Privacy Policy

Last Updated: April 15, 2026

This Privacy Policy describes how Rapid Ratings International, Inc., and its affiliates (“Rapid Ratings,” “we,” or “us”) collect, use, disclose, and otherwise process personal information about you. Rapid Ratings is a business-to-business (B2B) company that specializes in providing global financial health analytics to other companies (collectively, our “Business Customers”). We currently do not offer products or services directly to consumers acting in their personal or household capacities. This Privacy Policy applies to personal information we collect from our Business Customers or prospective Business Customers when you access or use our websites and other online products and services that link to this Privacy Policy (collectively, our “Services”) and when you otherwise interact with us, such as at events, through our customer support channels, or on social media. We may provide different or additional notices of our privacy practices for certain offerings, in which case those notices will supplement or replace the disclosures in this Privacy Policy.

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA”) affords you certain additional privacy rights. If you are a European resident, please see the additional disclosure For Individuals in Europe below, and if you are a Canadian resident, please see the additional disclosure For Individuals in Canada below.

We may change this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the top of this policy. If we make material changes, we will provide you with additional notice (such as by adding a statement to the Services or sending you a notification). We encourage you to review this Privacy Policy regularly to stay informed about our information practices and the choices available to you.

CONTENTS

1. Notice of Collection and Use of Information
2. Use of Information
3. Analytics
4. Disclosure of Information
5. Data Retention
6. Your Choices
7. Additional Information for California Residents
8. Contact Us

NOTICE OF COLLECTION AND USE OF INFORMATION

We collect and use your information in a variety of ways. We collect information you provide directly to us. For example, we collect information directly from you when you send us an email, fill out a form, or otherwise communicate with us directly. We also collect certain information from you or your device automatically when you interact with our Services such as activity or usage information. We use this information to provide you Services and for other business purposes. The types of information about you that you provide and that we collect automatically are listed below along with our uses of that information.

• We do not use or disclose sensitive personal information for the purpose of inferring characteristics about you.
• In addition, we may use the above categories of information to create de-identified, anonymized, or aggregated information that no longer identifies or relates to a specific person.  We use such de-identified, anonymized, or aggregated information in accordance with applicable law.
• We may also use the personal information listed above to comply with legal and financial obligations, to fulfill or meet the purpose for which you provided the information, and/or to carry out any other purpose described to you at the time the information was collected.
• Additionally, if you make a payment through our Services, we work with a third-party payment processor that collects and processes your payment information, and we do not directly handle your payment card information.

Information We Collect from Other Sources

We obtain information from other sources. For example, we may collect information from payment and delivery services, advertising networks, data analytics providers, search information providers, and credit reference agencies, mailing list providers, identity verification providers, and other third-party data providers or publicly available sources. This information includes business contact information, such as your name, title, and email address.

Information We Derive

We may derive information or draw inferences about you based on the information we collect. For example, we may make inferences about your approximate location based on your IP address.

Rapid Ratings General Data Protection Regulation Roles (GDPR)

RapidRatings may act as a data controller, data processor, or both depending on the processing context, while its clients are typically data controllers.

Where RapidRatings processes personal data provided by a client to contact third parties on the client’s behalf, it acts as a data processor.

Once a direct relationship is established with a third party, RapidRatings may process personal data independently as a data controller or as a processor on behalf of that third party.

Rapid Ratings GDPR Compliance

The RapidRatings group of companies maintains data privacy and protection standards consistent with the requirements of the EU GDPR. RapidRatings can satisfy relevant EU GDPR data processing obligations and related contract terms when providing services to clients that are within the territorial scope of the EU GDPR.

RapidRatings does have an affiliate entity located in Europe which is subject to the EU GDPR by reason of its establishment there. However, this entity does not contract with clients.

