RapidRazor Logo
Sign inGet started

Privacy Policy

Last Updated: March 13, 2026 Effective Date: March 13, 2026

1. Introduction and Who We Are

RapidRazor ("Company," "we," "us," or "our") is the developer and operator of the RapidRazor software product — an AI-powered video editing extension for Adobe Premiere Pro and its associated companion desktop application, backend processing services, and website located at rapidrazor.io (collectively, the "Services").

This Privacy Policy ("Policy") is a legally binding document that describes, with full transparency and in precise detail, how we collect, use, process, store, share, retain, and protect your personal information and other data when you access or use our Services.

This Policy applies to:

  • The RapidRazor Adobe Premiere Pro CEP (Common Extensibility Platform) extension;
  • The RapidRazor Electron companion desktop application;
  • The RapidRazor web-based user interface served through the desktop application;
  • The RapidRazor website at rapidrazor.io and app.rapidrazor.io;
  • All AI-powered cloud processing services operated by or on behalf of RapidRazor;
  • Any communications between you and RapidRazor.

By installing, accessing, or using any part of the Services, you acknowledge that you have read, understood, and agree to the data practices described in this Policy. If you do not agree, you must immediately cease using the Services and uninstall all components.

This Policy is designed to comply with, and should be read in conjunction with, applicable data protection and privacy laws, including:

  • The General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679
  • The UK General Data Protection Regulation (UK GDPR) — retained EU law as defined in the European Union (Withdrawal) Act 2018, read together with the Data Protection Act 2018
  • The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) (Cal. Civ. Code §§ 1798.100 et seq.)
  • The Personal Information Protection and Electronic Documents Act (PIPEDA) (Canada) and applicable provincial privacy legislation
  • The Australian Privacy Act 1988 and the Australian Privacy Principles (APPs)
  • Other applicable national, regional, and local data protection laws

2. Data Controller Information

RapidRazor is the data controller responsible for your personal data processed under this Policy.

Contact: Email: support@rapidrazor.io Website: rapidrazor.io

For data protection inquiries and requests to exercise your rights, please contact us at support@rapidrazor.io with the subject line: "Privacy Rights Request."

3. What Information We Collect and Why

We collect only the data that is necessary for a specified, legitimate purpose. Below is a precise and exhaustive account of every category of data we collect.

3.1 Account and Licensing Data

What we collect:

  • License Key (a unique alphanumeric credential issued at the time of purchase)
  • Email address and account credentials associated with your purchase at app.rapidrazor.io
  • Billing information, subscription plan details, transaction history, and payment method information (processed by our third-party payment infrastructure — we do not store full card numbers)

How it is stored:

  • Your License Key is stored locally on your device in the application's local storage (localStorage). It is transmitted with every API request to our backend as an HTTP authentication header (X-License-Key) to verify your subscription and authorize access to Services.

Legal basis (GDPR/UK GDPR): Performance of a contract; legitimate interests (license enforcement and fraud prevention).

3.2 Audio and Video Content (User Content)

This is the most sensitive category of data we handle and we are fully transparent about what happens to it.

What we collect and how it flows:

When you invoke an AI-powered feature in RapidRazor (such as Silence Removal, Filler Word Removal, Repetition Removal, Profanity Detection, Caption Generation, Smart Zoom, Multi-Camera Editing, B-Roll Detection, Viral Clip Detection, or Chapter Detection), the following process occurs:

  1. Local export: The RapidRazor extension instructs Adobe Premiere Pro to export the audio from your selected sequence to a temporary file on your local device.
  2. Upload to cloud storage: The temporary audio file is uploaded from your device to Microsoft Azure Blob Storage (specifically the tmpaudio container on the rapidrazor storage account) using a time-limited, single-use Secure Access Signature (SAS) token obtained from our backend. The file is not accessible to the public.
  3. AI processing: The URL of the uploaded audio file is transmitted to our AI backend infrastructure (hosted on Google Cloud Platform, region europe-west1) for processing. The specific processing task depends on the feature invoked (e.g., transcription, speaker diarization, filler word detection, profanity detection).
  4. Result delivery: Once processing is complete, the results (e.g., timestamps, transcripts, detected words, chapter titles) are returned to your local application. The results are applied to your Premiere Pro timeline locally.
  5. Deletion: Audio files stored in Azure are treated as temporary and are subject to deletion in accordance with our data retention policy (see Section 8).

