Privacy Policy

This Privacy Policy explains what data the Riano application collects, how it is used, stored, and protected.

1. General Provisions

This Privacy Policy describes what data the Riano application (the “Application”) collects, how it is used, stored, and protected.

By using the Application, the user agrees to the terms of this Privacy Policy.

Data Controller: Raul Ruslanovich Shakurov, Republic of Kazakhstan

Email: rshakurov95@mail.ru

Phone: +7 776 480 9666

2. Data We Collect

2.1 Account Data

When registering and using the Application, the following data may be collected:

• email address;
• name or display name;
• avatar, if provided by the user;
• subscription status, including Premium or trial access.

2.2 User Data Within the Application

Users independently create and manage data within the Application. Depending on the features used, this data may include:

• tasks and lists;
• habits and habit tracking data;
• calendar events;
• notes;
• mood records and comments;
• financial data, including income, expenses, categories, amounts, and currency;
• support requests sent through the Application.

Users may also upload images, for example mood-related photos, if this functionality is available in the Application.

2.3 Technical Data

The following data may be processed automatically:

• IP address;
• HTTP request data;
• User-Agent, including device type, browser, and operating system;
• technical logs and error data.

This data is used solely to ensure the proper functioning, stability, diagnostics, and security of the Application.

3. How We Use Data

Collected data is used for the following purposes:

• providing Application functionality;
• synchronizing user data across devices;
• user authentication and account management;
• password recovery;
• processing support requests;
• ensuring security and preventing abuse;
• maintaining the stable operation of the Application.

4. Data Storage

User data may be stored:

• on Riano backend servers;
• in a PostgreSQL database;
• in object storage services, such as Yandex Cloud Object Storage, if images or files are uploaded by the user.

Data transmission is secured using HTTPS.

Passwords are stored in hashed form using bcrypt or another secure password hashing mechanism.

5. Data Deletion

Users can delete their account through the Application interface, if this functionality is available.

After account deletion is confirmed, the user’s associated personal data is deleted within a reasonable period of time.

Upon deletion, user data is permanently removed and cannot be restored, except where retention is required by applicable law, security obligations, or technical backup procedures.

6. Data Sharing with Third Parties

We do not sell users’ personal data.

User data may be shared with third-party service providers only when necessary for the operation of the Application or when enabled by the user.

6.1 Third-Party Services

The Application may use the following third-party services:

• authentication via Google, if enabled;
• calendar integrations, such as Google Calendar or Yandex Calendar, only if enabled by the user;
• image or file storage via Yandex Cloud or similar infrastructure providers;
• email delivery via an SMTP provider;
• analytics, diagnostics, or crash reporting tools, if used to improve stability and performance.

6.2 Payments

Subscriptions and in-app purchases may be processed via Google Play.

Payment data is handled directly by Google Play and is not stored on Riano servers.

7. Notifications

The Application may send service-related notifications and emails, including:

• registration confirmation;
• password recovery messages;
• important service notifications;
• notifications related to Application functionality, if enabled by the user.

Marketing emails are not used unless the user has explicitly agreed to receive them.

8. Data Security

We implement reasonable technical and organizational measures to protect user data from unauthorized access, loss, misuse, alteration, or disclosure.

However, no method of transmission or storage over the Internet can guarantee absolute security.

9. Age Restrictions

The Application is not intended for use by individuals under the age of 13.

If we become aware that personal data has been collected from a child under the age of 13 without appropriate consent, we will take reasonable steps to delete such data.

10. International Data Transfers

User data may be stored and processed on servers located outside the user’s country of residence.

By using the Application, the user agrees to such data processing and transfers, where permitted by applicable law.

11. Changes to This Policy

We may update this Privacy Policy from time to time.

The current version of this Privacy Policy is always available within the Application or on the official website of the Application.

Continued use of the Application after changes to this Privacy Policy means that the user accepts the updated version.

12. Contact Information

For any questions regarding this Privacy Policy or personal data processing, please contact:

Email: rshakurov95@mail.ru

Phone: +7 776 480 9666