Raffiora Privacy Policy
Last updated: March 10, 2026
This Privacy Policy explains how Raffiora collects, uses, stores, and discloses personal information when you use our website, mobile experience, APIs, support channels, and related operational modules.
1. Who We Are
Raffiora is a digital raffle and operations platform that supports account management, raffle participation, internal balance operations, administrative workflows, and service notifications.
2. Data We Collect
- Account data: name, email address, username, profile settings, and authentication metadata.
- Operational data: raffle activity, tickets, wallet/top-up records, support requests, and admin audit events.
- Security and device data: IP address, user-agent, session data, access logs, and security alerts.
- Notification data: device push token(s) used for operational and security notifications.
- Google/YouTube integration data (admin only): channel identifier checks, YouTube video or stream IDs, links, and related execution metadata needed for authorized automation.
3. How We Use Data
- Provide and maintain account access, authentication, and core platform features.
- Process raffle operations, internal balance workflows, and customer support actions.
- Prevent fraud, detect abuse, investigate incidents, and maintain system integrity.
- Send essential service communications, including security and operational notices.
- Comply with legal obligations and valid requests from competent authorities.
4. Google API and YouTube Data Use
Certain admin-only functions use Google APIs and YouTube API Services to support authenticated sign-in, authorized streaming/upload workflows, and operational linking of video results.
- These features are restricted by role-based access controls and are not available to regular users.
- Google API data is processed only for user-facing or security-related functionality requested by the admin workflow.
- We do not sell Google API data and we do not use it for unrelated advertising purposes.
- Our handling of Google API data follows the Google API Services User Data Policy, including Limited Use requirements.
References: Google API Services User Data Policy, YouTube Terms of Service, Google Privacy Policy.
5. Data Sharing and Disclosure
We do not sell personal data. We may disclose limited data only as needed to:
- Operate the service with processors (hosting, transactional email, notification infrastructure, and security tooling).
- Enforce our terms, prevent fraud, or protect the rights, safety, and security of users and Raffiora.
- Comply with applicable law, regulation, legal process, or lawful authority request.
6. Data Retention
We retain data for as long as reasonably necessary for service delivery, security, dispute handling, bookkeeping, and legal compliance. Retention periods vary by data category and legal requirement.
7. Security
We apply technical and organizational safeguards, including role-based access controls, event logging, transport encryption, and operational monitoring. No method of transmission or storage is fully risk-free, but we continually improve controls to reduce risk.
8. Your Privacy Rights
Depending on your location, you may have rights to access, correct, delete, or request a copy of personal data, and to exercise additional rights under applicable law. To submit a request, contact us using the details below.
9. Google Account Controls
If you connected Google services, you can revoke Raffiora access at any time in Google Account Permissions.
10. Children
Raffiora is not directed to children under 13. If we become aware that personal data from a child was collected without appropriate authorization, we will take steps to delete it as required by law.
11. Changes to This Policy
We may update this Privacy Policy from time to time for legal, technical, or operational reasons. The latest version is published at this URL with the updated effective date.
12. Contact
Privacy and data requests: [email protected]
Extended policy page: https://app.raffiora.com/legal/app-privacy