This Privacy Notice explains how Referrali ("we", "us") collects, uses, and protects personal data when you use our website, dashboards, and referral services (the "Service"). We act as a data controller for our customers' account data and as a data processor for data submitted by our customers about their own users.
1. Data we collect
- Account data: name, email, phone, password hash, organization, role.
- Billing data: plan, billing address, last 4 of payment method (processed by our payment provider Paddle).
- Program data: referrers, referred contacts, links, rewards, conversions.
- Usage data: device, browser, IP, pages visited, actions taken, logs.
- Cookies: session, security, preferences, and basic analytics.
2. How we use data
- To provide, secure, and improve the Service.
- To process payments and prevent fraud.
- To send transactional emails (verification, receipts, notifications).
- To send service updates and, with consent, marketing communications.
- To comply with legal obligations and enforce our Terms.
3. Legal bases
We process data based on (a) performance of the contract with you, (b) our legitimate interests in operating and securing the Service, (c) your consent where required (e.g. marketing), and (d) legal obligations.
4. Sharing
We share data only with vetted processors who help us run the Service: hosting/infrastructure, email/SMS delivery, payments (Paddle as Merchant of Record), analytics, and customer support. We do not sell personal data.
5. International transfers
Where data is transferred outside your country, we rely on appropriate safeguards such as Standard Contractual Clauses.
6. Retention
We keep personal data for as long as the account is active and as required to provide the Service or comply with law. You may request export or deletion at any time; some data may be retained for legitimate business or legal reasons.
7. Your rights
Subject to applicable law, you have the right to access, correct, delete, restrict, or port your data, and to object to certain processing or withdraw consent. To exercise these rights contact privacy@referrali.com.
8. Security
We use encryption in transit, access controls, isolated environments, and regular monitoring. No system is 100% secure; please use a strong, unique password and enable two-factor authentication where available.
9. Children
The Service is not intended for individuals under 18.
10. Changes
We will notify you of material changes by email or in-app. The "Last updated" date above reflects the latest revision.
11. Contact
For any privacy question email privacy@referrali.com.