Privacy Policy

1. Introduction

Ragenaizer ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our enterprise workspace platform, including Vision, Chat, Drive, and HRMS services.

By using our services, you consent to the data practices described in this policy. If you do not agree with these practices, please do not use our services.

2. Data We Collect

2.1 Information You Provide

• Account Information: Name, email address, password, organization name
• Profile Data: Job title, department, phone number, profile picture
• Payment Information: Billing address, payment method details (processed by secure payment providers)
• Communications: Messages, files, and content shared through our services
• HRMS Data: Employee records, payroll information, attendance data, leave records (as provided by your organization)

2.2 Information Collected Automatically

• Device Information: Device type, operating system, browser type, unique device identifiers
• Usage Data: Features used, time spent, actions taken within the platform
• Log Data: IP address, access times, pages viewed, referring URLs
• Location Data: General location based on IP address (for geofencing features in attendance)

2.3 Information from Third Parties

• Single Sign-On (SSO) providers if configured by your organization
• Integration partners when you connect third-party services

2.4 Facebook & Social Media Integrations

If you connect Facebook pages through our CRM module, we may receive:

• Page Information: Facebook Page name, Page ID, and page access tokens
• Lead Data: Name, email, phone number, and other form fields submitted through Facebook Lead Ads by prospective customers
• Ad Campaign Data: Ad ID, form ID, and campaign identifiers associated with leads

This data is collected only when an authorized administrator explicitly connects a Facebook Page and is used solely for managing your sales pipeline within our CRM. We do not sell, rent, or share Facebook user data with any third parties beyond what is described in this policy. You may disconnect Facebook pages at any time through CRM Settings, and all associated page tokens will be revoked.

2.5 LinkedIn Integrations

If you connect your LinkedIn account or LinkedIn Company Pages through our CRM module, we may receive:

• Profile Information: LinkedIn profile name, headline, company, and profile URL
• Lead Data: Name, email, phone number, job title, company name, and other form fields submitted through LinkedIn Lead Gen Forms by prospective customers
• Campaign Data: Campaign ID, form ID, and advertising account identifiers associated with leads
• Company Page Data: Company Page name, ID, and follower statistics (when Company Page access is granted)

This data is collected only when an authorized administrator explicitly connects a LinkedIn account or Company Page and is used solely for managing your sales pipeline within our CRM. We do not sell, rent, or share LinkedIn user data with any third parties beyond what is described in this policy. You may disconnect LinkedIn integrations at any time through CRM Settings, and all associated access tokens will be revoked.

3. How We Use Your Data

We use your information to:

Purpose	Legal Basis
Provide and maintain our services	Contract performance
Process payments and billing	Contract performance
Send service notifications	Contract performance
Improve and personalize services	Legitimate interest
Provide customer support	Contract performance
Ensure security and prevent fraud	Legitimate interest
Comply with legal obligations	Legal requirement
Send marketing communications	Consent (opt-in)

4. Data Sharing

We do not sell your personal information. We may share data with:

4.1 Service Providers

Third-party vendors who assist in operating our services (hosting, payment processing, analytics). These providers are bound by confidentiality agreements.

4.2 Your Organization

If you use our services through an organization, administrators may access your data according to their organizational policies.

4.3 Legal Requirements

We may disclose data when required by law, court order, or government request, or to protect our rights and safety.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred. We will notify you of any such change.

5. Data Storage & Security

We implement industry-standard security measures to protect your data:

• Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
• Access Controls: Role-based access with multi-factor authentication
• Infrastructure: Secure cloud infrastructure with SOC 2 compliance
• Monitoring: 24/7 security monitoring and intrusion detection
• Backups: Regular encrypted backups with disaster recovery

For self-hosted deployments, data security is managed according to your organization's infrastructure and policies.

6. Data Retention

We retain your data as follows:

• Active Accounts: Data retained while your account is active
• Deleted Accounts: Data deleted within 30 days of account closure
• Backups: Removed from backups within 90 days
• Legal Requirements: Some data may be retained longer if required by law
• Aggregated Data: Anonymized analytics may be retained indefinitely

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a portable format
• Restriction: Request limitation of data processing
• Objection: Object to certain processing activities
• Withdraw Consent: Withdraw previously given consent

To exercise these rights, contact us at privacy@ragenaizer.com. We will respond within 30 days.

8. Cookies & Tracking

We use cookies and similar technologies to:

• Remember your login and preferences
• Understand how you use our services
• Improve performance and user experience

Types of Cookies

Type	Purpose	Duration
Essential	Required for basic functionality	Session
Functional	Remember preferences	1 year
Analytics	Usage statistics	2 years

You can manage cookies through your browser settings. Disabling cookies may affect functionality.

9. Facebook & LinkedIn Data Use & Deletion

When you use our Facebook Lead Ads or LinkedIn Lead Gen Forms integrations, the following applies:

9.1 Facebook

• Purpose Limitation: Facebook data is used exclusively to populate leads in your CRM pipeline. We do not use Facebook data for advertising, profiling, or any purpose beyond CRM lead management.
• Data Retention: Facebook lead data is retained as long as the lead record exists in your CRM. You may delete individual leads at any time.
• Disconnection: When you disconnect a Facebook Page from the CRM, we revoke the stored page access token. Existing leads created from that page remain in your CRM until manually deleted.
• Data Deletion Requests: To request deletion of all Facebook-related data, email privacy@ragenaizer.com with the subject "Facebook Data Deletion Request". We will process your request within 30 days and confirm deletion.

9.2 LinkedIn

• Purpose Limitation: LinkedIn data is used exclusively to populate leads in your CRM pipeline. We do not use LinkedIn data for advertising, profiling, or any purpose beyond CRM lead management.
• Data Retention: LinkedIn lead data is retained as long as the lead record exists in your CRM. You may delete individual leads at any time.
• Disconnection: When you disconnect a LinkedIn account or Company Page from the CRM, we revoke the stored access and refresh tokens. Existing leads created from LinkedIn remain in your CRM until manually deleted.
• Data Deletion Requests: To request deletion of all LinkedIn-related data, email privacy@ragenaizer.com with the subject "LinkedIn Data Deletion Request". We will process your request within 30 days and confirm deletion.
• LinkedIn API Compliance: We comply with LinkedIn's API Terms of Use. We do not scrape, cache beyond permitted periods, or use LinkedIn data to build competing services or contact databases outside our CRM.

10. Children's Privacy

Our services are not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we discover that we have collected data from a child, we will delete it promptly.

If you believe a child has provided us with personal information, please contact us immediately.

11. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs) for EU data transfers
• Data Processing Agreements with all service providers
• Compliance with applicable data protection laws

For self-hosted deployments, data remains within your chosen infrastructure.

12. Policy Changes

We may update this Privacy Policy periodically. Changes will be communicated through:

• Updated "Last Modified" date on this page
• Email notification for material changes
• In-app notification when you next log in

We encourage you to review this policy regularly.

13. Contact Us

For privacy-related inquiries or to exercise your rights:

• Privacy Team: privacy@ragenaizer.com
• Data Protection Officer: dpo@ragenaizer.com
• General Support: support@ragenaizer.com
• Website: https://ragenaizer.com