DISCLOSURE OF INFORMATION

Rapid Ratings discloses the following categories of Personal Information for the following business purposes to the categories of recipients listed below:

In addition, we may disclose any of the categories of personal information listed above for the following purposes:

• We may disclose personal information if we believe that disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements.
• We may disclose personal information if we believe that your actions are inconsistent with our user agreements or policies, if we believe that you have violated the law, or if we believe it is necessary to protect the rights, property, and safety of Rapid Ratings, our users, the public, or others.
• We disclose personal information to our lawyers and other professional advisors where necessary to obtain advice or otherwise protect and manage our business interests.
• We may disclose personal information in connection with, or during negotiations concerning, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
• Personal information is disclosed between and among Rapid Ratings and our current and future parents, affiliates, and subsidiaries and other companies under common control and ownership.
• We disclose personal information with your consent or at your direction.

We also use and disclose aggregated or de-identified information that cannot reasonably be used to identify you.

Technical & Organizational measures

RapidRatings implements robust technical and organisational measures to protect personal data, supported by certifications including ISO 27001 and SOC 2; further details are available in the Information Security section of the RapidRatings website.

ADVERTISING AND ANALYTICS

We engage others to provide analytics services, serve advertisements, and perform related services across the web and in mobile applications. To do this, Rapid Ratings and these partners may use cookies, pixels, SDKs, and similar technologies to collect information about your use of our Services and other websites and mobile apps, including your device identifiers, IP address, web browser and mobile network information, pages viewed, time spent on pages or in mobile apps, links clicked, order information, items added to cart, and conversion information. This information is used to deliver advertising targeted to you on other companies’ websites and mobile apps, understand the effectiveness of this advertising, analyze and track data, determine the popularity of certain content, and better understand your activity. Depending on where you reside, you can opt out of ad targeting through cookies and similar technologies on our website by following the prompts behind the Your Privacy Choices  link in the site footer. Your opt-out choice will be linked to your browser only; therefore, you will need to renew your opt-out choice if you visit our website from a new device or browser, or if you clear your browser’s cookies.

DATA RETENTION

We store personal information associated with your account for as long as your account remains active. If you close your account, we will delete personal information related to your account upon your request and/or in accordance with our Records Retention Policy. We store other personal information for as long as necessary to carry out the purposes for which we originally collected it and for other business purposes explained in this Privacy Policy.

YOUR CHOICES

Account Information

You can access, correct, and delete certain information stored within your Rapid Ratings account at any time by logging in and navigating to the settings menu. For personal information that is not accessible through your account settings, you may contact us using the contact details provided in this privacy policy to request access, correction, or deletion.

Cookies and Similar Tracking Technologies

Rapid Ratings uses cookies and similar tracking technologies, as described above. You can usually adjust your browser settings to remove or reject browser cookies. Please note that removing or rejecting cookies could affect some of the functionality of our Services.

Communications Preferences

You may opt out of receiving promotional emails from Rapid Ratings by following the instructions in those communications. If you opt out, we may still send you non-promotional emails, such as those about your account or orders.

ADDITIONAL INFORMATION FOR CALIFORNIA RESIDENTS

The CCPA provides those residing in California certain rights with respect to their personal information. Accordingly, if you reside in California, this section applies to you.

California Sales and Sharing of Personal Information

California law requires that we provide transparency about personal information we “sell” or “share.” “Sale,” for the purposes of the CCPA, broadly means scenarios in which we have disclosed personal information with partners in exchange for valuable consideration, while “sharing” means we have disclosed information to a third party for cross-context behavioral advertising. Rapid Ratings discloses personal information, which includes identifiers, to our advertising and marketing partners to deliver ads targeted to your interest on other companies’ websites. Accordingly, Rapid Ratings “shares” your personal information. In addition, the CCPA has been interpreted to deem this “sharing” to also be a form of “sale.” Accordingly, in the preceding twelve (12) months, Rapid Ratings has “sold” or “shared” your personal information to or with third parties for cross-context behavioral advertising, such as targeting of advertising to you based on your personal information obtained from your activity across businesses, websites, apps, and services other than our Services. See Privacy Rights below to learn how to opt out of these activities.

We do not knowingly sell or share personal information about consumers under the age of 16.‍

‍

Your Rights under the CCPA

If you reside in California, you may opt out of the sale or sharing of your personal information by enabling a legally recognized universal opt-out signal, such as the Global Privacy Control (GPC), in your browser or device. Where we detect such a signal, we will treat it as a request to opt out of the sale or sharing of personal information and targeted advertising for that browser or device, in accordance with applicable law.

