DATA AND PRIVACY

Rippl's Data Sub-Processor List

At Rippl, we value transparency and are committed to protecting your data. We work with carefully selected third-party service providers, known as sub-processors, to help us deliver our services efficiently and securely. Below is a comprehensive list of the sub-processors we currently use:

Checkout Limited

  • Purpose: Payment Processing
  • Data: Personal identification data: full name, phone number, email address and address; Financial data: full card pan, card expiry, cvc, bank account number
  • Location: UK
  • Transfer Mechanism: EU Adequacy
  • Supplemental Measures: Not required
  • Contact Details: dpo@checkout.com; Wenlock Works, Shepherdess Walk London, N1 7BQ, United Kingdom

Freshworks Inc. (Freshdesk)

  • Purpose: Customer support services
  • Data: Data of users and end-users, contained in electronic data, text, messages or other materials, submitted to the Service(s) by Customer through Customer’s Account in connection with Customer’s use of the Service.
  • Location: EEA
  • Transfer Mechanism: SCCs
  • Supplemental Measures: Data is encrypted at rest and in transit.
  • Contact Details: dpo@freshworks.com; 2950 S.Delaware Street, Suite 201, San Mateo, CA 94403, USA

Google LLC

  • Purpose: Analytics tracking
  • Data: Session statistics, approximate geolocation, browser and device information.
  • Location: USA
  • Transfer Mechanism: UK SCCs
  • Supplemental Measures: Encryption of data in transit and at rest for Google Cloud Platform.
  • Contact Details: DPA; Data Transfer Mechanisms; https://cloud.google.com/; Googleplex. 1600 Amphitheatre Pkwy, Mountain View, CA 94043, USA

Sinch Sweden AB (Mailjet)

  • Purpose: Email and newsletter services provider
  • Data: Name and email addresses
  • Location: Sweden
  • Transfer Mechanism: N.A.
  • Supplemental Measures: Not required
  • Contact Details: dpo@sinch.com; Lindhagensgatan 112 112 51 Stockholm, Sweden

Microsoft Corporation

  • Purpose: Microsoft Azure hosting services
  • Data: Hosting of Customer data as part of the service.
  • Location: UK
  • Transfer Mechanism: UK SCCs
  • Supplemental Measures: Encryption of data in transit and at rest.
  • Contact Details: Encryption; DPA; https://aka.ms/privacyresponse; One Microsoft way, Redmond, Washington 98052, USA

Runa Network Limited (WeGift)

  • Purpose: Voucher provider
  • Data: Name and email addresses
  • Location: UK
  • Transfer Mechanism: EU Adequacy
  • Supplemental Measures: Privacy Policy
  • Contact Details: privacy@run.io; 1st Floor, 1 Suffolk Way, Sevenoaks, TN13 1YL

GoGift

  • Purpose: Voucher provider
  • Data: Name and email addresses
  • Location: Denmark
  • Transfer Mechanism: EU Adequacy
  • Privacy Policy
  • Contact Details: privacy@gogift.com; GoGift, Mosedalvej 14, 2500 Valby, Denmark

We regularly review and update this list to ensure it remains accurate and current. Our team carefully vets each sub-processor to ensure they meet our stringent data protection and security standards. We appreciate your trust in us and remain dedicated to safeguarding your information.

If you have any questions or concerns about our sub-processors or data handling practices, please don’t hesitate to contact us at: dpo@rippl.work.

Changelog:

28th August 2024 – Added GoGift to enable global vouchers for international customers.

Last updated:

29th August 2024