What we do NOT do with your content:

  • We do not permanently archive your audio or video files for any purpose other than completing the requested processing task.
  • We do not use your actual audio or video content to train AI models without your explicit, separate, informed consent. Aggregated, de-identified metadata (such as anonymized duration and language statistics) may be used for service improvement.
  • We do not sell, share, or disclose your content to any third party except as necessary to deliver the Services (as described in Section 5).

Your responsibility: You are solely responsible for ensuring that you have all necessary rights, permissions, and consents to process any content through the Services — including rights to process audio featuring third parties' voices, likenesses, or personal data, and compliance with applicable recording consent laws in your jurisdiction.

Legal basis (GDPR/UK GDPR): Performance of a contract; your explicit consent where required for special category data.

3.3 Usage and Behavioural Analytics

We use third-party behavioural analytics technology within the RapidRazor application interface. This technology is used to help us understand how users interact with the Software, identify usability issues, improve feature design, and diagnose performance problems.

When you use the application interface, this technology may automatically collect and transmit to our analytics service provider the following categories of data:

  • Session interaction data: Visual recordings of your interactions with the application interface, including mouse movements, clicks, scrolling behaviour, and navigation patterns. Sensitive input fields are masked and are not captured.
  • Aggregated interaction maps: Data about where users click, tap, and scroll across the interface, compiled into aggregated heatmap reports.
  • Device and technical information: Browser or application environment type, operating system, screen resolution, device type, and language settings.
  • Approximate location: Your IP address may be used by the service provider to derive an approximate geographic location at the country or region level. We do not receive or store raw IP addresses.
  • Interaction metadata: Application views visited, time spent, navigation paths, errors encountered, and feature usage patterns.

Why we collect this: To continuously improve the usability, reliability, and design of the Software.

Third-party processing: This data is processed by a third-party analytics service provider acting as a data processor on our behalf, subject to appropriate contractual data protection obligations. The service provider may store and process this data in the United States and other countries where it operates infrastructure.

Opt-out: You may limit the collection of this data by using browser-level privacy controls, disabling JavaScript for the application interface, or using a privacy-focused browser extension that blocks behavioural analytics scripts. Doing so does not affect the core functionality of the Services.

Legal basis (GDPR/UK GDPR): Legitimate interests (improving product usability and quality); where required by applicable law (e.g., ePrivacy rules), we rely on your consent.

3.4 In-App Feedback Data

When you submit a star rating, written feedback, or a feature review through the in-app feedback mechanism, we collect:

  • Your star rating and written feedback text
  • The feature to which the feedback relates
  • A timestamp

This data is transmitted to our backend and stored using Airtable (a third-party database and productivity platform operated by Airtable, Inc.). Feedback is used solely to improve the Services. It is not linked to your personal identity unless you voluntarily include identifying information in your feedback text.

Legal basis (GDPR/UK GDPR): Legitimate interests (product improvement).

3.5 System Fonts

When you use the Caption Generation feature, the Software reads the list of fonts installed on your operating system through the companion Electron application (window.rapidRazor.system.getFonts()). This is used solely to populate the font selection picker within the captions editor. This data is never transmitted to any server and remains entirely local to your device.

3.6 Downloaded B-Roll Media

When you download stock footage through the B-Roll feature, files are downloaded from third-party stock footage providers (including Pexels, operated by Canva Pty Ltd) and saved locally to your device in the path {userDataPath}/Media/B-Roll/{date}/. RapidRazor does not retain a copy of downloaded media files. Your use of such media is subject to the licensing terms of the respective stock provider.