If you are not logged into your account with us, our processing of the signal will generally be limited to cookie-based sales, sharing, and targeted advertising associated with the specific browser or device from which the signal is transmitted.

Access, Correction, Deletion, and Opting Out of Sales, Sharing, and Targeted Advertising

Subject to certain limitations, you have the right to (1) request to know more about and access your personal information, including in a portable format, (2) request deletion of your personal information, and (3) request correction of inaccurate personal information, and (4) opt out of any “sales” or “sharing” of your personal information that may be occurring or uses of your personal information for targeted advertising.

To request access, correction, or deletion of your personal information, via legal@rapidratings.com or submit a request through our contact form available at https://www.rapidratings.com/solutions/contact-rapidratings. If we need to further verify your request, we may do so by asking you to provide information related to your interactions with us.

If you reside in California, you can also opt out by visiting our websites with a legally recognized universal opt-out signal enabled, such as the Global Privacy Control. If you are not logged into your account with us, our processing of the signal will be limited to cookie-based sales, sharing, and targeted advertising for the specific browser or device that you are using.

Nondiscrimination

You have the right not to be discriminated against for exercising any of your privacy rights.

Appeals

If we deny your request, you may appeal our decision by contacting us via legal@rapidratings.com. If you have concerns about the result of an appeal, you may contact the attorney general in the state where you reside.

Authorized Agents

If you reside in California, you may also designate an authorized agent to submit an access, deletion, or correction request on your behalf. We may ask authorized agents to submit proof of their authority to make a request, such as a valid power of attorney or proof that they have signed permission from the consumer who is the subject of the request. In some cases, we may contact the individual who is the subject of the request to verify their own identity or confirm the authorized agent has permission to submit the request. If you are an authorized agent seeking to make an access, correction, or deletion request on behalf of a California resident, please contact us at legal@rapidratings.com.  

Do Not Track

Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. Please note that we do not respond to or honor DNT signals or similar mechanisms transmitted by web browsers.

EU-U.S. Data Privacy Framework Notice

Participation

Rapid Ratings International Inc. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) as set forth by the U.S. Department of Commerce. Rapid Ratings International Inc. has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. Data Privacy Framework.

If there is any conflict between the terms in this privacy policy and the EU-U.S. Data Privacy Framework Principles, the Principles shall govern.

FTC jurisdiction

Rapid Ratings International Inc. is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).

Individual rights

Individuals located in the European Union with inquiries or complaints regarding our handling of personal data received under the EU-U.S. Data Privacy Framework should first contact us at:
‍legal@rapidratings.com.

We will respond to complaints within 45 days.

Complaint handling

In compliance with the EU-U.S. Data Privacy Framework Principles, Rapid Ratings International Inc. commits to resolve complaints about our collection or use of personal data transferred to the United States pursuant to the EU-U.S. Data Privacy Framework.

Individuals in the European Union who have questions or complaints regarding our handling of personal data received in reliance on the EU-U.S. Data Privacy Framework should first contact us using the details below:

Email: legal@rapidratings.com

Rapid Ratings International Inc. will investigate and respond to any such complaints within 45 days of receipt.

If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, you may contact our independent dispute resolution provider, JAMS, as described below.

Independent dispute resolution

In compliance with the EU-U.S. Data Privacy Framework Principles, Rapid Ratings International Inc. commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. Data Privacy Framework to JAMS, an alternative dispute resolution provider based in the United States.

If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit:

https://www.jamsadr.com/dpf-dispute-resolution

for more information or to file a complaint. These dispute resolution services are provided free of charge to you.

Binding Arbitration

Under certain conditions, individuals may invoke binding arbitration to address complaints regarding compliance with the EU-U.S. Data Privacy Framework Principles that have not been resolved by any of the other EU-U.S. Data Privacy Framework mechanisms.

Human Resources Data

Where RapidRatings receives personal data relating to employees in the European Economic Area in the context of the employment relationship, RapidRatings commits to cooperate with and comply with the advice of the EU Data Protection Authorities (DPAs) with regard to complaints concerning such human resources data transferred under the EU-U.S. Data Privacy Framework.

