laws. We may use any aggregated data obtained from your Personal Information or incorporate it after you update or delete it, but not in a way that identifies you personally.
Changes to This Privacy Policy
The use of the Information we collect now is subject to the Privacy Policy in effect at the time of the use of such information. At our discretion, we may change our Privacy Policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. We will notify you of significant changes to our privacy policy by sending a notification to the primary email address specified in your account or by placing a prominent notice on our Website. Significant changes will go into effect 30 days following such notification. Non-material changes or clarifications will take effect immediately.
If required by law, we will obtain your permission or give you the opportunity to opt in to or opt out of, as applicable, any new uses of your Personal Information. Continued use of our Website and Service after notification of such changes will mean your acceptance of such changes and consent to comply with the terms and conditions of such changes. You also agree that electronic disclosures and notices have the same meaning and effect as if we had provided you with a paper copy.
We encourage you to periodically check the Website and this privacy page for the latest information about our Privacy Policy.
Contact us
For any questions or suggestions regarding our Privacy Policy, the privacy practices of our Website, or your engagement with us, please contact us at support@rainex.io.
Jurisdiction-specific provisions
GDPR
The rights of users of the European Economic Area (EEA) and some other territories are regulated in accordance with the General Data Protection Regulation.
Our Legal Basis: If you interact with our Services from the European Territories, our legal basis for collecting and using the personal data described above will depend on the personal data concerned and the specific context in which we collect it. For these purposes, “European Territories” means the European Economic Area, Switzerland and the United Kingdom. For the purpose of this Website Privacy Policy, the term “European Territories” shall continue to include the United Kingdom.
References to “Personal Information” in this Privacy Policy are equivalent to “personal data” governed by European data protection legislation.
For purposes of European data protection legislation Rainex.io is the controller of personal data that we collect and process for our own business purposes. We take appropriate technical and organizational measures to ensure that data collection is minimized, and also, by default, we process only personal data which are necessary for each specific processing purpose.
We comply with GDPR in the following parameters:
- Designating responsibility for data protection to our team.
- Maintaining detailed documentation of data, its collection, use and storage.
- Implementation of technical and organizational security measures.
- Conclusion of a Data Processing Agreement contracts in place with third parties we contract to process data for us.
We collect and process your personal data based on the consent that you give freely and specifically, being fully informed. The stage of consent to the processing of personal data is clearly distinguishable from the other matters and formulated as clearly as possible. Children under the age of 13 can give consent only with the permission of their parent or guardian. We also keep documentary evidence of consent, which you can withdraw at any time.
We collect and process your personal data in accordance with our legal bases. The documentation and transparency of our legal bases are reflected in the Privacy Policy.
We collect and process data only if at least one of the following applies:
- The data subject has consented to the processing of his personal data for one or more specific purposes.
- Processing is necessary to fulfill the contract governing the provision of Services by us, or to take the measures that you request before registering for the Services.
- The processing is necessary to comply with the legal obligation to which we are subject as data controllers.
- Processing is necessary to contact you, to create anonymous data, to comply with requirements, fraud prevention and security.
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official powers entrusted to us as a data controller.
- Processing is necessary for the purposes of legitimate interests pursued by us as a controller or a third party, except in cases where such interests overlap with the interests or fundamental rights and freedoms of the data subject that require the protection of personal data, in particular when the data subject is a child.
When we act as a data controller, we may use your personal information for reasons not described in this Privacy Policy where permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.
European Residents’ Privacy Rights. If you are a resident of a European Territory, in accordance with the General Data Protection Regulations (“GDPR”), you are provided with certain rights that you can ask us to take in relation to your personal data that we store in the capacity of a data controller. You may have the right to exercise the following rights:
- The right to be provided with transparent information about our collecting and processing of your personal data
- The right of access to personal data and information
- The right to rectification and supplementation of your personal data
- The right to erasure of your personal data (the right to be forgotten)
- The right to restrict the processing of your personal data
- The right to data portability in machine-readable copy format to you or to a third party of your choice
- The right to object to certain uses of your personal data (e.g. direct marketing)
- The right to refuse to be subjected to automated decision-making, including profiling
Whenever we transfer your personal information out of the EEA to countries not deemed by the European Commission to provide an adequate level of personal information protection, the transfer will be based:
- Pursuant to the recipient’s compliance with standard contractual clauses, EU-US Privacy Shield, or Binding Corporate Rules
- Pursuant to the consent of the individual to whom the personal information pertains
- As otherwise permitted by applicable EEA requirements.
If you have any questions regarding our processing of your data, you can submit a request by sending us an email at support@rainex.io. We will consider your request in accordance with applicable laws.
CCPA
This section supplements the information contained in this Privacy Policy and applies solely to visitors, users and others who are residents of the State of California, as defined in section 17014 of Section 18 of the California Code of Regulations. If you are a consumer located in California, we collect and process your Personal Information in accordance with the California Consumer Privacy Act (“CCPA”).
We collect information that identifies, relates to, describes, refers to, is capable of being associated with, or could reasonably be linked, directly or indirectly, to a specific consumer or device. Below we list the CCPA categories of Personal Information we collect about consumers. Please note that Personal Information in certain categories may overlap with Non-Personal Information.
