Data Privacy Policy
Last updated: July 23, 2025
1. Who We Are
Rayzina ("Rayzina," "we," "our," or "us") provides information-technology services to business clients. We respect the privacy of the individuals who represent those clients ("Key Contacts").
2. Scope
This Policy explains how we collect, use, store, and protect the personal information of Key Contacts. Rayzina does not:
- operate a consumer-facing service;
- collect information from minors;
- collect or process customers' health, financial-account, or other sensitive categories of data;
- collect browsing data, cookies, or analytics from visitors to rayzina.com.
3. What Information We Collect
Rayzina maintains only limited business-contact details for the individuals ("Key Contacts") who act on behalf of our B2B customers:
| Data Category | Specific Elements | Purpose |
|---|---|---|
| Business Contact Information | First name, last name, business-email address, business-phone number | Account administration, project coordination, invoicing, and support |
We do not store, copy, transfer, or process any other personal data—such as payment-card information, Social Security numbers, health data, or the end-user or employee data of our customers—on behalf of our customers. This limitation mirrors the Parties' commitment in our Services Agreement.
4. How We Use Information
We process contact data only to:
- provide contracted services;
- send invoices;
- communicate about projects;
- satisfy applicable laws and regulations.
5. Legal Basis (GDPR/UK GDPR)
For contacts in the EEA/UK, Rayzina relies on Legitimate Interests (Art. 6 (1)(f)) to manage the business relationship, balanced against data-subject rights.
6. Data Sharing & "Sales"
Rayzina does not sell, rent, or otherwise monetize personal information. Disclosures are limited to two categories of service-providers:
| Recipient Category | Purpose | Safeguards |
|---|---|---|
| Cloud Productivity & Collaboration Platform | Secure email, document storage, internal project coordination | Data encrypted in transit and at rest |
| Accounting & Invoicing Platform | Generating and sending customer invoices | Data encrypted in transit and at rest |
All Rayzina personnel are bound by strict confidentiality and non-disclosure obligations that mirror the Services Agreement.
7. Opt-In / Opt-Out Rights
- Service Communications – Necessary for contract performance; cannot be opted out while services are active.
- Optional Updates (e.g., product newsletters, event invites) – Sent only if you affirmatively opt in. You may withdraw consent or otherwise opt out at any time by clicking "unsubscribe" or e-mailing privacy@rayzina.com.
Rayzina honors universal opt-out preference signals where applicable state laws require it (e.g., Global Privacy Control).
8. Data Security
Rayzina maintains administrative, technical, and physical measures appropriate to the limited scope of data we hold, including:
- Multi-Factor Authentication (MFA) and conditional-access rules on all cloud services.
- Encryption—TLS for data in transit and AES-256 (or stronger) for data at rest.
- Role-based access controls with least-privilege provisioning and quarterly access reviews.
- Endpoint protection (disk encryption, EDR/antivirus, automatic patching) for company-issued devices.
- Mandatory, annual security & privacy awareness training for all Rayzina personnel.
- 24 / 7 monitoring of authentication events and anomalous activity via centralised logging.
Important disclaimer: While these controls significantly reduce risk, no network or cloud service can be guaranteed 100% secure. Accordingly, Rayzina cannot—and does not—warrant absolute security of any system or data.
9. Data Retention
Contact data is retained for the life of the customer contract plus six (6) years to satisfy tax and accounting obligations, then securely deleted.
10. International Transfers
Where data is transferred outside the country of origin, Rayzina relies on the EU–U.S. Data Privacy Framework or Standard Contractual Clauses, plus additional technical safeguards.
11. No Children's Data
Rayzina's services target corporate entities only. We do not knowingly collect information from anyone under 18. If you believe we have done so, please notify us to delete it.
12. Policy Review & Updates
This Policy is reviewed annually and updated as needed to reflect legal or operational changes. Material changes will be communicated to Key Contacts by e-mail at least 30 days before they take effect.
13. Compliance Audits
Rayzina conducts an annual internal privacy and security audit to verify adherence to this Policy, vendor DPAs, and applicable state laws. Findings are remediated promptly and documented.
14. Contact Us
Questions, requests, or complaints? E-mail: privacy@rayzina.com
You may also have the right to escalate to your local data-protection authority.