Rufio
Download Download app Support Support
Download
Menu
Home What's Rufio? Features Community Rufio Pro Support Support

Privacy Policy and Data Processing – Rufio

Last update: 2/21/2026

This Privacy Policy regulates the processing of personal data carried out by Rufio App S.L. in relation to users of the Rufio mobile application ("the App"), in compliance with:

  • Regulation (EU) 2016/679 (General Data Protection Regulation – "GDPR")
  • Organic Law 3/2018 on Data Protection and Digital Rights (LOPDGDD)
  • Applicable European and international data protection regulations

By using the App, the user acknowledges and accepts this Privacy Policy.

1. Data Controller

  • Rufio App S.L.
  • CIF: B22703466
  • Registered office: Madrid, Spain
  • Email: woof@rufioapp.com

Rufio App S.L. determines the purposes and means of processing personal data in accordance with Article 4(7) GDPR.

2. Data We Process

2.1 User Personal Data

We may process the following identification and account-related data:

  • Name and surname
  • Email address
  • Date of birth
  • Country of residence
  • Encrypted password

This data is necessary for account creation and App access.

2.2 Pet-Related Data

Users may voluntarily enter information about their pets, including:

  • Pet name
  • Breed
  • Age
  • Sex
  • Characteristics
  • Routine plans (meals, medication reminders, walks, supplements)
  • Mood logs
  • Symptom logs
  • Physical activity records
  • Custom notes

Pet-related data is processed as user-generated content and is protected with reinforced technical and organizational measures.

Rufio does not create official veterinary medical records and does not verify the accuracy of user-entered information.

2.3 Geolocation Data

With prior user consent, the App may collect:

  • Approximate location
  • Precise GPS location
  • Region or city-level data

Location data is used exclusively to:

  • Display nearby pet-related establishments
  • Improve map functionality
  • Enhance user experience

Location data:

  • Is not used for cross-app tracking
  • Is not sold to third parties
  • Is not used for behavioral advertising
  • Can be revoked at any time via device settings

2.4 Technical and Usage Data

For security and operational purposes, we may process:

  • IP address
  • Device type and operating system
  • App version
  • Time zone
  • Activity logs
  • Error reports
  • Performance data

Technical data is used exclusively for:

  • Service stability
  • Security monitoring
  • Fraud prevention
  • Performance improvement

3. Purposes of Processing

3.1 Main Purposes

  • Create and manage user accounts
  • Enable pet routine tracking and logging
  • Provide map-based location services
  • Maintain App security
  • Prevent misuse or fraudulent activity
  • Improve service stability and usability
  • Comply with legal obligations

3.2 Location-Related Purposes

  • Display nearby establishments
  • Enhance contextual relevance
  • Improve user experience

3.3 Additional Purposes

  • Internal usability analysis

4. Legal Bases for Processing

4.1 Performance of a Contract (Art. 6.1.b GDPR)

Processing necessary to:

  • Provide access to the App
  • Create and maintain accounts
  • Enable pet routine management features

4.2 Consent (Art. 6.1.a GDPR)

Processing based on user consent, including:

  • Precise location access
  • Optional feature permissions

Consent may be withdrawn at any time.

4.3 Legal Obligation (Art. 6.1.c GDPR)

Processing required to comply with:

  • Tax and accounting regulations
  • Legal retention obligations
  • Law enforcement requests

4.4 Legitimate Interest (Art. 6.1.f GDPR)

Processing necessary for:

  • Platform security
  • Fraud prevention

5. Data Recipients

Personal data may be shared only with:

5.1 Service Providers (Data Processors)

Under Article 28 GDPR agreements, including:

  • Cloud infrastructure providers (e.g., Amazon Web Services – EU region)
  • Technical maintenance providers
  • Analytics or crash-reporting services (if applicable)
  • Push notification services (if activated)

These providers process data exclusively to provide contracted services and are prohibited from using data for independent or advertising purposes.

5.2 Public Authorities

Where required by law or judicial order.

Rufio does not sell, rent, or transfer personal data to advertisers, data brokers, or third parties for marketing profiling.

6. International Data Transfers

Data is primarily processed within the European Economic Area (EEA).

If international transfers occur, they will be safeguarded through:

  • Adequacy decisions
  • Standard Contractual Clauses (SCC)
  • Other legally recognized safeguards

7. User Rights

Users may exercise the following rights under GDPR:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction
  • Right to data portability
  • Right to object
  • Right to withdraw consent

Requests may be sent to: woof@rufioapp.com

Users may also file a complaint with the Spanish Data Protection Authority (AEPD): https://www.aepd.es

8. Security Measures

Rufio App S.L. implements appropriate measures in accordance with Article 32 GDPR, including:

  • Encryption in transit (HTTPS)
  • Secure cloud infrastructure (AWS EU region)
  • Access controls and authentication mechanisms
  • Regular backups
  • Monitoring for anomalous activity
  • Internal security reviews

8.1 Data Breach Notification

In the event of a personal data breach:

  • Supervisory authorities will be notified within 72 hours where legally required
  • Affected users will be informed when there is a high risk to their rights and freedoms

9. Data Retention

9.1 Active Accounts

Personal data is retained while the account remains active.

9.2 Account Deletion

Users may request account deletion from within the App.

Upon deletion:

  • Personal data will be erased or anonymized
  • Certain data may be blocked and retained where legally required
  • Access to the account will be permanently removed

9.3 Anonymized Data Retention

Anonymized data may be retained for:

  • Statistical analysis
  • Platform improvement
  • Service optimization

Anonymized data does not allow identification of users and is not used for advertising or tracking purposes.

10. Children's Data

Rufio is rated 4+ (All Ages) in app stores.

The App may be accessed by minors. Where required by applicable law, parental or guardian consent is required before personal data is processed.

Rufio does not knowingly collect personal data from children without appropriate legal basis.

If a parent or guardian believes that a child has provided personal data without proper consent, they may contact us at: woof@rufioapp.com and we will take appropriate action, including deletion of the data where applicable.

11. User Responsibilities

Users agree to:

  • Provide truthful and accurate information
  • Protect their account credentials
  • Use the App lawfully
  • Not misuse location-based services

12. Acceptance

Users accept this Privacy Policy by:

  • Registering in the App
  • Accessing any functionality
  • Continuing use after updates

13. Modifications

This Privacy Policy may be updated due to:

  • Regulatory changes
  • Technical improvements
  • Introduction of new features
  • Security updates

Material changes will be communicated through the App or via email where appropriate.

14. Contact