Privacy Policy

1. Scope

This Privacy Policy explains how Raster Inc. ("Raster", "we", "us", or "our") collects, uses, and discloses information when you use our website, applications, and related services (collectively, the "Services").

By using the Services, you acknowledge the practices described in this Privacy Policy and our Terms of Service at https://raster.app/terms.

2. Information We Collect

We collect information you provide directly and information collected automatically.

Account and profile information

• Name, email address, and authentication identifiers.
• Organization and team membership details.

Billing information

• Subscription and transaction records processed through third-party payment processors.
• We do not store full payment card numbers on Raster-operated systems.

Content and metadata

• Images and files you upload.
• Metadata you add or generate, including tags, folders, and usage history.

Technical and usage data

• Device, browser, operating system, IP address, and request logs.
• Interaction events and diagnostics used to operate and improve the Services.

Cookies and similar technologies

• Session and security cookies required for sign-in and core functionality.
• Analytics technologies used to understand product usage and performance.

3. How We Use Information

We use information to:

• Provide, maintain, and improve the Services.
• Authenticate users and secure accounts.
• Process billing, subscriptions, and support requests.
• Send service updates, transactional notices, and product communications.
• Monitor usage, investigate abuse, and enforce our Terms of Service.
• Comply with legal obligations.

4. Legal Bases (EEA/UK)

Where applicable, we process personal data under one or more of these legal bases: contract performance, legitimate interests, legal obligations, and consent.

5. How We Share Information

We may share information with:

• Service providers that help us operate the Services (e.g., hosting, billing, analytics).
• Your organization administrators, based on library and permission settings.
• Law enforcement, regulators, or other parties when required by law or to protect rights and safety.
• A successor entity in connection with a merger, acquisition, or asset sale.

We do not sell your personal information.

6. Data Retention

We retain personal information for as long as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary based on data type, account status, and legal requirements.

7. International Transfers

The Services are operated from the United States. If you access the Services from outside the United States, your information may be transferred to, stored in, and processed in the United States and other jurisdictions where our providers operate.

8. Your Rights and Choices

Depending on your location, you may have rights to:

• Access, correct, or delete personal data.
• Request portability of personal data.
• Object to or restrict certain processing.
• Withdraw consent when processing is based on consent.

You can also control certain communications through account preferences or unsubscribe links in emails.

9. Cookies and Tracking Choices

We use cookies and similar technologies for authentication, security, feature preferences, and analytics. Some cookies are required for core product behavior and cannot be disabled without affecting service functionality.

You can control cookies through browser settings. If your browser or extension sends a Global Privacy Control signal, we process that signal where legally required.

10. U.S. State Privacy Rights

If you are a resident of California or another U.S. state with an applicable privacy law, you may have rights to know, access, correct, delete, and receive a copy of personal information, and to opt out of certain sharing or processing practices.

To submit a rights request, email privacy@raster.app with enough detail for us to verify and process your request.

11. Deletion and Account Closure

You can request account closure and deletion of personal information by contacting us at privacy@raster.app. We may retain limited records required for security, fraud prevention, legal compliance, and billing reconciliation.

12. Automated Processing and AI Features

Certain product features may use automated analysis to help organize assets (for example, generating labels, classifications, or search enhancements). These features are designed to improve retrieval and workflow speed, and are not used to make legal or similarly significant decisions about you.

13. Third-Party Services and Processors

We rely on third-party providers to operate core parts of the Services, including:

• Cloud hosting and storage providers.
• Authentication and identity infrastructure.
• Payment processors and billing systems.
• Monitoring, error tracking, and analytics tools.
• Email delivery and customer support tooling.

These providers process personal information under contractual restrictions and only as needed to provide services to Raster.

14. Security

We use administrative, technical, and physical safeguards designed to protect personal information. No security control is perfect, and we cannot guarantee absolute security.

15. Incident Response

If we become aware of a confirmed security incident involving personal information, we will take steps to contain and investigate the incident and provide notifications as required by applicable law.

16. Children's Privacy

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13.

17. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the "Last updated" date and provide additional notice where required.

18. Contact Us

For questions about this Privacy Policy or our privacy practices, contact us at: