Legal
Privacy policy
Last updated: April 19, 2026
This Privacy Policy describes how Rivet ("we", "our", "us") collects, uses, and shares personal information when you visit https://retainer.hromov.dev ("Site") or engage Rivet as a retainer client.
1. Information we collect
- Inquiry data: name, email, company, website, platform, budget and message when you submit the contact form.
- Analytics data: pages visited, referrer, approximate country, device type, browser — collected via privacy-friendly analytics.
- Client data: once engaged, we handle whatever credentials, databases and repos your site requires, under a Data Processing Agreement if requested.
2. How we use it
Inquiry data is used solely to respond to your request and to deliver services if you engage Rivet. Analytics is aggregated and used to improve the Site. Client data is used exclusively to perform the retainer work you've contracted for.
3. Sharing
We do not sell personal data. We share it only with: (a) infrastructure sub-processors strictly necessary to operate the Site or deliver work (e.g. hosting, analytics, email), and (b) where required by law.
4. Your rights
Depending on your jurisdiction (GDPR, CCPA/CPRA, PIPEDA, UK DPA, etc.), you have the right to access, correct, delete, port and restrict processing of your data, and to withdraw consent at any time. Exercise them by emailing hello@rivet.agency.
5. Data retention
Lead data is retained for 24 months unless you request deletion. Client data is retained for the duration of the engagement plus 90 days, then destroyed unless longer retention is legally required.
6. International transfers
Rivet operates from the European Union. Data transferred from the US or Canada to the EU is protected by Standard Contractual Clauses and equivalent transfer mechanisms. Data processed for US clients can stay US-resident on request.
7. Security
We use encryption in transit (HTTPS/TLS) and at rest, scoped access credentials, and security monitoring on all client sites. We do not store passwords in plaintext.
8. Children
The Site is not directed at children under 16 and we do not knowingly collect their data.
9. Changes
We may update this policy. Material changes will be posted here with a revised "last updated" date.
10. Contact
Questions? hello@rivet.agency.