Privacy Policy

Effective Date: Jan 01, 2025  |  Last Updated: March 21, 2026

1. Introduction

Welcome to Rosto ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services, including when you interact with us via email, SMS, WhatsApp, and app push notifications.

Please read this Privacy Policy carefully. If you disagree with its terms, please discontinue use of our website and services.


2. Information We Collect

We may collect the following categories of personal information:


2.1 Information You Provide Directly

  • Name and contact details (email address, phone number)

  • Account credentials (username, password)

  • Communications you send us via email, SMS, WhatsApp, or in-app messaging

  • Payment and billing information

  • Profile information and preferences


2.2 Information Collected Automatically

  • Device identifiers (device ID, push notification tokens)

  • IP address, browser type, and operating system

  • Usage data and interaction history within our app and website

  • Cookies and similar tracking technologies

  • Log data and analytics information


2.3 Information from Third Parties

  • Data from social media platforms if you connect your accounts

  • Analytics providers and advertising partners

  • Verification and identity service providers


3. How We Use Your Information

We use the information we collect for the following purposes:


3.1 Service Delivery

  • To create and manage your account

  • To provide, operate, and maintain our website and services

  • To process transactions and send related information

  • To personalize your experience on our platform


3.2 Communications

We may contact you through the following channels, subject to your preferences and applicable laws:


Email Communications

  • Transactional emails (account confirmations, receipts, password resets)

  • Service updates, product announcements, and feature releases

  • Marketing and promotional emails (with your consent where required)

  • Security alerts and important notices


SMS (Text Message) Communications

  • One-time passwords (OTPs) and verification codes

  • Order status and delivery notifications

  • Promotional messages and special offers (with your consent)

  • Appointment reminders and time-sensitive alerts

You may opt out of marketing SMS at any time by replying STOP to any message. Standard message and data rates may apply.


WhatsApp Communications

  • Customer support and service inquiries

  • Transactional notifications (order updates, booking confirmations)

  • Promotional messages (only where you have opted in)

  • Interactive customer service conversations

WhatsApp messages are subject to WhatsApp's own Terms of Service and Privacy Policy. We only send WhatsApp messages where permitted under applicable regulations and WhatsApp Business Policy.


App Push Notifications

  • Real-time alerts and activity updates within the app

  • Personalized content recommendations

  • Promotional offers and reminders

  • Security alerts and account activity notifications

You can manage push notification preferences at any time through your device's notification settings or within the Rosto app settings.


4. Legal Basis for Processing (EEA/UK Users)

If you are located in the European Economic Area (EEA) or the United Kingdom, our legal bases for processing your personal information include:

  • Contract performance – processing necessary to fulfill our agreement with you

  • Legitimate interests – to improve our services, prevent fraud, and communicate with you

  • Legal obligation – where required by applicable law

  • Consent – where you have explicitly opted in to receive marketing communications


5. How We Share Your Information

We do not sell your personal data. We may share your information in the following circumstances:


5.1 Service Providers

We share data with trusted third-party vendors who assist in operating our business, including:

  • Email delivery providers (e.g., SendGrid, Mailchimp)

  • SMS gateway providers (e.g., Twilio, AWS SNS)

  • WhatsApp Business API partners

  • Push notification services (e.g., Firebase Cloud Messaging, Apple APNs)

  • Cloud hosting and infrastructure providers

  • Analytics and performance monitoring tools


5.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to protect the rights, property, or safety of Rosto, our users, or the public.


5.3 Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity.


6. Data Retention

We retain your personal information for as long as necessary to provide our services, fulfill the purposes outlined in this Privacy Policy, and comply with legal obligations. Communication logs (email, SMS, WhatsApp, push notification records) are typically retained for up to 24 months, unless a longer retention period is required by law.


7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access – request a copy of the personal data we hold about you

  • Rectification – request correction of inaccurate or incomplete data

  • Erasure – request deletion of your personal data ("right to be forgotten")

  • Restriction – request that we limit how we process your data

  • Portability – receive your data in a portable, machine-readable format

  • Objection – object to processing based on legitimate interests

  • Withdraw Consent – withdraw consent for marketing communications at any time


7.1 Opt-Out of Communications

You may unsubscribe or opt out of our communications as follows:

  • Email: Click "Unsubscribe" in any marketing email

  • SMS: Reply STOP to any SMS message

  • WhatsApp: Send "STOP" or contact us directly

  • Push Notifications: Adjust settings in your device or within the Rosto app

Note: Even if you opt out of marketing communications, you may still receive transactional and service-related messages essential to your account.


8. Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to enhance your browsing experience, analyze website traffic, and support our marketing activities. You can control cookie preferences through your browser settings or our cookie consent tool.

For more details on our use of cookies, please refer to our Cookie Policy.


9. Children's Privacy

Our services are not directed to children under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personal information from minors. If we become aware that we have collected such information, we will take steps to delete it promptly.


10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. Where such transfers occur, we implement appropriate safeguards to protect your data, such as Standard Contractual Clauses approved by the European Commission.


11. Data Security

We implement industry-standard technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These include encryption in transit (TLS), secure storage practices, access controls, and regular security assessments.

While we take all reasonable steps to protect your data, no method of transmission over the internet is 100% secure. We encourage you to use strong, unique passwords and keep your account credentials confidential.


12. Third-Party Links and Services

Our website and app may contain links to third-party websites, plug-ins, and applications. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices. We encourage you to read the privacy policy of every third-party service you visit.


13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or for other operational reasons. We will notify you of significant changes by posting the new policy on our website with an updated effective date, and, where appropriate, by sending you a notification via email, SMS, or app push notification.

Your continued use of our services after changes are posted constitutes your acceptance of the updated Privacy Policy.


14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:


Rosto

Email: privacy@rostochicken.com

Website: www.rostochicken.com