3.7 Log and Error Data

We may automatically collect diagnostic and error log data when the Software encounters issues, including feature name, error type, and timestamp. This data is used solely to diagnose and fix technical problems and is not linked to personally identifiable information beyond your License Key.

3.8 Credits and Usage Metrics

The Services operate on a credit-based model. We collect and store data about your Credits usage (processing hours consumed, Credits balance, billing period start and end dates) for the purpose of enforcing your subscription entitlement and providing you with accurate usage information. This data is stored on our backend infrastructure.

4. Legal Bases for Processing (GDPR and UK GDPR)

For users in the European Economic Area (EEA) and United Kingdom, we process your personal data on the following legal bases:

| Processing Activity | Legal Basis | |---|---| | License Key authentication and account access | Art. 6(1)(b) — performance of a contract | | Audio/video upload for AI processing | Art. 6(1)(b) — performance of a contract | | Credits accounting and subscription management | Art. 6(1)(b) — performance of a contract | | In-app feedback collection | Art. 6(1)(f) — legitimate interests (product improvement) | | Behavioural analytics (session interaction data) | Art. 6(1)(f) — legitimate interests; or Art. 6(1)(a) — consent where required | | Security monitoring and fraud prevention | Art. 6(1)(f) — legitimate interests | | Compliance with legal obligations | Art. 6(1)(c) — legal obligation | | Business communications and support | Art. 6(1)(b) or Art. 6(1)(f) as applicable |

Where we rely on legitimate interests, we have carried out a balancing test and determined that our legitimate interests are not overridden by your interests or fundamental rights. You have the right to object to processing based on legitimate interests (see Section 10).

5. How We Share Your Information

We do not sell your personal information. We do not sell, rent, trade, or otherwise commercially exploit your personal data to any third party for their own marketing or commercial purposes.

We share your data only in the following specific and limited circumstances:

5.1 Infrastructure and Service Providers

We use the following third-party data processors who may receive your data solely to perform services on our behalf:

| Service Provider | Purpose | Data Shared | Location | |---|---|---|---| | Microsoft Azure Blob Storage | Temporary storage of audio files for AI processing | Audio files, SAS token URLs | Configurable; primarily European regions | | Google Cloud Platform | AI backend processing and container infrastructure | Audio file URLs, processing job parameters | europe-west1 (Belgium) | | Supabase Storage (core.rapidrazor.io) | Hosting static Software assets (templates, presets, MOGRT files) | None — read-only downloads | Supabase-managed regions | | Pexels / Canva | Stock footage search and delivery for B-Roll feature | Search query keywords | Pexels-managed infrastructure | | Airtable, Inc. | Storage of in-app user feedback | Feedback text, rating, timestamp, feature name | United States | | Behavioural Analytics Provider | Application interaction analytics and session behaviour analysis | Usage interactions, device info, approximate location | United States | | Netlify | Alternative CDN delivery of application interface | Standard HTTP request metadata | United States / global CDN |

All service providers with whom we share personal data are required under data processing agreements to: (a) process data only on our documented instructions; (b) implement appropriate technical and organisational security measures; (c) not engage sub-processors without our authorisation; and (d) assist us in complying with applicable data protection obligations.

5.2 Legal Disclosure

We may disclose your personal information where we believe in good faith that disclosure is required or permitted by applicable law, including:

  • In response to a lawful subpoena, court order, search warrant, or other legally compulsory process issued by a court or governmental authority of competent jurisdiction;
  • To comply with our legal obligations under applicable law or regulation;
  • To protect the rights, property, or safety of RapidRazor, our users, or the public;
  • To detect, investigate, or prevent fraud, security incidents, or violations of our Terms of Service.

Where legally permissible, we will attempt to notify you before disclosing your personal information in response to legal process.