Onward transfer liability

Rapid Ratings International Inc. may transfer personal data to third parties acting as agents on its behalf. Rapid Ratings International Inc. remains responsible for the processing of personal data received under the EU-U.S. Data Privacy Framework and subsequently transferred to a third party acting as an agent on its behalf.

Rapid Ratings International Inc. complies with the EU-U.S. Data Privacy Framework Principles for all onward transfers of personal data from the European Union, including the onward transfer liability provisions.

Government access

Please note that personal data transferred under the EU-U.S. Data Privacy Framework may be subject to lawful requests by public authorities, including to meet national security or law enforcement requirements.

FTC enforcement statement

RapidRatings is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.

DPF website link

To learn more about the Data Privacy Framework program and to view our certification, please visit https://www.dataprivacyframework.gov/

International Transfers

Rapid Ratings is based in the United States, and we and our service providers process and store personal information on servers located in the United States and other countries. Whenever we make restricted international transfers of personal information, we take steps to ensure that your personal information receives an adequate level of protection (by putting in place appropriate safeguards, such as contractual clauses) or ensure that we can rely on an appropriate derogation under data protection laws.

Where appropriate, Rapid Ratings may rely on the EU-U.S. Data Privacy Framework for transfers of personal data from the European Economic Area to the United States.

For Individuals in Europe

If you are located in the European Economic Area (the “EEA”), the United Kingdom (“UK”), or Switzerland, the following specific provisions apply to our processing of your personal information.

Legal Basis for Processing

When we process your personal data as described above, we do so in reliance on the following lawful bases:

• To perform our responsibilities under our contract with you (e.g., communicating with you to provide the products and services you requested).
• When we have a legitimate interest in processing your personal data to operate our business or protect our interests (e.g., to provide, maintain, and improve our products and services, conduct data analytics, and communicate with you).
• To comply with our legal obligations (e.g., to maintain a record of your consents and track those who have opted out of marketing communications).
• When we have your consent to do so (e.g., when you opt in to receive marketing communications from us). When consent is the legal basis for our processing your personal data, you may withdraw such consent at any time.

Data Subject Requests

You may have the right to access your personal information, to have your information rectified or deleted, and to restrict or object to the processing of your personal information. You also may have the right to receive, in a structured, commonly-used and machine-readable format, the personal information that you have provided to us about you, with your consent or based on a contract to which you are a party. You have the right to have this information transmitted to another company, where it is technically feasible. To exercise your rights, please contact us by email at legal@rapidratings.com.

You also may lodge a complaint with the Data Protection Authority where you reside, if you have a concern about our processing of personal data that we are not able to resolve. Contact details for your Data Protection Authority can be found using the links below:

For individuals in the EEA: https://edpb.europa.eu/about-edpb/board/members_en

For individuals in the UK: https://ico.org.uk/global/contact-us/  

For individuals in Switzerland: https://www.edoeb.admin.ch/edoeb/en/home/the-fdpic/contact.html

Automated Decisions

As an organization, RapidRatings itself does not perform processing activities that result in automated decision-making (including profiling) without human intervention (within the meaning of those activities under data protection laws).

From time to time, we may rely on one or more vendors offering solutions that leverage automated processing technologies. All decisions by RapidRatings itself arising from the use of such automated solutions also include the use of human review and/or intervention on the part of RapidRatings. You will not be subject to decisions by RapidRatings that will have legal effect or significantly impact on you based solely on automated decision-making.

For Individuals in Canada

If you reside in Canada, this section applies to you.

Your Rights

You may exercise your rights to access and correct the personal information we hold about you by contacting us at legal@rapidratings.com. By submitting personal information to us or our service providers, you consent to the collection, use, disclosure, and transfer of your personal information in accordance with this Privacy Notice and as permitted or required by law. You may withdraw your consent at any time by contacting us at legal@rapidratings.com. If you withdraw your consent (or if you decide not to provide certain personal information), you acknowledge that we may not be able to provide you with certain products, services, or information.

CONTACT US

If you have questions about this Privacy Policy, please contact us at legal@rapidratings.com.