Privacy commitments
Rolli LLC is committed to protecting your privacy. This policy describes how we collect, use, disclose, and safeguard your information across the Rolli platform and website (rolli.ai).
We never sell your personal data to third parties — ever.
GDPR, UK GDPR, and CCPA compliant with full data subject rights.
AES-256 encryption at rest and TLS 1.3 in transit.
Account deletion requests fulfilled within 30 days.
Standard Contractual Clauses (SCCs) for all EU/UK data transfers.
Information We Collect
We collect information you provide directly to us when you create an account, request a demo, start a free trial, contact our support team, or otherwise communicate with us. This includes: name, work email address, company name, job title, phone number (if provided), and the content of any messages you send us.
When you use the Rolli platform, we automatically collect certain technical information, including: IP address, browser type and version, operating system, referring URLs, pages visited, time spent on pages, and other interaction data. This information is collected using cookies, web beacons, and similar tracking technologies.
We collect billing information through our payment processors. Rolli does not store full credit card numbers; payment data is handled directly by our PCI-compliant payment processors.
If you connect third-party services to your Rolli account (for example, integrating with a CRM or collaboration tool), we may receive information from those services in accordance with your authorization and their privacy policies.
How We Use Information
We use the information we collect to: provide, operate, maintain, and improve the Rolli platform and services; process transactions and send related information such as purchase confirmations and invoices; send transactional and operational communications, including service updates, security alerts, and support messages; respond to your comments, questions, and requests.
With your consent, we may send marketing communications about Rolli products, features, events, and news. You may opt out of marketing emails at any time by clicking the unsubscribe link in any email or by contacting us at privacy@rolli.ai.
We use data to monitor and analyze usage and trends, personalize your experience, and improve the platform. We use aggregated, de-identified data for research and product development.
We use information to detect, investigate, and prevent fraudulent transactions, unauthorized access, and other illegal activities, and to protect the rights and property of Rolli and our users.
We process data to comply with applicable legal obligations, enforce our Terms of Service, and protect the safety of our users and the public.
Data Sharing
We do not sell your personal information to third parties. We do not share your personal information with third parties for their independent marketing purposes.
We share data with trusted third-party service providers who assist us in operating the platform and delivering our services, subject to contractual confidentiality and data protection obligations. Current categories of service providers include: cloud infrastructure and hosting providers, payment processors, email delivery services, customer relationship management (CRM) tools, product analytics platforms, and error monitoring services. A current sub-processor list is available on our Trust Center or upon request.
We may disclose your information if required to do so by law or in the good-faith belief that such action is necessary to: comply with a legal obligation or court order; protect and defend the rights or property of Rolli; prevent or investigate possible wrongdoing in connection with the services; protect the personal safety of users of the services or the public; or protect against legal liability.
If Rolli is involved in a merger, acquisition, financing, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on the website prior to your information being transferred and becoming subject to a different privacy policy.
Data Retention
Free trial accounts: account data and usage records created during a free trial period are retained for 30 days following trial expiration. If you convert to a paid subscription, your data is retained for the duration of the subscription. If the trial expires without conversion, data is deleted within 30 days of expiration.
Paid subscriptions: we retain your account information, usage records, and platform data for the duration of your active subscription and for one year following termination or cancellation. After that period, personal data is deleted or de-identified, subject to legal and contractual obligations that may require us to retain certain records longer (for example, billing records are retained for 7 years as required by applicable financial regulations).
Platform usage logs and analytics data are retained for up to 24 months in identifiable form and may be retained longer in aggregated, de-identified form. If you request account deletion, we will delete or de-identify your personal information within 30 days of your verified request.
Data ingested by the Rolli platform from publicly available social media sources is retained in accordance with your subscription tier and any applicable data processing agreement. Contact sales@rolli.ai for enterprise-specific retention terms.
Your Rights
Depending on your jurisdiction, you may have the following rights with respect to your personal information: Right of Access — to request a copy of the personal data we hold about you; Right of Rectification — to request correction of inaccurate or incomplete data; Right of Erasure — to request deletion of your personal data where we have no legal basis to retain it; Right to Restrict Processing — to request that we limit how we use your data; Right to Data Portability — to receive your data in a structured, machine-readable format; Right to Object — to object to processing based on our legitimate interests.
If you are in the European Economic Area (EEA) or United Kingdom, you have the rights described above under the General Data Protection Regulation (GDPR) or UK GDPR. To exercise any of these rights, contact us at privacy@rolli.ai. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with specific rights, including the right to know what personal information we collect, the right to delete your personal information, the right to opt-out of the sale or sharing of personal information (Rolli does not sell your data), and the right to non-discrimination for exercising your privacy rights. To submit a verifiable consumer request, email privacy@rolli.ai.
International Data Transfers
Rolli is based in the United States. If you are accessing the platform from outside the United States, your information will be transferred to and processed in the United States, which may have different data protection laws than your jurisdiction.
For users in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on appropriate legal mechanisms for international transfers, including Standard Contractual Clauses (SCCs) approved by the European Commission. Our Data Processing Agreement (DPA), which includes applicable SCCs, is available upon request at privacy@rolli.ai.
Security
We implement industry-standard technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include: encryption in transit using TLS 1.3; encryption at rest using AES-256; role-based access controls and least-privilege principles; audit logging; annual third-party penetration testing; and SOC 2-aligned infrastructure controls through our cloud provider.
While we strive to protect your information, no security system is impenetrable. We cannot guarantee the absolute security of your data. In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the appropriate authorities as required by applicable law.
Children's Privacy
The Rolli platform is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page with an updated effective date, and, where appropriate, by sending an email notification. We encourage you to review this policy periodically.
Contact
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Rolli LLC · 1212 5th Street, Suite 1-400, Santa Monica, CA 90401 · privacy@rolli.ai
For EU/UK data subjects, you may also contact us regarding the appointment of a Data Protection Representative in your region if required by applicable law.
Questions about your privacy?
Our team is happy to help with any questions about this policy or your personal data.