5.3 Business Transfers

In the event of a merger, acquisition, restructuring, sale of assets, bankruptcy, or similar corporate transaction, your personal information may be transferred to a successor entity as part of the transaction. In such cases, we will require the successor entity to honour the commitments made in this Policy, and we will notify you of any material changes to the applicable privacy terms.

5.4 With Your Explicit Consent

We will share your information with any third party where you have given us your prior, informed, and specific consent to do so, beyond the circumstances described above.

5.5 Aggregated and Anonymised Data

We may share aggregated, anonymised, or de-identified data (from which no individual can reasonably be identified) with third parties for research, analytics, product improvement, or business reporting purposes. Such sharing does not constitute sharing of "personal data" under applicable law.

6. Cookies and Tracking Technologies

6.1 Application Interface (Electron App / Web UI)

The RapidRazor application interface is served as a web-based React application within the Electron desktop environment. The following tracking technologies may be active within the application interface:

Behavioural Analytics Scripts: The application loads a third-party behavioural analytics script from a remote analytics service. This script may set cookies and use session storage and local storage to support session interaction analysis as described in Section 3.3.

Application State Storage: The application uses browser localStorage to store the following data locally on your device:

  • Your License Key (rapidRazorLicenseKey)
  • Application preferences and workflow state No application localStorage data is transmitted to third parties except as part of the normal operation of the Services described in this Policy.

6.2 Website (rapidrazor.io / app.rapidrazor.io)

Our websites may use cookies and similar technologies including:

  • Strictly Necessary Cookies: Required for authentication, security, and core website functionality. These cannot be disabled without impairing your ability to use the website.
  • Analytics Cookies: To understand traffic patterns and improve the website experience.
  • Functional Cookies: To remember your preferences.

You can manage cookie preferences through your browser settings or any consent management tool presented on the website. Disabling non-essential cookies does not affect your use of the core desktop Software.

6.3 Do Not Track

We do not currently modify our data collection practices in response to "Do Not Track" browser signals because there is no uniform industry standard for their implementation. You may limit behavioural analytics data collection as described in Section 3.3.

7. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, alteration, or disclosure. These measures include:

  • Encryption in transit: All data transmitted between the Software and our backend is protected using TLS (Transport Layer Security) encryption.
  • Encryption at rest: Data stored in Azure Blob Storage and our backend database is encrypted at rest.
  • Access controls: Access to production systems and personal data is restricted to authorised personnel on a need-to-know basis, protected by strong authentication.
  • SAS token isolation: Audio files uploaded to Azure are accessed only via time-limited, scope-restricted Secure Access Signature tokens, preventing unauthorised access to the underlying storage account.
  • Application authentication: The Electron companion application uses a proprietary authentication mechanism to prevent unauthorised access to the Software's internal communication channels.
  • Incident response: We maintain procedures for detecting, investigating, and responding to personal data breaches, including notification to supervisory authorities and affected individuals where required by applicable law.

Important limitation: No security measure is infallible. Despite our efforts, we cannot guarantee absolute security against all conceivable threats. In the event of a breach that affects your rights and freedoms, we will notify you and applicable authorities as required by law.

Your responsibilities: You are responsible for maintaining the confidentiality of your License Key and account credentials. You should notify us immediately at support@rapidrazor.io if you suspect unauthorised access to your account.

8. Data Retention

We retain personal data only for as long as necessary for the purposes described in this Policy, or as required by applicable law.

| Data Category | Retention Period | |---|---| | Audio files (Azure Blob Storage) | Deleted promptly upon completion of the processing job. No long-term retention. | | License Key | Retained on our backend for the duration of the subscription and for a reasonable period thereafter for audit and legal compliance purposes. | | Credits and usage logs | Retained for the current billing period plus 12 months for billing dispute resolution. | | In-app feedback (Airtable) | Retained indefinitely in anonymised/aggregated form for product improvement; linked feedback retained until you request deletion. | | Behavioural analytics session data | Governed by our analytics service provider's data retention policies (typically up to 13 months). | | Billing records | Retained for a minimum of 7 years as required by applicable tax and accounting laws. | | Legal hold data | Retained for as long as required by any applicable legal obligation, litigation hold, or regulatory investigation. |

Upon receiving a valid deletion request (see Section 10), we will delete or anonymise your personal data within 30 days, except where retention is required by law.

