Privacy Policy

This Privacy Policy explains what data the Riano application collects, how it is used, stored, shared, and protected.

1. General Provisions

Riano is a work schedule, shift, calendar, and income planning application.

By using the Application, the user agrees to the terms of this Privacy Policy.

Data Controller: Raul Ruslanovich Shakurov, Republic of Kazakhstan

Email: rshakurov95@mail.ru

Phone: +7 776 480 9666

2. Data We Collect

2.1 Account Data

When registering, signing in, and using the Application, the following account data may be collected:

• name or display name;
• email address;
• user account identifier;
• authentication data, including hashed passwords, tokens, email verification status, and Google Sign-In data if used;
• subscription, trial, Premium, and regional access status.

2.2 User-Created App Data

Users create and manage data inside the Application. This may include:

• work schedules;
• shift types, shift names, shift codes, colors, times, rates, and cycles;
• calendar entries, day changes, work logs, and shift status;
• income records, payroll calculations, corrections, currency, and related notes;
• reminder and notification settings;
• app settings, including language, theme, time format, and currency;
• support tickets and messages sent by the user.

2.3 App Activity and Technical Data

The Application and backend may process technical and operational data needed to run and protect the service, including:

• IP address and HTTP request data;
• User-Agent, device type, browser, and operating system information;
• diagnostic logs, error data, and server operation data;
• sync status and timestamps needed to synchronize data across devices.

3. How We Use Data

Collected data is used for the following purposes:

• providing Application functionality;
• creating, authenticating, and managing user accounts;
• confirming email addresses and recovering passwords;
• synchronizing user data across devices;
• saving schedules, shifts, calendar entries, income records, and settings;
• sending service emails and notifications selected by the user;
• processing support requests;
• ensuring security, preventing abuse, and complying with legal obligations;
• maintaining stability, diagnostics, and performance of the Application.

4. Data Storage and Security

User data may be stored on Riano backend servers and in a PostgreSQL database.

Data transmission is secured using HTTPS/TLS.

Passwords are stored in hashed form using bcrypt or another secure password hashing mechanism.

We implement reasonable technical and organizational measures to protect user data from unauthorized access, loss, misuse, alteration, or disclosure. However, no method of transmission or storage over the Internet can guarantee absolute security.

5. Data Sharing with Third Parties

We do not sell users' personal data.

User data may be shared with third-party service providers only when necessary for the operation of the Application, account authentication, email delivery, payment processing, security, or legal compliance.

5.1 Third-Party Services

The Application may use the following third-party services:

• Google Sign-In, if the user chooses Google authentication;
• Google Play Billing, if subscriptions or in-app purchases are used;
• email delivery providers for registration confirmation, password recovery, and service messages;
• hosting, server, database, and infrastructure providers used to operate the backend;
• diagnostics or crash reporting tools, if used to improve stability and security.

Payment data is handled by Google Play. Riano does not store bank card details.

6. Notifications and Emails

The Application may send service-related notifications and emails, including:

• registration confirmation;
• password recovery messages;
• important account or service notifications;
• work shift reminders, if enabled by the user;
• responses to support requests.

Marketing emails are not used unless the user has explicitly agreed to receive them.

7. Data Deletion

Users can delete their account through the Application interface.

After account deletion is confirmed, the account and associated app data are deleted and cannot be restored, except where retention is required by applicable law, security obligations, fraud prevention, payment dispute handling, or technical backup procedures.

Users can also request account deletion by email. Instructions are available at https://riano-app.ru/DeleteAccount.html.

8. Age Restrictions

The Application is not intended for use by individuals under the age of 13.

If we become aware that personal data has been collected from a child under the age of 13 without appropriate consent, we will take reasonable steps to delete such data.

9. International Data Transfers

User data may be stored and processed on servers located outside the user's country of residence.

By using the Application, the user agrees to such data processing and transfers, where permitted by applicable law.

10. Changes to This Policy

We may update this Privacy Policy from time to time.

The current version of this Privacy Policy is always available within the Application or on the official website of the Application.

Continued use of the Application after changes to this Privacy Policy means that the user accepts the updated version.

11. Contact Information

For any questions regarding this Privacy Policy or personal data processing, please contact:

Email: rshakurov95@mail.ru

Phone: +7 776 480 9666