Privacy Policy

Privacy Policy — Ripeto

 

Last updated: April 13, 2026

 

1. Introduction

 

This Privacy Policy describes how Daynight Promotion d.o.o., Ul. Otona Župančića 6, 10000 Zagreb, Croatia, OIB: 24996612885 ("we", "our", or "Provider") collects, uses, stores, and protects your data when you use the Ripeto mobile application ("App").

 

This Privacy Policy is an integral part of the App's Terms of Service.

 

2. Data Controller

 

Daynight Promotion d.o.o.

Ul. Otona Župančića 6, 10000 Zagreb, Croatia

OIB: 24996612885

Email: privacy@ripeto.com

 

3. What Data We Collect

 

3.1 Data You Provide Directly

 

  • mobile phone number (used for sign-in and account verification)

  • email address (if provided or when this option becomes available)

  • name or username (if provided)

  • authentication data processed via Firebase Authentication (such as verification tokens, user identifiers, and login session data)

 

3.2 App Usage Data

 

  • which subjects, lessons, and quizzes you access

  • quiz results and answers to questions

  • progress through study material

  • frequency and duration of App usage

  • device information (device model, operating system, app version)

  • device identifiers (IDFA / instance ID)

  • device language settings

 

3.3 Purchase Data

In-app purchases are processed through the Apple App Store or Google Play Store. We do not collect or store your payment details. We only receive confirmation of purchase status and access duration from the platform.

 

4. How We Use Your Data

 

4.1 Providing the Service

 

  • enabling access to the App and its content

  • tracking your progress through study material

  • displaying quiz results and learning statistics

  • managing your user account

  • sending notifications about progress, study reminders, and new content

 

4.2 Improving and Personalizing the Experience

We use anonymized and aggregated data about App usage to:

 

  • understand how users interact with the App

  • identify learning patterns and areas where users experience difficulty

  • adapt review schedules and learning recommendations

  • improve the quality of content, questions, and educational materials

  • enhance App functionality and user experience

 

This data does not allow identification of individual users and is used solely for product improvement and educational experience personalization.

 

4.3 Communication

 

  • responding to your inquiries and support requests

  • sending service-related notifications

 

4.4 Legal Obligations

 

  • fulfilling legal obligations, including responding to requests from competent authorities

 

5. Legal Basis for Data Processing

 

  • Performance of a contract (Art. 6(1)(b) GDPR)

  • Legitimate interest (Art. 6(1)(f) GDPR) — anonymized data for product improvement

  • Consent (Art. 6(1)(a) GDPR) — push notifications and marketing

  • Legal obligation (Art. 6(1)(c) GDPR)

 

6. Sharing Data with Third Parties

 

We do not sell your personal data.

 

6.1 Technical Service Providers

 

  • Firebase (Google LLC) — authentication, analytics, push notifications. May process phone number, user identifiers, device identifiers, usage data, and device information.

  • RevenueCat — subscription and purchase management. May process user ID, purchase history, subscription status, and entitlement data.

  • Apple App Store / Google Play Store — payment processing. These platforms act as independent data controllers under their own privacy policies.

 

6.2 Content Partners

Partners providing educational content may receive aggregated and anonymized usage data, but never your personal data.

 

6.3 Legal Requirements

We may disclose your data if required by law, court order, or request from a competent authority.

 

7. Data Transfers Outside the EU/EEA

 

Some providers (e.g., Firebase/Google) may process data outside the EEA. We ensure appropriate safeguards (SCCs or adequacy decisions).

 

8. How Long We Keep Your Data

 

  • Account data deleted within 30 days of deletion request.

  • Anonymized and aggregated data may be retained indefinitely.

  • Usage analytics data retained for a limited period (e.g., up to 12 months), unless further retention is necessary for legitimate business purposes.

  • Legally required data kept for prescribed periods.

 

9. Your Rights

 

Under GDPR: right of access, rectification, erasure, restriction, portability, objection, and withdrawal of consent.

 

Contact: privacy@ripeto.com

 

Complaints: Croatian Personal Data Protection Agency (AZOP) — www.azop.hr / azop@azop.hr

 

10. Data Security

 

We apply reasonable technical and organizational measures including encryption in transit (HTTPS/TLS), secure authentication via Firebase, and restricted access to personal data.

 

11. Data of Minors

 

App is for individuals aged 13+. Under 16 requires parental consent. We do not knowingly collect data from children under 13.

 

12. Push Notifications

 

Via Firebase Cloud Messaging (FCM). Manageable in device settings or App settings.

 

13. Cookies and Similar Technologies

 

The App does not use cookies in the traditional sense. However, third-party services (such as Firebase) may use device identifiers and similar technologies (e.g., Firebase Instance ID) to enable functionality, analytics, and push notifications.

 

14. Changes to This Privacy Policy

 

We reserve the right to modify this Privacy Policy. Material changes notified via App or email.

 

15. Contact

 

Daynight Promotion d.o.o.

Ul. Otona Župančića 6, 10000 Zagreb, Croatia

Email: privacy@ripeto.com

Privacy Policy

Privacy Policy