Privacy Policy

Last Update Auguest 9, 2025

1. Purpose and Scope

In its everyday business operations RAIA makes use of a variety of personal data, including data about:

  • Current, past, and prospective employees
  • Customers
  • Users of and visitors to its websites
  • Subscribers
  • Other stakeholders

In collecting and using this data, RAIA is subject to privacy and data protection legislation in multiple jurisdictions.

The purpose of this policy is to set out the relevant legislation and to describe the steps RAIA is taking to ensure compliance. This policy applies to all systems, people, and processes that constitute RAIA’s information systems, including board members, directors, employees, suppliers, and other third parties who have access to RAIA systems.

Use of RAIA’s services is also governed by our [Terms & Conditions], which include important disclaimers regarding AI-generated outputs, messaging responsibilities, acceptable use, and limitations of liability. This Privacy Policy and our Terms should be read together.

2. Applicable Privacy Legislation

RAIA complies with all applicable privacy laws, including but not limited to:

  • Argentina – Personal Data Protection Law (PDPL)
  • Australia – Privacy Act; Privacy and Personal Information Protection Act
  • Brazil – General Data Protection Law (LGPD)
  • Canada – Personal Information Protection and Electronic Documents Act (PIPEDA)
  • Canada (Quebec) – Act respecting the protection of personal information in the private sector
  • European Union – General Data Protection Regulation (GDPR)
  • Singapore – Personal Data Protection Act
  • United Kingdom – UK GDPR Data Protection Act
  • United States (California) – California Consumer Privacy Act (CCPA)

RAIA ensures that its compliance with applicable legislation is clear and demonstrable at all times.

3. Definitions

  • Personal Data: Any information that can identify a natural person or be linked to them directly or indirectly.
  • Personal Data Principal: The individual to whom the personal data relates (also known as “data subject”).
  • Processing: Any operation performed on personal data, such as collection, storage, use, disclosure, or deletion.
  • Data Controller: The party that determines the purposes and means of processing personal data.
  • Data Processor: The party that processes personal data on behalf of a data controller.

4. Customer Data Controller Responsibilities

When customers use RAIA’s platform to send emails, SMS/MMS messages, voice calls, or live chat messages, the customer acts as the “data controller” under applicable law.

  • RAIA processes contact data solely on the customer’s instructions as a “data processor.”
  • Customers are solely responsible for obtaining all legally required consents before sending communications.
  • Customers must comply with all applicable privacy, data protection, and anti-spam laws, including (but not limited to) the TCPA, CAN-SPAM Act, GDPR, CASL, and ePrivacy Directive.
  • RAIA is not responsible or liable for the content of customer messages, compliance with consent requirements, or any legal violations resulting from customer communications.

5. AI-Generated Personal Data

RAIA’s AI-powered tools may generate outputs that contain personal data or inferences about individuals based on inputs provided by customers.

  • Customers are solely responsible for reviewing any AI-generated content before using it.
  • RAIA does not guarantee the accuracy, legality, or appropriateness of AI outputs.
  • Customers must ensure that the use of AI outputs complies with all applicable privacy, data protection, and ethical standards.

6. Principles for Processing Personal Data

RAIA adheres to the following privacy principles:

  • Lawfulness, fairness, and transparency – Data must be processed legally, fairly, and transparently.
  • Purpose limitation – Data must only be collected for specified, legitimate purposes.
  • Data minimization – Only the data necessary for the purpose is collected.
  • Accuracy – Data must be accurate and kept up to date.
  • Storage limitation – Data must be retained only as long as necessary.
  • Integrity and confidentiality – Data must be secured against unauthorized access, loss, or damage.

7. Rights of Individuals

Personal data principals have the following rights, subject to applicable law:

  • Right to be informed
  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Rights related to automated decision-making and profiling

Requests to exercise these rights can be made by contacting support@raiaai.com. RAIA will respond within the timeframes required by applicable law.

8. Lawfulness of Processing

Personal data will only be processed when there is a lawful basis, including:

  • Consent
  • Performance of a contract
  • Compliance with a legal obligation
  • Protection of vital interests
  • Public interest tasks
  • Legitimate interests

9. Privacy by Design

RAIA incorporates privacy considerations into all new or significantly changed systems that collect or process personal data, including conducting privacy impact assessments where necessary.

10. Contracts for Data Processing

All third-party relationships involving the processing of personal data will be governed by a written contract containing the terms required by applicable privacy legislation.

11. International Transfers

International transfers of personal data will be assessed to ensure they comply with applicable laws and are subject to appropriate safeguards, such as adequacy decisions or standard contractual clauses.

12. Data Breach Notification

RAIA will promptly notify relevant supervisory authorities, customers, and data principals (where required) in the event of a data breach that poses a risk to individual rights and freedoms, following applicable law.

13. Compliance Measures

RAIA ensures compliance by:

  • Maintaining a clear legal basis for all data processing activities
  • Training staff on privacy responsibilities
  • Providing clear procedures for handling data subject requests
  • Conducting regular reviews of privacy practices
  • Documenting all processing activities

14. Exceptions

Business needs, local laws, or regulations may require exceptions to this policy. Any exceptions will be approved by RAIA management and documented.

15. Enforcement

Violations of this policy may result in disciplinary action, termination of services, and/or notification to relevant authorities.

16. Responsibility, Review, and Audit

RAIA reviews this policy at least annually and updates it to maintain compliance with applicable laws and best practices.

Contact:
For questions about this policy or to exercise your rights, email support@raiaai.com.

Arise

raia is a leading AI Agent platform that empowers organizations to build, train, and deploy intelligent Agents that automate complex tasks across support, sales and operations.

✨️ A Constellation Software Company

EmailCall Us

Powered by raia AI.

Copyright © 2025 raia LLC. All Rights Reserved.