Rayl
EN NL FR
Get Started

Legal

Privacy Policy

Last updated: 8 June 2026 · Effective immediately

Rayl Technologies BV (“Rayl”, “we”, “us”) believes the best privacy policy is collecting as little data as possible. This page explains what we do collect, why, what we do with it, and the rights you have under the EU General Data Protection Regulation (GDPR), the UK GDPR, and equivalent laws.

The short version: we don’t sell your data, we don’t use it for advertising, and we only collect what we need to operate the site and respond to you when you contact us.

1. Who is the data controller

The data controller for personal data processed through this website is:

  • Rayl Technologies BV
  • Jos Ratinckxstraat 3, C082, 2600 Antwerp, Belgium
  • VAT: BE 0717928771
  • Establishment number: 2.385.638.190
  • Email: hello@rayl.be

Our lead supervisory authority is the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit / Autorité de protection des données). You always retain the right to lodge a complaint with your own local supervisory authority. If we appoint a formal Data Protection Officer (DPO), their contact details will be listed here.

2. What we collect

We deliberately keep this list short.

  • Information you give us — when you email us or use the contact link, we receive your email address and whatever you choose to include in the message.
  • Cookies and similar technologies — strictly necessary cookies are set when you load the site. Optional analytics/preference cookies are only set if you accept them in the cookie banner. See our Cookie Policy for the full list.
  • Technical data — your IP address, browser type, device type, and referring URL may be logged by our hosting provider for security and abuse prevention.
  • Analytics (consent-based) — if, and only if, you accept analytics in the cookie banner, we log each page view together with your IP address, an approximate location (country/region/city, derived from the IP), the page URL, referrer, and browser user-agent, so we can understand how the site is used. This is not set if you decline. Retained for up to 12 months, then deleted. You can withdraw consent at any time via the “Reopen cookie banner” control on the Cookie Policy.

We do not ask for or collect: government IDs, financial account data, payment card data, location data, biometric data, or special-category data (health, religion, political opinion, etc.) on this site. Any payment information entered into Rayl Payments or Rayl Marketplace flows is handled by our licensed third-party Payment Service Providers (PSPs), not by Rayl Technologies BV’ own systems — their privacy notices apply to that data.

3. Why we process it (legal bases)

  • Consent (GDPR Art. 6(1)(a)) — for optional analytics or preference cookies. You can withdraw consent at any time.
  • Legitimate interests (GDPR Art. 6(1)(f)) — to keep the site running, prevent abuse, respond to your inquiries, and operate basic security logging.
  • Legal obligation (GDPR Art. 6(1)(c)) — where we’re required to retain or disclose information by applicable law.

4. How long we keep it

  • Email correspondence: up to 24 months after the last reply, then deleted.
  • Server access logs: up to 30 days unless flagged for a security incident.
  • Cookies: see Cookie Policy for per-cookie durations.

5. Who we share it with

We do not sell personal data. We share it only with the limited service providers needed to run the site, each bound by contract and operating as processors on our instructions:

  • Our hosting and infrastructure provider, for serving the site.
  • Our email provider, when you contact us.
  • Public CDNs (e.g. jsDelivr, unpkg) that serve fonts, scripts, and the world-map data used in the homepage globe — these may log your IP address per their own privacy notices.

We will only disclose data to law enforcement or other authorities where required by valid legal process.

6. International transfers

Some of our service providers are located outside the European Economic Area. Where that’s the case, we rely on Standard Contractual Clauses (SCCs) or another recognised GDPR transfer mechanism, and we assess the destination country’s level of protection in line with applicable guidance.

7. Your rights

Under the GDPR and similar laws, you have the right to:

  • Access the personal data we hold about you (Art. 15).
  • Have it corrected if it’s wrong (Art. 16).
  • Have it erased where applicable (Art. 17).
  • Restrict or object to processing (Art. 18, 21).
  • Receive a portable copy (Art. 20).
  • Withdraw any consent you’ve given (Art. 7).
  • Lodge a complaint with your local supervisory authority (Art. 77).

To exercise any of these rights, email hello@rayl.be. We’ll respond within one month and won’t charge a fee unless your request is manifestly unfounded or excessive.

8. Security

We use HTTPS in transit, restrict access to data on a least-privilege basis, and follow secure development practices. Where Rayl Payments processes payment card data, we operate within the scope of the PCI DSS framework. See our Security page for more.

9. Children

This site is not directed at children under 16 and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact us and we will delete it.

10. Changes to this policy

We may update this policy from time to time. Material changes will be highlighted on this page and, where required, communicated directly to you. The “Last updated” date at the top reflects the most recent version.

11. Contact

Privacy questions, complaints, or rights requests: hello@rayl.be.