Privacy-by-Design
Private is private. We honestly care about your privacy. Rita App is designed with maximum protection of your
privacy in mind. Here is how:
Your personal data is stored on your device by default.
Independent specialists were consulted to give feedback on the design of our systems. When designing and
throughout
development.
The personal data you collect is fully encrypted, using AES-256 standards.
The principles of Privacy by Design were consulted when developing the App and making architectural choices.
General Data Protection Regulation (GDPR)
According to the GDPR, Rita is the “Data Controller” of your information. The reason is that we have predefined how your data is processed in your phone. This makes us legally hold such a status. However, the personal data you collect from “sources” don’t leave your device without your explicit consent. We only store your login credentials, email, and password (encrypted), and the date and time you create your account. To find out why, go to the “Why we collect...” section. If you want us to remove your email address and, and delete your account this can easily be done through the app in the “Profile” tab. Please contact us at g.schenardi@ritapersonaldata.com if you want to do this through email. We will do this right away. In certain circumstances, you have the following data protection rights:
The right to access.
The right to erasure.
The right of rectification.
The right to object.
The right of restriction.
The right to data portability.
The right to withdraw consent.
With complaints about our privacy practices, you can reach out to the data protection authorities (www.autoriteitpersoonsgegevens.nl) Please reach out to us first, we are very accessible and always like to hear about any concerns to improve.
Why we collect your data & what data we collect
By default, we only store your login credentials, email, and password (encrypted), and the date and time you create your account. Once you choose to request your data from a third-party service, the data is encrypted, processed, and stored on your device not on our servers. Here is an overview of when we do store your data on our servers, and for which purpose:
Account creation:
Data type: Email Address
Purpose: Needed for us to protect your data, and log you into your account.
Control data feature:
Data type: Online Interaction Data from the third-party services you connect to Rita on an aggregate level. For example, 2000 people have looked for red cars this week
Purpose: If you decide to share insights with Rita Partner Brands for rewards, we first aggregate users like you to make your data non-personal and then optimize the value for brands. By doing this we increase the value of your rewards and make sure we don’t share invasive data.
Share data feature:
Data type: Online Interaction Data from the third-party services you connect to Rita on an aggregate level. For example, 2000 people have looked for red cars this week.
Purpose: If you decide to share insights with Rita Partner Brands for rewards, we first aggregate users like you to make your data non-personal and then optimize the value for brands. By doing this we increase the value of your rewards and make sure we don’t share invasive data.
Important Note: You only share data with Rita Partner Brands, if you explicitly choose to do so. Your permission is always asked transparently in the app.
Cash-in Rewards feature:
Data type: Email and Full Name
Purpose: When you cash in your rewards, we need to send it to your email address.
Ask us to remove your data anytime, we will everything delete within 30 days. Send an email to: g.schenardi@ritapersonaldata.com
Third party processing of your data
Rita securely stores your data in an Postgres server provided by AWS located in AWS “Euro data center hub” Paris, France.
We use PayPal Europe Services Ltd for sending rewards, and Senditblue for sending you emails. Therefore we need to share your email address with these companies.
In order to keep optimising our Mobile App, we collect data about crashes and interactions. We use Mixpanel and Firebase to keep track of these.
How to contact us
If you have any questions about Rita’s privacy policy, the data we hold on you or would exercise one of your data protection rights, please do not hesitate to contact us.
g.schenardi@ritapersonaldata.com
+32495387902
Joop Gesinkweg 901, Amsterdam, 1114 AB, The Netherlands
Rita Personal Data Holdings B.V.
Kvk nr: 83844589