Privacy & Data Protection

Raza Engage, Inc. – Privacy Policy

Version 2.0 – GDPR & CCPA Compliant

Effective Date: December 28, 2024
Last Updated: December 28, 2024

1. Introduction

Raza Engage, Inc. ("we," "us," or "our") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our communication services, including SMS, MMS, RCS, WhatsApp Business API, Voice, and related platforms.

By using our services, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect

2.1 Personal Information

We may collect the following personal information:

  • Name, email address, phone number, and business information
  • Account credentials and authentication information
  • Billing and payment information
  • Contact lists and recipient information you provide
  • Communication preferences and settings

2.2 Usage and Technical Information

  • Message content, metadata, and delivery information
  • API usage logs and system interactions
  • Device information, IP addresses, and browser details
  • Usage patterns, feature utilization, and performance metrics
  • Cookies and similar tracking technologies

2.3 Third-Party Information

  • Information from carrier networks and delivery partners
  • Verification data from identity and compliance services
  • Integration data from connected platforms and APIs

3. How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our communication services
  • Account Management: To create and manage your account, process payments, and provide customer support
  • Compliance: To comply with legal obligations, regulatory requirements, and carrier policies
  • Security: To detect, prevent, and respond to fraud, abuse, and security threats
  • Analytics: To analyze usage patterns and improve service performance
  • Communication: To send service updates, security alerts, and administrative messages
  • Marketing: To send promotional communications (with your consent)

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process personal data based on:

  • Contract Performance: To fulfill our contractual obligations to provide services
  • Legitimate Interests: For fraud prevention, security, and service improvement
  • Legal Compliance: To comply with applicable laws and regulations
  • Consent: For marketing communications and optional features

5. Information Sharing and Disclosure

We may share your information in the following circumstances:

5.1 Service Providers

  • Carrier networks and telecommunications providers
  • Cloud infrastructure and hosting services
  • Payment processors and billing services
  • Analytics and monitoring tools

5.2 Legal Requirements

  • To comply with legal obligations and court orders
  • To respond to lawful requests from government authorities
  • To protect our rights, property, and safety
  • To prevent fraud and ensure platform security

5.3 Business Transfers

In connection with mergers, acquisitions, or asset sales, your information may be transferred as part of the business assets.

6. Data Retention

We retain your information for the following periods:

  • Account Information: For the duration of your account plus 7 years for compliance
  • Message Content: Up to 90 days for delivery and support purposes
  • Usage Logs: Up to 2 years for analytics and security
  • Billing Records: 7 years for tax and accounting requirements
  • Compliance Records: As required by applicable regulations

We may retain information longer if required by law or for legitimate business purposes.

7. Data Security

We implement appropriate technical and organizational measures to protect your information:

  • Encryption in transit and at rest
  • Access controls and authentication systems
  • Regular security assessments and monitoring
  • Employee training and confidentiality agreements
  • Incident response and breach notification procedures

However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions for countries with equivalent protection
  • Certification schemes and codes of conduct

9. Your Rights and Choices

9.1 GDPR Rights (EU Users)

  • Access: Request copies of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a structured format
  • Restriction: Limit processing of your data
  • Objection: Object to processing based on legitimate interests

9.2 CCPA Rights (California Users)

  • Know: Request information about data collection and use
  • Delete: Request deletion of personal information
  • Opt-Out: Opt out of the sale of personal information
  • Non-Discrimination: Equal service regardless of privacy choices

9.3 General Rights

  • Update your account information and preferences
  • Opt out of marketing communications
  • Disable cookies through browser settings
  • Request account closure and data deletion

10. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  • Essential Cookies: Required for basic functionality
  • Performance Cookies: To analyze usage and improve services
  • Functional Cookies: To remember your preferences
  • Marketing Cookies: To deliver relevant advertisements (with consent)

You can control cookies through your browser settings, but disabling certain cookies may affect functionality.

11. Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

12. Third-Party Links and Services

Our services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the "Last Updated" date. Your continued use of our services after such changes constitutes acceptance of the updated Privacy Policy.

14. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Raza Engage, Inc.

Email: privacy@razaengage.com

Data Protection Officer: dpo@razaengage.com

15. Supervisory Authority

If you are located in the European Economic Area and believe we have not addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.