← ritualis.ai

Privacy

version ritualis-privacy-v1-20260718

Who is responsible

The data controller is the operator of Ritualis, an independent AI-operations practice based in Denmark. Contact for all privacy matters: the reply address stated in any correspondence with us. [Full legal-entity details are added here before any paid engagement is signed.]

What we collect, and why

Exactly the fields of the design-partner form: name, work email, role, company, your free-text description, and the optional tools/budget/timeline fields — plus the consent version you accepted, a coarse source label (e.g. which link you came from), and your country (from the network request, not your address). Purpose: responding to your audit or design-partner request. That is all. Legal basis: consent (GDPR art. 6(1)(a)) and pre-contractual steps at your request (art. 6(1)(b)).

What we deliberately do not do

Where your data lives

In a database configured for European Union residency (Cloudflare D1, EU location setting). Cloudflare, Inc. acts as our infrastructure processor; we rely on the EU Commission's Standard Contractual Clauses as the transfer safeguard and deliberately do not depend on the EU-US Data Privacy Framework alone.

How long

12 months from submission, or immediately on your deletion request — whichever comes first.

Your rights

Access, rectification, erasure, portability, restriction, objection, and withdrawal of consent at any time — write to the contact address and it will be honored without drama. You can complain to Datatilsynet (datatilsynet.dk), the Danish supervisory authority.

This page is written to be read by humans. If anything is unclear, ask — the answer will be receipted like everything else we do.