Privacy Policy

We collect the following categories of information:

Account Information

When you register, we collect your name, email address, password (hashed), and profile information.

Business Data

Google Maps review content, business name, location, ratings, and review history collected through Outscraper API from publicly available sources.

Usage Data

Information about how you use the platform, including pages visited, features used, query history, and session duration.

Technical Data

IP address, browser type, operating system, device identifiers, and log data collected automatically when you access the Services.

Communication Data

Messages, support requests, and feedback you send to us via email or the platform.

We use the information we collect to:

• Provide, operate, and improve the Rasava AI platform and its features
• Process and analyze review data to generate AI-powered insights and reports for your business
• Manage your account, authenticate your identity, and process payments
• Send transactional communications such as account confirmations, invoices, and service updates
• Send product updates and marketing communications (with your consent where required)
• Monitor platform performance, detect security threats, and prevent fraud or abuse
• Comply with applicable legal and regulatory obligations

We use Outscraper API to collect publicly available Google Maps review data associated with your registered business locations. AI processing is performed using OpenRouter, which provides access to various language model providers.

Review data submitted for AI analysis is processed to generate sentiment scores, categorization, trend summaries, and actionable recommendations. This processing is performed programmatically and is not reviewed by human operators except where required for quality assurance or support.

We do not intentionally use your private business data to train public foundation models. Review data collected from Google Maps consists of publicly available content and is used solely to provide the Services.

We use cookies and similar tracking technologies to maintain your session, remember preferences, and analyze platform usage. Types of cookies we use include:

• Strictly Necessary: Required for authentication and core platform functionality
• Analytics: Used to understand how users interact with the platform (aggregated, anonymized data)
• Preferences: Used to remember your settings and language preferences

You can manage cookie preferences through your browser settings. Disabling certain cookies may affect platform functionality.

We do not sell your personal data. We may share data with:

• Service Providers: Third-party vendors (including Outscraper, OpenRouter, cloud infrastructure, and payment processors) who process data on our behalf under appropriate data processing agreements
• Legal Authorities: When required by applicable law, court order, or regulatory authority
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity

We retain your personal data for as long as your account is active or as necessary to provide the Services. After account deletion, we may retain certain data for up to 12 months for fraud prevention, legal compliance, and dispute resolution purposes.

Review data processed through the platform is retained for the duration of your subscription and up to 6 months after termination, after which it is deleted or anonymized.

We implement industry-standard security measures to protect your data, including:

• Encryption of data in transit (TLS/HTTPS)
• Encryption of sensitive data at rest
• Access controls and authentication requirements for platform access
• Regular security monitoring and vulnerability assessments

No method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to maintaining appropriate protections.

Your data may be processed in countries outside Indonesia, including through our use of cloud infrastructure, AI processing services, and other third-party providers. We ensure that international transfers meet adequate protection standards as required by UU No. 27 Tahun 2022 tentang Perlindungan Data Pribadi.

By using the Services, you acknowledge that your data may be transferred to and processed in other jurisdictions. We take reasonable steps to ensure that any such transfers are conducted with appropriate safeguards.

Subject to applicable law, you have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data, subject to legal retention requirements
• Portability: Request a machine-readable copy of your data
• Objection: Object to certain processing of your personal data
• Withdraw Consent: Withdraw consent for processing activities based on consent, without affecting prior processing

To exercise these rights, contact us at hello@rasava.ai. We will respond within 30 days.

For users in Indonesia, these rights are governed by UU No. 27 Tahun 2022 tentang Perlindungan Data Pribadi (UU PDP). You may file a complaint with the relevant Indonesian data protection authority (Kementerian Komunikasi dan Informatika / KOMINFO or BSSN) if you believe your rights have been violated.

The Services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately and we will take steps to delete the information.

The platform may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review the privacy policies of any third-party services you access.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by displaying a prominent notice on the platform before the changes take effect.

Your continued use of the Services after the effective date of any updated Privacy Policy constitutes your acceptance of the changes.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: hello@rasava.ai
• Platform: Rasava AI

Rasava AI's use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, Rasava AI uses Google OAuth to authenticate users. Data obtained through Google authentication is used solely for the purpose of identifying and authenticating your account and is not shared with third parties for advertising or any purpose unrelated to the Services.

Rasava AI does not use Google user data to develop, improve, or train generalized AI or machine learning models.

In the event of a data breach that may affect your personal information, we will notify affected users within 14 (fourteen) calendar days of becoming aware of the breach, in accordance with applicable law.

Notifications will include a description of the breach, the categories of data affected, the steps we are taking to address the breach, and recommended actions you can take to protect yourself.

We will also notify the relevant Indonesian data protection authority as required by UU No. 27 Tahun 2022 tentang Perlindungan Data Pribadi.