Privacy Policy

Effective Date: 6/02/2023
Last Updated: 10/15/2025

1. Introduction
Rapid Reforest (“we,” “our,” “us”) values your privacy and is committed to protecting your personal information.
This Privacy Policy explains how we collect, use, store, and protect your data when you visit our website, complete an Impact Report form, make a donation, or otherwise interact with our services.
We comply with the General Data Protection Regulation (GDPR), the Lei Geral de Proteção de Dados (LGPD), and other applicable privacy laws.
By using our website or submitting information, you agree to this Policy.

2. Information We Collect
We collect only the information needed to provide our services effectively, including:
Personal Information: name, email address, phone number, and mailing address.
Organization or Event Information: company name, industry type, and location.
Impact Data: information you provide in Impact Report forms (e.g., energy use, transportation, waste, travel data).
Payment Information: processed securely via Stripe or similar gateways —we never store full card details.
Technical Information: IP address, browser type, device data, and cookies for analytics and security.

3. How We Use Your Information
We use your information to:
Generate and deliver personalized Impact Reports;
Issue certificates and donation receipts;
Process payments and provide tax-deductible documentation;
Communicate about your report, donations, or related projects;
Improve our website and user experience;
Comply with legal, accounting, and reporting obligations.

4. Sharing and Disclosure
We never sell or rent personal information.
We may share limited data with:
Service providers (e.g., Stripe, Google, Make.com, Zapier, Mailjet) to operate technical processes;
Reforestation and verification partners solely to execute funded projects;
Public authorities if legally required.
All partners are bound by confidentiality and data-protection agreements consistent with GDPR and LGPD.

5. Data Storage and Security
Your data is stored on secure servers with restricted access.
We use encryption, access controls, and other technical and organizational measures to safeguard it from loss, misuse, or unauthorized access.

6. Data Retention and Deletion
We retain personal data only as long as necessary for the purposes outlined above.
You may request deletion or anonymization of your information at any time, subject to legal and accounting requirements.

7. Your Rights
Under GDPR and LGPD, you have the right to:
Confirm whether we process your data;
Access, correct, or delete your personal information;
Withdraw consent at any time;
Request portability of your data;
Lodge a complaint with a supervisory authority.
Requests can be sent to privacy@rapidreforest.com.

8. Cookies
We use cookies and similar technologies to enhance your browsing experience, analyze traffic, and personalize content.
You can manage or disable cookies through your browser settings.

9. International Data Transfers
Because some of our infrastructure is hosted in the United States, your data may be transferred internationally.
Such transfers occur only under adequate safeguards and standard contractual clauses approved by data-protection authorities.

10. Updates to This Policy
We may update this Privacy Policy from time to time.
The “Last Updated” date reflects the latest version.
Continued use of our website or services after changes constitutes acceptance of the revised Policy.

11. Contact Us
For questions, concerns, or data-related requests:

contact@rapidreforest.com

https://rapidreforest.com/contact