Privacy Policy

1. What This Privacy Policy Regulates

This Privacy Policy (hereinafter referred to as the "Policy") applies to all information, including personal data as defined by applicable law (hereinafter referred to as "Personal Information"), that the Redner B2B API Platform (hereinafter referred to as the "Platform") may receive about you when you use the Platform and its services. Hereinafter it's implied that whenever the Platform receives, collects or processes such information, The Platform Author (hereinafter referred to as the "Company") also may receive, collect or process this information.

Information about the Platform can be found on the website https://b2b.rednerapp.com and other websites owned by the Company. This Policy also applies to cases where the Company processes information under any agreements or contracts made with you in connection with your use of the Platform.

The Company may also receive Personal Information from other sources with publicly available personal data.

2. Who Processes the Information

To enable your use of the Platform, your Personal Information is collected and used by the Company.

3. Purpose of This Policy

Protecting your Personal Information and privacy is of utmost importance to the Company. Therefore, when you use the Platform, the Company protects and processes your Personal Information in strict compliance with applicable law.

To fulfill the obligation to protect your Personal Information, this Policy aims to transparently inform you about the following:

• Why and how the Platform collects and uses ("processes") your Personal Information when you use the Platform.
• The role and responsibilities of the Company that determines why and how your Personal Information is processed.
• The tools available to you to limit the amount of Personal Information collected by the Platform.
• Your rights regarding the processing of your Personal Information.

4. What Personal Information About You Does The Platform Collect?

The personal information collected during the operation of the Platform may vary depending on whether you use your account to access them or not.

If you log into your account, the personal information collected about you while using the Platform may be linked and associated with other personal information collected by the Platform within your account usage (for example, your identity details, contact information, if provided to the Platform).

The Platform and the Company do not verify the personal information you provide, except in cases stipulated by the user agreement. They also cannot assess its accuracy or whether you have the legal capacity to provide such information. However, the Platform and the Company assume that you provide accurate and sufficient personal information and that you update it in a timely manner.

Categories of Personal Information The Platform May Collect During Your Use:

1. Account information provided by you during registration, such as your organization name, email address, password.
2. API usage data including API keys, request logs, job records, and processing results.
3. Billing information including deposit transactions, expense records, and payment details processed through payment systems.
4. Electronic data (HTTP headers, IP addresses, hardware and software information, including Device IDs).
5. Date and time of access to the Platform.
6. Information about your activity while using the Platform (e.g., API calls, uploaded media files, processing jobs, webhook configurations).
7. Other information required for processing in accordance with the terms governing the use of the Platform, including crash logs and other diagnostics information.

The Platform does not intentionally collect sensitive personal information (such as racial origin, political views, health-related data, or biometric information).

The Platform does not collect data with the intention of creating a "profile" of the user to an extent that could significantly impact your rights and freedoms under applicable law.

5. Legal Basis and Purpose of Processing Your Personal Information

The Platform and the Company are not entitled to process your Personal Information without sufficient legal grounds. Therefore, they process your Personal Information only if:

• The processing is necessary for fulfilling agreements between you and the Company, such as the terms of use of the Platform.
• The processing is necessary to comply with legal obligations.
• When required by applicable law, the processing is necessary to protect the Company's legitimate interests, provided that such processing does not significantly affect your interests, fundamental rights, or freedoms.

The Platform processes your Personal Information for the following purposes:

• Providing you access to the Platform and API services
• Processing your API requests and delivering results
• Managing your account, API keys, and billing
• Communicating with you to fulfill agreements and process inquiries
• Understanding how you interact with the Platform to improve services
• Enhancing the quality of API services and processing results
• Sending informational and promotional messages (with opt-out option)
• Developing new products, tools, and offers
• Protecting your rights and the Company's rights
• Collecting and processing statistical data for research
• Detecting security threats and assessing reliability
• Processing payments through payment systems

6. Sharing Your Personal Information

The Company may share your Personal Information with:

• Service providers: Third-party services that help operate the Platform (e.g., AWS for infrastructure, Stripe for payment processing)
• Legal authorities: When required by law or to protect legal rights
• Business transfers: In connection with mergers, acquisitions, or asset sales

The Company does not sell your Personal Information to third parties.

7. Data Security

The Company implements appropriate technical and organizational measures to protect your Personal Information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Secure API key storage using SHA-256 hashing
• Regular security audits and monitoring
• Access controls and authentication mechanisms
• Secure payment processing through Stripe

8. Where Your Personal Information is Stored and Processed

Your Personal Information will be stored and processed in the United States of America using AWS infrastructure.

For users from the USA: The Platform records, systematizes, accumulates, stores, updates (modifies), and retrieves personal data of American citizens using databases located within the United States of America.

9. How Long We Retain Your Personal Information

The Company will store your Personal Information for as long as necessary to fulfill the purpose for which it was collected or to comply with legal and regulatory requirements.

• Account information: Retained while your account is active
• API usage data and job records: Retained for 30 days after job completion
• Billing records: Retained for 7 years for tax and accounting purposes
• Media files: Retained for 30 days, can be deleted upon request

If you wish to have any of your Personal Information removed from the Platform's databases, you can send a request to rednerapp@gmail.com.

10. Your Rights

If applicable law provides, you have the right to access your Personal Information processed by the Platform under this Policy.

If you believe that any information the Platform holds about you is incorrect or incomplete, you can log into your account and update your Personal Information, or send a request to rednerapp@gmail.com.

If applicable law provides, you also have the right to:

• Access the information the Platform holds about you and request an archive of your Personal Information
• Request the deletion of your Personal Information or part of it, as well as withdraw consent for its processing
• Request restrictions on the processing of your Personal Information
• Object to the processing of your Personal Information, if provided by applicable law
• Data portability: Request a copy of your data in a structured, machine-readable format

The Company will fulfill such requests in accordance with applicable law.

11. Updates to This Policy

This Policy may be amended. The Company reserves the right to make changes at its discretion, including but not limited to cases where such changes are due to amendments in applicable legislation or updates to the Platform.

The Company commits not to introduce significant changes that impose additional obligations or restrictions on your rights established in this Policy without notifying you. Such notifications may appear at the website https://b2b.rednerapp.com before such changes take effect or may be sent via other communication channels (e.g., email if you have provided your contact details).

If the European Commission decides that the country offers an adequate level of protection and an adequacy decision is adopted, personal data can be transferred to another company or organisation in that non-EEA country without the data exporter, i.e. the entity transferring the data, being required to provide further safeguards or being subject to additional conditions related to international transfers. In other words, the transfers to an “adequate” non-EEA country will be comparable to a transfer of data within the EEA. However, your organisation will still have to comply with the other basics principles of the GDPR, as explained above. Adequacy decisions may cover a country as a whole or be limited to a part of it (i.e. to a region). Adequacy decisions may cover all data transfers to a country or be limited to some types of transfers (e.g. in one sector).

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your Personal Information, please contact us at rednerapp@gmail.com.