Privacy Policy

Last updated: January 2, 2025

RiteMark, operated by Productory Services OÜ ("we", "our", or "us"), is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our WYSIWYG markdown editor. We believe in transparency – this policy is written in plain language to help you understand exactly what data we collect and why.

What Data We Collect (and Don't Collect)

We believe in radical transparency. Here's exactly what we store:

How We Use Your Data

We only collect data for specific, legitimate purposes:

1. Authentication (Legal Basis: Contract Performance)

What we collect: Your Google User ID, name, email, and profile picture from Google OAuth.
Why we need it: To verify your identity and keep you signed in securely across devices.
Example: When you sign in with Google, we store your refresh token so you don't have to sign in again every time you open RiteMark.

2. Settings Sync (Legal Basis: Contract Performance)

What we collect: Your editor preferences (keyboard shortcuts, "pick up where you left off" toggle).
Why we need it: To provide a seamless experience across all your devices.
Storage: Settings are encrypted and stored in your Google Drive AppData folder. You control this data and can delete it at any time by deleting your account.

Where We Store Your Data

We use these trusted services to provide RiteMark:

• Netlify Functions – Serverless backend for authentication (US-based, GDPR-compliant)
• Netlify Blob Storage – Encrypted refresh token storage (US-based, GDPR-compliant)
• Google Drive API – Your settings stored in Google Drive AppData (you control this data)

Data Retention

We only keep data as long as necessary:

• Refresh Tokens: 180 days (6 months) or until you sign out
• Settings: Until you delete your account
• IP Addresses: Not stored long-term (only used temporarily for abuse prevention)

Your Rights Under GDPR

You have the following rights regarding your personal data:

1. Right to Access (Article 15)

What it means: You can download a copy of all data we store about you.
How to do it: Go to Settings & Account → Privacy & Data → "Download my data"
What you'll get: A JSON file with your user ID, settings, and refresh token metadata (not the actual token).

2. Right to Erasure (Article 17)

What it means: You can request deletion of all your data from our servers.
How to do it: Go to Settings & Account → Privacy & Data → "Delete my account"
What gets deleted:

• Your refresh token from Netlify Blob Storage
• Any server-side logs containing your user ID

What stays: Your Google account and Google Drive files remain intact (we don't have access to delete those).

3. Right to Data Portability (Article 20)

What it means: You can download your data in a machine-readable format (JSON).
How to do it: Same as "Right to Access" above.

4. Right to Object (Article 21)

What it means: You can object to how we process your data.
How to do it: Contact jarmo@productory.eu

5. Right to Withdraw Consent (Article 7)

What it means: You can revoke your consent at any time.
How to do it: Sign out or delete your account. You can also revoke Google permissions at myaccount.google.com/permissions

Third-Party Services

We integrate with these trusted services:

Google OAuth & Drive API

Used for: Authentication and file operations
Data shared: Your Google User ID, email, name, profile picture
Privacy policy: policies.google.com/privacy

Netlify

Used for: Hosting and serverless functions
Data shared: Refresh tokens (encrypted), user ID
Privacy policy: netlify.com/privacy

OpenAI API (Optional, BYOK only)

Used for: AI features (if you bring your own API key)
Data shared: Your document content (when you explicitly use AI features)
Privacy policy: openai.com/privacy
Important: Your OpenAI API key is stored locally in your browser with AES-256-GCM encryption (never sent to our servers). When you use AI features, your content is sent directly to OpenAI using your own API key.

Data Security

We implement industry-standard security measures:

• Encryption at rest: Refresh tokens encrypted using Web Crypto API
• Encryption in transit: All connections use HTTPS/TLS 1.3
• Minimal data collection: We only store what's necessary
• No long-term IP storage: IP addresses used temporarily for abuse prevention only

International Data Transfers

RiteMark is operated from Estonia (EU). Some of our service providers (Netlify, Google) may process data outside the EU. These transfers are protected by:

• Standard Contractual Clauses (SCCs): EU-approved data transfer agreements
• Privacy Shield Framework: For US-based providers
• GDPR Compliance: All providers meet GDPR requirements

Children's Privacy

RiteMark is not intended for children under 16. We do not knowingly collect data from children. If you believe we have collected data from a child, please contact jarmo@productory.eu immediately.

Changes to This Policy

We may update this Privacy Policy occasionally. When we make material changes:

• We'll update the "Last updated" date at the top
• We'll show a banner in the app notifying you of changes
• Major changes will be emailed to you (if we have your email from Google OAuth)

Legal Basis Summary (GDPR Article 6)

Here's our legal justification for processing your data:

• Authentication: Contract Performance (Article 6(1)(b)) – Necessary to provide the service you requested
• Settings Sync: Contract Performance (Article 6(1)(b)) – Necessary to provide cross-device experience
• Abuse Prevention: Legitimate Interest (Article 6(1)(f)) – Necessary to protect our service and other users

Open Source & Transparency

RiteMark is committed to transparency. You can review our source code on GitHub to verify how we handle your data: github.com/productoryapp/ritemark