RoloflyRolofly

Privacy Policy

Last updated: March 12, 2026

1. Introduction

Rolofly ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our enterprise business card management platform.

2. Information We Collect

Information you provide

  • Account information: name, email address, profile photo
  • Professional information: job title, company, headline, bio, skills, experience, education
  • Company information: company name, logo, address, phone number
  • Contact details: personal phone, work phone, email, website, social media links
  • Corporate email for verification purposes
  • Content you upload: profile photos, company logos, card images, imported profile data

Information collected automatically

  • Card and profile analytics: views, shares, scans, geographic data, timestamps
  • Usage data: pages visited, features used, interaction patterns
  • Device information: browser type, operating system, IP address

Information from enterprise integrations

  • Employee data synced from HR systems (with organizational authorization)
  • Contact data from CRM integrations (with appropriate permissions)
  • Identity data from SSO/SAML providers

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Service, including your public profile page and digital business cards
  • Generate and manage AI-assisted card designs within corporate brand guidelines
  • Process corporate email verification and admin approvals
  • Provide analytics including card views, distribution metrics, and geographic insights
  • Sync data with authorized enterprise systems (HR, CRM, ERP)
  • Communicate with you about the Service
  • Improve and develop the Service, including AI features
  • Protect against fraud and unauthorized access

4. Public Profile Information

When you create a public profile, the professional information you choose to include (name, headline, company, skills, experience, etc.) is accessible to anyone with your profile link or QR code. You control what information appears on your public profile through your profile settings.

5. Enterprise Data Processing

For enterprise customers, we act as a data processor on behalf of your organization. Your organization's administrator controls what data is collected and how it is used within the platform. We offer Data Processing Agreements (DPAs) and support data residency requirements upon request.

6. Information Sharing

We do not sell your personal information. We may share your information with:

  • Your organization: Enterprise administrators may access analytics and usage data for employees within their organization
  • Authorized integrations: Data shared with HR, CRM, and ERP systems as configured by your organization's administrator
  • Service providers: Third-party services that help us operate the platform (authentication, database hosting, image storage)
  • Legal requirements: When required by law, regulation, or legal process
  • Business transfers: In connection with a merger, acquisition, or sale of assets

7. Third-Party Services

The Service integrates with third-party providers including:

  • Clerk: Authentication and user management
  • LinkedIn: Optional profile import via official account connection
  • Enterprise systems: HR platforms, CRM systems, and identity providers as configured
  • Cloud infrastructure: Secure hosting and data storage services

Each third-party service has its own privacy policy. We encourage you to review their policies.

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. For enterprise accounts, data retention follows the organization's configured policies. You can request deletion of your account and associated data by contacting us at info@rolofly.app.

9. Data Security

We implement enterprise-grade technical and organizational measures to protect your personal information, including encryption in transit (TLS 1.3) and at rest (AES-256), secure authentication, role-based access controls, and comprehensive audit logging. We are committed to maintaining the highest security standards for enterprise data protection.

10. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your personal information
  • Object to or restrict processing of your information
  • Data portability
  • Withdraw consent at any time

To exercise any of these rights, please contact us at info@rolofly.app.

11. Cookies

The Service uses essential cookies required for authentication and session management. We do not use tracking or advertising cookies.

12. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised date.

14. Contact

For privacy-related inquiries, please contact us at info@rolofly.app.