Publication date: February 15, 2026
This Privacy Policy describes how the "Rimbo" platform (hereinafter — the Platform), owned by Individual Entrepreneur Bachynskyi Oleksandr Ivanovych (hereinafter — the Executor), collects, uses, stores, and protects the personal data of its users.
By using the Platform, you agree to the terms of this Privacy Policy.
Customer data (business users): email, phone number, name (upon registration); company name, contact information, logo, and images; company location addresses, geographic coordinates, Google Maps identifiers; Staff Members' email addresses and roles; payment information.
End Client data: email, phone number, name; loyalty card data: stamp count, transaction history; bonus account balance and bonus points transaction history; personal discount percentage; notifications and notification history.
Automatically collected data: device type, browser information (user agent); QR scan analytics: scan type, result, timestamp; Platform activity analytics: connections, disconnections, card operations; audit logs: setting changes, who performed the action, old and new values.
The Executor processes personal data in accordance with the Law of Ukraine "On Personal Data Protection" dated June 1, 2010, No. 2297-VI.
The legal basis for processing is the data subject's consent (acceptance of the Public Offer) and performance of the Agreement.
We use the collected data to: provide Platform services and manage accounts; process transactions and award bonuses; send notifications and push messages; perform analytics and improve Platform performance; provide technical support; fulfill legal obligations.
The Customer is the owner (controller) of the personal data of their End Clients and bears full responsibility for the lawfulness of its collection and processing.
The Executor acts as a processor of End Clients' personal data on behalf of the Customer.
The Customer is obligated to independently obtain consent from End Clients for the processing of their personal data before entering such data into the Platform.
Supabase (Austria, EU-central-1) — database hosting and authentication.
Google Maps API — location services.
Apple Wallet / Google Wallet — digital pass generation.
We do not sell or share personal data with third parties for marketing purposes.
Personal data is stored for the duration of the Agreement.
After termination of the Agreement, data is retained for 30 calendar days, after which it is permanently deleted without the possibility of restoration.
Staff Member invitations automatically expire after 7 days.
Data subjects have the right to: know about the sources of collection, location, and purpose of processing of their data; access their personal data; request correction of inaccurate or incomplete data; request deletion of their personal data; withdraw consent for personal data processing.
To exercise these rights, contact us at: support@rimbo.id.
The Executor implements technical and organizational measures to protect personal data from unauthorized access, loss, or destruction.
Access to Customer data is restricted through a role and permission system (Row Level Security). All connections are protected by encryption.
The Executor reserves the right to amend this Privacy Policy. Notice of amendments shall be published on the Platform no less than 14 calendar days before the amendments take effect.
Continued use of the Platform after amendments take effect constitutes your agreement with the new version of the Policy.
For privacy and data protection inquiries, contact us:
Email: support@rimbo.id Platform: https://rimbo.id Support hours: Mon–Fri 10:00–18:00, Sat–Sun 11:00–15:00 (Kyiv time)
