📄 Privacy Policy

Last updated:

1. Introduction

Ripple Mission ("we", "us", "our") is committed to protecting the privacy of users ("you", "your"). This Privacy Policy describes how we collect, use, and protect your personal information in accordance with the General Data Protection Regulation (GDPR - EU 2016/679).

2. Data Controller

Ripple Mission
Email: [email protected]
Contact channel: email only

3. Data Collected

We collect the following categories of personal data:

3.1 Data provided directly by you:

• Registration data: username, email, password (encrypted)
• Profile data: biography, skills to teach/learn, preferences
• Participation data: event registrations, chat, messages
• Payment data: processed through Stripe (we do not store card data)

3.2 Data collected automatically:

• Technical data: IP address, browser, device
• Usage data: pages visited, interactions with the platform
• Cookies: for functionality and analytics (see Cookie section)

4. Legal Basis for Processing

We process your personal data on the basis of:

• Consent: for sending newsletters and marketing communications
• Contract execution: to provide you with Ripple Mission services
• Legal obligation: to comply with tax and accounting obligations
• Legitimate interest: to improve our services and prevent fraud

5. Purpose of Processing

We use your data to:

• Create and manage your account
• Provide you with access to events and platform features
• Process payments and subscriptions
• Send you important notifications (confirmations, reminders)
• Improve your user experience (recommendations, matching)
• Analyze platform usage and optimize services
• Send you marketing communications (only with your consent)

6. Data Sharing

We do not sell your personal data to third parties. We share data only with:

• Service providers: Stripe (payments), AWS (hosting), email providers
• Other users: your public profile information (bio, skills) is visible to other users
• Competent authorities: if required by law

7. Your GDPR Rights

Under GDPR, you have the right to:

• Access: obtain a copy of your personal data
• Rectification: correct inaccurate or incomplete data
• Erasure: request deletion of your data ("right to be forgotten")
• Portability: receive your data in a structured format
• Objection: object to processing for marketing purposes
• Consent withdrawal: at any time, without affecting the lawfulness of previous processing

To exercise your rights, contact us at: [email protected]

8. Data Retention

We retain your data for the period necessary to provide services and comply with legal obligations. After account deletion, data is deleted within 90 days, unless legal obligations require otherwise.

9. Data Security

We adopt appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or destruction. Passwords are encrypted with secure algorithms (bcrypt).

10. Cookies

We use essential cookies for platform functionality (authentication, sessions) and analytical cookies to improve services. You can manage cookie preferences in your browser settings.

11. Changes to this Privacy Policy

We may update this Privacy Policy periodically. We will notify you of any substantial changes via email or platform notification.

12. Contacts