Category | Type of Identifiers We Collect | Collected |
Identifiers | First and last name, email address, device IP address, cookie string data, pseudonymous data, operating system, your device type, mobile device’s identifier and any other unique identifier that can be assigned to any device by third parties and with cross-references for device recognition | Yes |
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) | Name, address, telephone number, business address, business telephone number, education, employment, employment history, bank account number, credit card number, debit card number or other payment account information | Yes |
Biometric information | – | No |
Commercial information | Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies | Yes |
Protected classification characteristics under California or federal law | – | No |
Internet or other similar network activity | Browsing history, search history, information on a consumer’s interaction with a website, application logs, device data and registration, social media account information or advertisement | Yes |
Geolocation data | Non-precise geolocation derived from IP address | Yes |
Sensory data | Audio, electronic, visual, or similar information | Yes |
Professional or employment-related information | Current or past job history, including details about the employer (industry, name, company location, company domain or URL), and employee (positions held, duration of employment, and office location of the company where the employee worked) | Yes |
Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R Part 99)) | – | No |
Inferences drawn from other personal information | Profile reflecting a person’s preferences, behavior, and attitudes | Yes |
According to CCPA, Personal Information does not include:
- Publicly available information from state archives
- De-identified or aggregated consumer information
- Health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data
The collection and processing of Personal Information at the same time as CCPA is regulated by a number of sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.
We obtain the categories of Personal Information listed above from the following sources:
- Directly and indirectly from consumers, third party data providers, ad exchanges, publishers and supply-side platforms and audience partners
- Directly and indirectly from activity on our Website
- From social media websites, such as LinkedIn, Twitter, Facebook, YouTube, etc
- Directly from browsing history on our digital properties
We collect the categories of Personal Information for the following business purposes:
- Fulfillment of contractual obligations with our customers
- Provision, improvement and development of our Services and Website
- Compliance with business and legal obligations
- Processing registrations and completing transactions
- Ensuring the security and protection of the rights of our customers
- Sales and marketing activities
- Business and research purposes
- Recruitment activities
- Other possible initiatives of the company
We may disclose your Personal Information to a third party for business purposes.
We disclose the following categories of Personal Information for our business purposes:
- Identifiers
- California Customer Records personal information categories
- Commercial information
- Internet or Similar Network Activity
- Geolocation
We disclose your Personal Information for a business purpose to service providers and other third parties that we use to provide our Services, as well as to provide certain functionality available to our users.
Please note that our disclosure of your Information does not constitute a sale of your data, nor do we consider that the performance of our Services constitutes a ‘sale of personal information’ under the CCPA.
Subject to certain limitations, the CCPA provides California consumers with certain rights regarding their personal information. Rights that California residents may have under the California Consumer Protection Act:
Right to Know (Shine the Light.) You have the right to request that we disclose certain information to you about our collection, use and disclosure of your Personal Information over the past twelve (12) months. As soon as we receive and confirm your verifiable consumer request, we will inform you:
- The categories of Personal Information we have collected about you
- The categories of sources for the Personal Information we collected about you;
- Our business or commercial purposes for which this personal information was collected or disclosed
- The categories of third parties with whom we disclosed this Personal Information
Data Portability Right. You have the right to a portable copy of your Personal Information that you have provided to us. This means that you have the right to request that we move, copy or transmit your Personal Information stored on our servers or in the information technology environment to you personally or to the servers or in the information technology environment of another service provider.
Right to Delete. You have the right to request that we delete any of your Personal Information that we have collected from you and stored, subject to certain exceptions. As soon as we receive and confirm your verifiable consumer request, we will remove (and direct our service providers to remove) your Personal Information from our records, unless an exception applies. We may reject your request for deletion if the retention of Information is necessary for us or our service providers for:
- Completion of any of our contract with you
- Detection and suppression of malicious, misleading, fraudulent or illegal actions, as well as subsequent prosecution of persons responsible for such activities
- Exercising free speech, ensuring the right of another consumer to exercise their rights to free speech or exercise another right provided for by law
- Compliance with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.)
- Engaging in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent
- Compliance with legal obligations
Right to opt-out. We do not sell Personal Information as defined by the CCPA and have not done so in the last 12 months
Right to Non-Discrimination. In exercising your privacy rights conferred by the California Consumer Privacy Act, you have the right not to receive discriminatory treatment by us. We will not:
- Deny you goods or services
- Charge you different prices or rates for goods or services
- Provide you a different level or quality of goods or services
- Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services
If you are a California resident, to exercise the access, data portability, and deletion rights described above, please submit the consumer request to us via email to support@rainex.io.
You may also designate an agent to exercise your privacy rights on your behalf. In order to designate an authorized agent to submit a request on your behalf, you must provide a valid power of attorney, the requester’s valid government-issued identification, and the authorized agent’s valid government-issued identification. An authorized agent may make a request on your behalf by contacting us via email to support@rainex.io. We may still require you to directly verify your identity and confirm that you provided the authorized agent permission to submit the request.
After receiving your request, we will confirm receipt of your request by sending you an email. In order to fulfill your request, we may need to verify your identity to the degree of certainty required by law to ensure your safety. If we are unable to verify your identity after a good faith attempt, we may reject the request, and if so, we will explain the reason for the denial. After identification, we will fulfill your request within 45 days. If we need more time, we will inform you about the reason and the extension period in writing.
The format of our responses to you regarding collected or disclosed Personal Information will be provided in a user-friendly format that should allow you to seamlessly transfer information from one organization to another.
We do not charge a fee for processing or responding to your verifiable consumer request, unless it is excessive, repetitive or manifestly unfounded. If we determine that a request requires payment, we will inform you why we made this decision and provide you with an estimate of costs before completing your request.