9. International Data Transfers

Our Services involve the transfer of personal data across international borders. In particular:

  • Audio files are uploaded to Microsoft Azure, which may process data in multiple geographic regions.
  • Our AI backend is hosted on Google Cloud Platform in the europe-west1 region (Belgium, EEA).
  • Feedback data is stored by Airtable in the United States.
  • Our behavioural analytics service provider processes interaction data in the United States.

For transfers of personal data from the EEA or UK to countries that have not been deemed to provide an adequate level of data protection, we rely on the following safeguards:

  • Standard Contractual Clauses (SCCs) approved by the European Commission and the UK Information Commissioner's Office (ICO), as applicable;
  • Adequacy decisions where applicable;
  • The UK International Data Transfer Agreement (IDTA) for UK-origin transfers.

By using the Services, you acknowledge that your personal data may be transferred to, stored, and processed in countries outside your country of residence. We take all reasonable steps to ensure that such transfers are conducted lawfully and that your data is afforded an equivalent level of protection.

10. Your Privacy Rights

Depending on your location, you may have the following rights with respect to your personal data. To exercise any of these rights, contact us at support@rapidrazor.io with the subject line "Privacy Rights Request." We will respond within the timeframes required by applicable law (typically 30 days, extendable by a further 2 months in complex cases under GDPR/UK GDPR).

We may require reasonable verification of your identity before processing your request.

10.1 Rights Under GDPR and UK GDPR (EEA and UK Users)

  • Right of Access (Art. 15): Request a copy of the personal data we hold about you and information about how it is processed.
  • Right to Rectification (Art. 16): Request correction of inaccurate or incomplete personal data.
  • Right to Erasure / "Right to be Forgotten" (Art. 17): Request deletion of your personal data, subject to legal exceptions (e.g., compliance with legal obligations).
  • Right to Restriction of Processing (Art. 18): Request that we limit processing of your data in certain circumstances.
  • Right to Data Portability (Art. 20): Receive your personal data in a structured, commonly used, machine-readable format, and transmit it to another controller.
  • Right to Object (Art. 21): Object to processing based on our legitimate interests, including for direct marketing purposes. Where you object, we will cease processing unless we can demonstrate compelling legitimate grounds.
  • Rights in Relation to Automated Decision-Making (Art. 22): Where any AI-generated output constitutes solely automated decision-making with a significant legal or similarly significant effect on you, you have the right to request human review. Note that RapidRazor's AI outputs are suggestions only and are not applied to your work without your review and approval.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your national data protection supervisory authority. In the UK, this is the Information Commissioner's Office (ICO) at ico.org.uk. In Ireland, this is the Data Protection Commission. In other EU Member States, it is the relevant national supervisory authority.

10.2 Rights Under CCPA/CPRA (California Residents)

If you are a California resident, you have the following rights under the CCPA/CPRA:

  • Right to Know: Know what categories and specific pieces of personal information we collect, the purposes for which they are used, and with whom they are shared.
  • Right to Delete: Request deletion of your personal information, subject to exceptions.
  • Right to Correct: Request correction of inaccurate personal information.
  • Right to Opt-Out of Sale or Sharing: We do not sell your personal information, and we do not share it for cross-context behavioural advertising. No opt-out mechanism is required.
  • Right to Limit Use of Sensitive Personal Information: To the extent we process sensitive personal information as defined by CPRA, you may request that we limit such use to what is strictly necessary to provide the Services.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights.

