Privacy Policy

At Ryspa ("Ryspa", "we", "us", or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.

This policy applies to all Ryspa products and services, including Ideonite, Ryspa Gr0, Ryspa Studio, and our website. By using our Services, you consent to the practices described in this Privacy Policy.

1. Information We Collect

We collect several types of information to provide and improve our Services:

1.1 Information You Provide Directly

  • Account Information: When you register, we collect your name, email address, company name, and password.
  • Payment Information: For paid services, we collect billing information through our secure payment processors. We do not store full credit card numbers on our servers.
  • Profile Information: You may optionally provide additional information such as profile pictures, bio, display name, and preferences.
  • User Content: Any ideas, sketches, tasks, files, documents, images, or other content you create, upload, or store using our Services.
  • Communications: When you contact our support team or participate in surveys, we collect the information you provide.

1.2 Information Collected Automatically

  • Usage Data: Information about how you interact with our Services, including features used, actions taken, time spent, and clickstream data.
  • Device Information: Device type, operating system, browser type and version, IP address, and device identifiers.
  • Log Data: Server logs automatically created when you access our Services, including timestamps, error reports, and system events.
  • Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies to enhance your experience and gather usage data.

1.3 Information from Third Parties

  • Authentication Services: If you sign in using Google OAuth or other third-party services, we receive basic profile information as authorized by you.
  • Analytics Providers: We may receive aggregated analytics data from third-party services that help us understand usage patterns.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Provision: To provide, maintain, and improve our Services, including processing your requests and enabling core functionality.
  • AI and Machine Learning: To train and improve our AI models using anonymized, aggregated data. Your specific proprietary data is never used to train models for other customers.
  • Personalization: To customize your experience, provide relevant recommendations, and remember your preferences.
  • Communication: To send transactional emails, product updates, security alerts, and respond to your inquiries.
  • Analytics and Research: To analyze usage patterns, conduct research, and develop new features and products.
  • Security: To detect, prevent, and respond to fraud, abuse, security risks, and technical issues.
  • Legal Compliance: To comply with legal obligations, enforce our Terms, and protect our rights and the rights of others.
  • Marketing: With your consent, to send promotional communications about new features, products, and special offers. You can opt out at any time.

3. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, including:

  • Cloud hosting and infrastructure (e.g., AWS, Google Cloud)
  • Payment processing (e.g., Stripe)
  • Email delivery and communication services
  • Analytics and monitoring tools
  • Customer support platforms

These providers have access to your information only to perform specific tasks and are obligated to protect your data and not use it for other purposes.

3.2 Legal Requirements

We may disclose your information if required by law or in response to valid legal processes, including:

  • Complying with subpoenas, court orders, or legal processes
  • Responding to government or regulatory requests
  • Protecting the rights, property, or safety of Ryspa, our users, or the public
  • Enforcing our Terms and Conditions
  • Detecting and preventing fraud or security issues

3.3 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred to the acquiring entity. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

3.4 With Your Consent

We may share your information for other purposes with your explicit consent.

4. Data Security

We implement comprehensive security measures to protect your information:

  • Encryption: Data at rest is encrypted using AES-256 encryption. Data in transit is protected using TLS 1.3 or higher.
  • Access Controls: We employ role-based access controls and the principle of least privilege to limit access to your data.
  • Authentication: Multi-factor authentication (MFA) is available and encouraged for all accounts.
  • Infrastructure Security: Our infrastructure is hosted on secure, SOC 2 Type II certified cloud platforms with regular security audits.
  • Monitoring: We continuously monitor for security threats, vulnerabilities, and unauthorized access attempts.
  • Incident Response: We maintain an incident response plan to quickly address and mitigate security breaches.
  • Employee Training: Our team receives regular security and privacy training.

While we strive to protect your information, no security system is impenetrable. We cannot guarantee absolute security but will notify you promptly of any data breach that may affect your rights.

5. Data Retention

We retain your information for as long as necessary to provide our Services and fulfill the purposes outlined in this Privacy Policy. Specific retention periods include:

  • Account Data: Retained for the duration of your account plus 30 days after account deletion, unless longer retention is required by law.
  • User Content: Retained until you delete it or for 30 days after account termination.
  • Logs and Analytics: Typically retained for 12-24 months for security, debugging, and analytics purposes.
  • Payment Records: Retained for 7 years to comply with tax and accounting regulations.
  • Legal Hold: Data subject to legal or regulatory requirements may be retained until such obligations are fulfilled.

6. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information, subject to certain exceptions.
  • Portability: Request a machine-readable copy of your data.
  • Restriction: Request that we limit how we use your information.
  • Objection: Object to our processing of your information in certain circumstances.
  • Withdrawal of Consent: Withdraw consent for processing based on consent (without affecting prior lawful processing).
  • Opt-Out: Unsubscribe from marketing communications at any time.

To exercise these rights, please contact us at support@ryspa.com. We will respond to your request within 30 days.

7. International Data Transfers

Ryspa is based in India. If you access our Services from outside India, your information may be transferred to, stored, and processed in India or other countries where our service providers operate.

We ensure that international data transfers comply with applicable data protection laws, including through the use of Standard Contractual Clauses approved by the European Commission or other appropriate safeguards.

8. Children's Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected information from a child under 16, we will delete it promptly. If you believe we have collected information from a child under 16, please contact us at support@ryspa.com.

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and deliver relevant content. Types of cookies we use include:

  • Essential Cookies: Required for the Services to function properly (e.g., authentication, security).
  • Analytics Cookies: Help us understand how users interact with our Services.
  • Preference Cookies: Remember your settings and preferences.
  • Marketing Cookies: Used to deliver relevant advertisements (with your consent).

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of our Services.

10. Third-Party Links and Services

Our Services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your CCPA rights

To exercise these rights, contact us at support@ryspa.com or call our toll-free number (available on our website).

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR). Our legal basis for processing your information includes:

  • Contractual Necessity: Processing necessary to provide our Services under our Terms.
  • Legitimate Interests: Processing for our legitimate business interests, such as improving our Services.
  • Consent: Processing based on your explicit consent (which you can withdraw at any time).
  • Legal Obligations: Processing required to comply with legal requirements.

You also have the right to lodge a complaint with your local data protection authority.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy on our website with a new "Last Updated" date
  • Sending an email notification to your registered email address
  • Displaying a prominent notice within our Services

Your continued use of our Services after changes become effective constitutes acceptance of the updated Privacy Policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

Ryspa

Privacy Team

Email: support@ryspa.com

Address: Rushikonda, Visakhapatnam

We are committed to working with you to obtain a fair resolution of any privacy concern or complaint.

Last updated: November 29, 2025