Privacy Policy

This privacy policy will help you understand how RitaVPN Inc. (“RitaVPN”, “we”, “our”, or “us”) handles your personal information when you use our services (“Services”).

RitaVPN is committed to protecting your privacy. We want you to understand what information we collect, what we don’t collect, and how we collect, use, and store information. We do not collect logs of your activity, including no logging of browsing history, traffic destination, data content, or DNS queries. We also never store connection logs, meaning no logs of your IP address, your outgoing VPN IP address, connection timestamp, or session duration.

We only collect the minimal data required to operate service. We designed our systems to not have sensitive data about our customers; even when compelled we cannot provide data that we do not possess.

We are a global business that provides our products and services all around the world. In order to reach all of our users and provide all of them with our software, we operate on an infrastructure that spans the globe. The servers that are part of this infrastructure may therefore be located in a country different than the one where you live. In some instances, these may be countries outside of the European Economic Area (“EEA”), where the level of protection provided by the laws of these countries may be different than the high standard enshrined in the GDPR. Regardless, we provides the same GDPR-level of protection to all personal data it processes.

1. Personal Information Collection

As a provider of an online privacy service, we ultimately strive to collect the minimal amount of information required to operate our service. This often means difficult trade-offs between the information we collect and the performance of our service.

We believe in an open dialogue because this privacy policy is an evolving document. We welcome your thoughts and feedback on how we're doing.

1.1 What is Personal Information?

As described below, “Personal Information” means any information that identifies you and includes information provided by you while using our Services. If we use or store Personal Information with information that is non-personal, we will consider the combination as Personal Information.

1.2 Account User Data

When you create or update your RitaVPN user account, we collect and store this “Account Data”. The Account Data stored is listed below in its entirety:

Account Data What do we use it for?
Email address General communications, user account
Email confirmed Confirmation that your Email is valid

1.3 Operational Data

In order to maintain excellent customer support and quality of service, RitaVPN only collects and stores “Operational Data” required to operate our Services. This is data that we collect and store when you connect to our network. Operational data is listed below in its entirety:

(1) OS Version, Apps and Apps versions

We collect information related to which Operate System you are using and which Apps and Apps version(s) you have activated. Knowing your current version of OS and the Apps allows our customer support team to troubleshoot technical issues with you.

(2) Successful connection

We collect information about whether you have successfully established a VPN connection on a particular day (but not a specific time of the day), to which VPN location (but not your assigned outgoing IP address), and from which country/ISP (but not your source IP address). This minimal information assists us in providing technical support, such as identifying connection problems, providing country-specific advice about how to best use our service, and to enable RitaVPN engineers to identify and fix network issues.

(3) Aggregate sum of data transferred (in MB)

We collect information regarding the total sum of data transfer you consume. Understanding how much data people are using is a critical metric for RitaVPN. It tells us if people are using RitaVPN, if people have reached their free data limit, if the service is working properly and it also helps us plan for demand on our network. However, choosing a usage metric that respects your privacy is challenging task. We decided that collecting the overall amount of data used by a specific user, for the current month, was the correct balance. We also ensure that no historical record is kept by resetting the total monthly usage value to 0 at the end of each month. We felt that overall usage would respect individual user privacy (i.e. no login timestamps, no logs, etc.) while still providing the most vital data for RitaVPN to efficiently operate our service.

(4) Summary

We collect minimal usage statistics to maintain our quality of service. We may know, for example, that our customer Lina had connected to our Los Angeles VPN location on Monday and had transferred an aggregate of 233 MB of data across a 24-hour period. Lina can’t be uniquely identified as responsible for any specific behavior because her usage pattern overlaps with thousands of other RitaVPN customers who also connected to the same location on the same day.

We’ve engineered our systems to categorically eliminate storage of sensitive data. We may know THAT a customer has used RitaVPN, but we never know HOW they have utilized our service. We stand by our firm commitment to our customers’ privacy by not possessing any data related to a user’s online activities.

