Rivogram Privacy Policy

1. Introduction

This Privacy Policy sets out how we, Rivogram Messenger Inc. (“Rivogram”), use and protect your personal data that you provide to us, or that is otherwise obtained or generated by us, in connection with your use of our cloud-based messaging services (the “Services”). For the purposes of this Privacy Policy, ‘we’, ‘us’ and ‘our’ refer to Rivogram, and ‘you’ refers to you, the user of the Services.

1.1 Privacy Principles

Rivogram has two fundamental principles when it comes to collecting and processing private data:

  • We don't use your data to show you ads.
  • We only store the data that Rivogram needs to function as a secure and feature-rich cloud service.

1.2 Terms of Service

This Privacy Policy forms part of our Terms of Service, which describe the terms under which you use our Services and which are available at https://rivogram.com/tos. This Privacy Policy should therefore be read in conjunction with those terms.

2. Legal Ground for Processing Your Personal Data

We process your personal data on the ground that such processing is necessary to further our legitimate interests (including: (1) providing effective and innovative Services to our users; and (2) to detect, prevent or otherwise address fraud or security issues in respect of our provision of Services), unless those interests are overridden by your interest or fundamental rights and freedoms that require protections of personal data.

3. What Personal Data We Use

3.1 Basic Account Data

Rivogram is a communication service. You provide your mobile phone number and basic account data (which may include profile name, profile picture and about information) to create a Rivogram account.

To make it easier for your contacts and other people to reach you and recognize who you are, the screen name you choose, your profile picture(s), and your username on Rivogram are always public. We don't want to know your real name, gender, age or what you like.

We do not require your screen name to be your real name. Note that users who have you in their contacts will see you by the name they saved and not by your screen name. This way your mother can have the public name 'Johnny Depp' while appearing as 'Mom' to you and as 'Boss' to her underlings at work.

3.2 Your Email Address

When you enable 2-step verification for your account or store documents using the Rivogram Passport feature, you can opt to set up a password recovery email. This address will only be used to send you a password recovery code if you forget it. That's right: no marketing or “we miss you” bullshit.

3.3 Your Messages

3.3.1 Cloud Chats

Rivogram is a cloud service. We store messages, photos, videos and documents from your cloud chats on our servers so that you can access your data from any of your devices anytime without having to rely on third-party backups. All data is stored heavily encrypted and the encryption keys in each case are stored in several other data centers in different jurisdictions. This way local engineers or physical intruders cannot get access to user data.

3.3.2 Secret Chats

Secret chats use end-to-end encryption. This means that all data is encrypted with a key known only to you and the recipient. There is no way for us or anybody else without direct access to your device to learn what content is being sent in those messages. We do not store your secret chats on our servers. We also do not keep any logs for messages in secret chats, so after a short period of time we no longer know who or when you messaged via secret chats. For the same reasons secret chats are not available in the cloud — you can only access those messages from the device they were sent to or from.

3.4 Phone Number and Contacts

Rivogram uses phone numbers as unique identifiers so that it is easy for you to switch from SMS and other messaging apps and retain your social graph. We ask your permission before syncing your contacts.

We store your up-to-date contacts in order to notify you as soon as one of your contacts signs up for Rivogram and to properly display names in notifications. We only need the number and name (first and last) for this to work and store no other data about your contacts.

4. Keeping Your Personal Data Safe

4.1 Storing Data

If you signed up for Rivogram from the UK or the EEA, your data is stored in data centers in the Netherlands. These are third-party provided data centers in which Rivogram rents a designated space. However, the servers and networks that sit inside these data centers and on which your personal data is stored are owned by Rivogram. As such, we do not share your personal data with such data centers. All data is stored heavily encrypted so that local Rivogram engineers or physical intruders cannot get access.

4.2 End-to-End Encrypted Data

Your messages, media and files from secret chats, as well as the contents of your calls and the data you store in your Rivogram Passport, are processed only on your device and on the device of your recipient. Before this data reaches our servers, it is encrypted with a key known only to you and the recipient. While Rivogram servers will handle this end-to-end encrypted data to deliver it to the recipient – or store it in the case of Rivogram Passport data, we have no ways of deciphering the actual information. In this case, we neither store nor process your personal data, rather we store and process random sequences of symbols that have no meaning without the keys which we don’t have.

5. Processing Your Personal Data

5.1 Our Services

Rivogram is a cloud service. We will process your data to deliver your cloud chat history, including messages, media and files, to any devices of your choosing without a need for you to use third-party backups or cloud storage.

5.2 Safety and Security

Rivogram supports massive communities which we have to police against abuse and Terms of Service violations. To improve the security of your account, as well as to prevent spam, abuse, and other violations of our Terms of Service, we may collect metadata such as your IP address, devices and Rivogram apps you have used, history of username changes, etc.

5.3 Spam and Abuse

To prevent phishing, spam and other kinds of abuse and violations of Rivogram’s Terms of Service, our moderators may check messages that were reported to them by their recipients. If a spam report on a message you sent is confirmed by our moderators, your account may be limited from contacting strangers – temporarily or permanently.

5.6 No Ads Based on User Data

Unlike other services, we don't use your data for ad targeting or other commercial purposes. Rivogram only stores the information it needs to function as a secure and feature-rich cloud service.

6. Bot Messages

Rivogram has an API that allows third-party developers to create bots. Bots are apps that look like special Rivogram users: you can talk to them from your chat list, add them to groups or use a special “inline” interface to access their features.

7. Third Party Payment Services

Rivogram does not process payments from users and instead relies on different payment providers around the world. It is the payment providers that handle and store your credit card details. Neither Rivogram nor the merchants on the platform have access to this information.

8. Who Your Personal Data May Be Shared With

8.1 Other Rivogram Users

Other users of our Services with whom you choose to communicate with and share certain information, who may be located outside the EEA.

8.2 Rivogram’s Group Companies

To provide, improve and support our Services, we may share your personal data with our parent company, Rivogram Group Inc.

8.3 Law Enforcement Authorities

If Rivogram receives a valid order from the relevant judicial authorities that confirms you are a suspect in a case involving criminal activities that violate the Rivogram Terms of Service, we will perform a legal analysis of the request and may disclose your IP address and phone number to the relevant authorities.