← Back to RiseraLast updated: 16 July 2026
1. Who we are
This notice explains how Riseraai, trading as “Risera” (“we”, “us”), handles personal data collected through our website and Service. Riseraai is the data controller for the information described here. Contact us at [email protected].
2. What we collect
- Email address — provided at checkout so we can identify your purchase and send you a receipt.
- Resume file — uploaded by you. Sent to our AI provider to generate your guide; we do not store your resume after the guide is produced.
- Job description text — pasted by you and used only to generate the guide.
- Purchase records — the payment provider's transaction ID, email, environment, and whether you've generated your guide. Used for entitlement and fraud prevention.
- Basic technical data — request logs, IP address, browser type, errors. Used for security and to keep the Service running.
3. Why we use it
- To provide the Service you purchased (contract performance).
- To process payments and provide receipts (contract performance).
- To prevent abuse and secure the Service (legitimate interests).
- To meet tax and accounting obligations (legal obligation).
4. Who we share it with
- Paddle — our payment provider and Merchant of Record, who processes your payment, handles tax compliance, sends invoices, and handles refunds. See Paddle's privacy notice.
- Our AI provider — receives your resume and job description text only to generate your guide. Not used to train models.
- Hosting and database providers — used to host the site and store purchase records securely.
- Professional advisers and authorities — where required by law.
5. How long we keep it
- Resume and job description — not stored. Passed to the AI, then discarded once the guide is generated.
- Purchase records — kept for as long as required for accounting and tax purposes (typically 6–7 years), then deleted.
- Support emails — kept while the issue is open and for a reasonable period after, then deleted.
6. Your rights
Depending on where you live, you may have the right to access, correct, delete, or port your personal data, restrict or object to processing, withdraw consent, and lodge a complaint with your local data protection authority. Email us at [email protected] and we will respond within one month.
7. Security
We use appropriate technical and organisational measures — encryption in transit, access controls, and least-privilege service credentials — to protect your data. No system is 100% secure; please choose a strong password if you sign in to any related service.
8. Cookies
We use only essential cookies required to run the site. We do not run advertising or marketing trackers. Our payment provider may set cookies during checkout; see their privacy notice for details.
9. International transfers
Some of our service providers are based outside the UK/EEA. Where personal data is transferred, we rely on lawful transfer mechanisms such as Standard Contractual Clauses.
10. Changes
We may update this notice from time to time. The “Last updated” date at the top will change when we do.