10.3 Rights Under PIPEDA (Canadian Users)

Canadian residents have the right to access personal information held about them, to challenge its accuracy, and to request correction. To exercise these rights, contact us at support@rapidrazor.io.

10.4 Rights Under the Australian Privacy Act (Australian Users)

Australian residents have the right to access and correct personal information held about them, and to complain about a breach of the Australian Privacy Principles. For complaints, you may also contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

11. AI Processing Transparency

RapidRazor is fundamentally an AI-powered product. We are committed to transparency about how AI is used.

11.1 How AI Processes Your Content

Your audio content is processed by AI systems to perform specific tasks you have requested: detecting silences, identifying filler words, detecting repetitions, identifying profanity, generating transcripts and captions, detecting speakers, identifying B-roll placement opportunities, detecting highlight moments, and generating chapter structures.

These AI systems operate on your audio data for the purpose of completing the task. The outputs are probabilistic estimates — they may be inaccurate, incomplete, or occasionally inappropriate. You are solely responsible for reviewing, editing, and approving all AI-generated outputs before incorporating them into any final work product.

11.2 AI Training

We do not use your actual audio or video files to train, fine-tune, or evaluate AI models without your explicit, separately obtained, and informed consent. We may use fully anonymised, aggregated usage metadata (e.g., "feature X was used Y times this month") for service monitoring and improvement purposes. This does not constitute use of your personal data or content for training.

11.3 Third-Party AI Services

Our backend may use third-party AI and machine learning APIs and platforms (such as cloud speech recognition or language processing services) to deliver features. Where such services process your audio content, they do so as data processors under our instructions and are subject to appropriate contractual data protection obligations.

12. Children's Privacy

The Services are not intended for, directed at, or designed to attract individuals under the age of 18 (or the applicable age of majority in your jurisdiction, if higher). We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal information from a child without verifiable parental consent, we will take immediate steps to delete that information from our systems.

If you are a parent or guardian and have reason to believe that your child has provided personal information to us, please contact us immediately at support@rapidrazor.io.

13. Third-Party Links, Integrations, and Services

13.1 Adobe Premiere Pro

The Software operates as an extension within Adobe Premiere Pro, a product of Adobe Inc. Your use of Adobe Premiere Pro is governed entirely by Adobe's own End-User License Agreement and Privacy Policy. RapidRazor is not affiliated with Adobe Inc., is not endorsed by Adobe Inc., and makes no representations about Adobe's privacy practices. We encourage you to review Adobe's privacy policy at adobe.com/privacy.

13.2 Other Third-Party Services

The Services may link to or integrate with third-party websites or services. We are not responsible for the privacy practices or content of any third-party website or service. This Policy applies only to data collected and processed by RapidRazor.

14. Your Responsibility for Third-Party Data

When you use RapidRazor to process content that contains the personal data of third parties (such as the voices, likenesses, or identifying information of individuals appearing in your recordings), you act as an independent data controller with respect to those third parties' personal data. You are solely responsible for:

  • Ensuring you have a lawful basis to process that data (e.g., consent, legitimate interests);
  • Complying with all applicable privacy and data protection laws in relation to such third-party data;
  • Obtaining any necessary consents for recording, processing, and publishing content featuring identifiable individuals;
  • Complying with recording consent laws in all jurisdictions relevant to your activities (which vary significantly by jurisdiction — in many US states and most countries, one-party or all-party consent rules apply to recorded conversations).

RapidRazor assumes no liability for your compliance (or non-compliance) with these obligations.

15. Changes to This Privacy Policy

We may update this Policy from time to time to reflect changes in our data practices, applicable law, or the Services. We will communicate material changes by:

  • Updating the "Last Updated" date at the top of this Policy;
  • Displaying a notice within the Software or on our website;
  • Where required by applicable law, seeking your renewed consent before the changes take effect.

Your continued use of the Services after the effective date of any updated Policy constitutes your acceptance of the revised terms. If you do not agree to the revised Policy, your sole remedy is to cease using the Services and, if applicable, delete your account.