1.4 Other Data RitaVPN Just does NOT Collect through VPN

RitaVPN explicitly does NOT collect, store or log the following data:
• IP addresses visiting our website
• IP addresses upon service connection
• DNS Queries while connected
• Any information about the applications, services or websites our users use while connected to our Service
We ensure that we never log browsing history, traffic destination, data content, IP addresses, or DNS queries. Therefore:
• We do not know which user ever accessed a particular website or service.
• We do not know which user was connected to the VPN at a specific time or which VPN server IP addresses they used.
• We do not know the set of original IP addresses of a user’s computer.

Should anyone try to compel RitaVPN to release user information based on any of the above, we cannot supply this information because the data don’t exist.

2. Personal Information

Any Personal Information you provide to RitaVPN will be administered according to the following principles:

2.1 Accountability

Should you have any concerns about how your information is handled or questions about our privacy policy, feel free to contact us at [email protected]

2.2 Disclosure of Information to Third Parties

RitaVPN does NOT store users originating IP addresses when connected to our service and thus cannot identify users when provided IP addresses of our servers. Additionally, we cannot disclose information about the applications, services or websites our users consume while connected to our Services; as RitaVPN does NOT store this information.

2.3 Consent

Unless otherwise required by law, we will obtain your consent whenever we collect your Personal Information or make changes to the Operational Information we store. Your consent may be expressed or implied. In certain circumstances your consent may be implied by your actions. For example, by providing us Personal Information to sign up for our Service, it is implied that we can use such information as we outlined in this privacy policy.

The form of consent sought by RitaVPN may vary depending on the nature of the information. In determining the appropriate form of consent, RitaVPN will take into account the sensitivity of the information and your reasonable expectations. Implied consent will generally be appropriate where information is less sensitive.

You have the right to withhold your consent on any request to use your Personal Information. To exercise your choices, or ask questions about your Personal Information, please contact [email protected]

2.4 Limiting Collection

We take great care to not collect Personal Information indiscriminately and limit collection to the minimum necessary information required to operate our service. By limiting the collection of data, we help to protect the privacy and security of your Personal Information.

2.5 Limiting Use, Disclosure, and Retention

We will not use your Personal Information for any purpose that you have not consented to. RitaVPN will NOT sell or trade Personal Information for commercial purposes.

Only RitaVPN’s employees with a business need to know or whose duties require, are granted access to our customers’ Personal Information. All such employees will be required as a condition of employment to respect the confidentiality of our customers’ Personal Information.

We store your Personal Information only as long as is necessary for the purposes for which it is collected. We erase or destroy the records containing Personal Information when they are no longer required; this will be done in ways that will ensure your continued privacy.

2.6 Accuracy

It is your responsibility to inform RitaVPN of any relevant changes in your Personal Information by updating your account information.

2.7 Safeguards

RitaVPN uses exceptionally strong safeguards to protect the privacy of all our records, including your Personal Information. We implement physical, business and technical security measures. These strong safeguards are designed to prevent unauthorized access, disclosure, loss, theft, copying, use or modification to your Personal Information.

2.8 Openness and Transparency

So that you can be confident that we are handling your Personal Information appropriately, we take extraordinary measures to document our policies and provide openness and transparency around the data we collect, why we collect it and how we handle it.

2.9 Individual Access

If at any time you have a question about our records containing your Personal Information, we will do our best to answer it. You have the right to be told about the kind of Personal Information we maintain and how it is used. Upon request, we will provide you with information regarding the existence, use and disclosure of your Personal Information.

2.10 Changes to Our Privacy Policy

We may need to change our Privacy Policy from time-to-time and all updates will be posted online. Your continued use of our Services after the effective date of such changes constitutes your acceptance of such changes. We will post an effective date at the top of the page for your convenience.

2.11 Data Protection Officer

As required under the GDPR, we have a data protection officer (DPO) to monitor our compliance with the GDPR, provide advice where requested and cooperate with supervisory authorities. You can contact our data protection officer via [email protected]

2.12 Rita VPN guarantees no logs of your activities

We guarantee that your private data are not monitored,recorded,logged,stored or passed to any third party.