We encourage you to review this Policy periodically.

16. Disclaimers and Limitation of Liability

16.1 No Warranty

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE." WE MAKE NO WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, ACCURACY, OR NON-INFRINGEMENT WITH RESPECT TO THE SERVICES OR THE ACCURACY OF AI-GENERATED OUTPUTS.

16.2 Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, RAPIDRAZOR AND ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, AND LICENSORS SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR FOR ANY LOSS OF PROFITS, REVENUE, DATA, CONTENT, OR GOODWILL, ARISING OUT OF OR IN CONNECTION WITH THIS POLICY, THE SERVICES, OR ANY DATA PROCESSING ACTIVITIES DESCRIBED HEREIN, EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

OUR TOTAL AGGREGATE LIABILITY FOR ALL CLAIMS ARISING UNDER OR IN CONNECTION WITH THIS POLICY SHALL NOT EXCEED THE GREATER OF: (A) THE TOTAL FEES PAID BY YOU TO RAPIDRAZOR IN THE TWELVE (12) MONTHS PRECEDING THE CLAIM; OR (B) USD $100.

Nothing in this Policy excludes or limits liability for: (i) death or personal injury caused by negligence; (ii) fraud or fraudulent misrepresentation; or (iii) any other liability that cannot be excluded or limited under applicable law. If you are a consumer in the UK or EU, your statutory consumer rights are not affected by this clause.

16.3 Indemnification

You agree to indemnify, defend, and hold harmless RapidRazor and its officers, directors, employees, agents, licensors, and affiliates from and against any claims, liabilities, damages, losses, costs, and expenses (including reasonable legal fees) arising out of or relating to: (a) your use of the Services; (b) any content you process through the Services; (c) your violation of this Policy or applicable law; (d) your infringement of any third party's rights; or (e) the personal data of third parties contained in content you process through the Services.

17. Governing Law

This Policy shall be governed by and construed in accordance with applicable law. Where no single governing law is determined by a court of competent jurisdiction, the parties agree that the law most closely connected to the subject matter of the dispute and the place of the Company's principal operations shall apply, without regard to conflict of law principles.

If you are a consumer in the European Union, you may also rely on mandatory consumer protection provisions of the law of your country of habitual residence. EU consumers may access the EU Online Dispute Resolution platform at ec.europa.eu/odr. If you are a consumer in the United Kingdom, mandatory provisions of UK consumer law apply.

18. Severability

If any provision of this Policy is found to be invalid, illegal, or unenforceable by a court of competent jurisdiction, that provision shall be modified to the minimum extent necessary to make it valid and enforceable (or, if modification is not possible, severed), and the remaining provisions shall continue in full force and effect.

19. Contact Us

For any privacy-related questions, concerns, data subject requests, or complaints, please contact us:

RapidRazor — Privacy Enquiries Email: support@rapidrazor.io Subject Line: Privacy Rights Request / Privacy Enquiry

We aim to respond to all substantive enquiries within 30 days of receipt.

20. Summary of Key Facts

| Topic | Summary | |---|---| | Do we sell your data? | No. | | Do we use your content to train AI? | No, without your explicit separate consent. | | Where is your audio processed? | Microsoft Azure (temporary) → Google Cloud Platform (europe-west1) for AI. | | What analytics do we use? | Third-party behavioural analytics (session interactions, clicks, heatmaps). | | What does it collect? | Interaction recordings, clicks, device info, approximate location. | | How long are audio files kept? | Deleted after processing. No long-term storage. | | Can I request deletion of my data? | Yes — email support@rapidrazor.io. | | Who do I complain to in the UK? | The Information Commissioner's Office (ICO) at ico.org.uk. | | Who do I complain to in the EU? | Your national data protection supervisory authority. |

© 2026 RapidRazor. All Rights Reserved.

Last Updated: March 13, 2026 | Effective Date: March 13, 2026