Risilience Privacy Policy
This Privacy Policy explains how Risilience Limited and its affiliated entities, including our US affiliate Risilience, Inc. (together, “Risilience”, “we”, “us” or “our”), collect, use, disclose and protect personal data.
This Privacy Policy applies to:
- • the risilience.com website;
- • the Riise platform; and
- • any software applications, products or services that Risilience makes available (together, the “Services”).
If a Service links to a separate privacy notice, that notice will apply to that Service.
This Privacy Policy does not apply to information collected by Risilience through other means or to third-party websites or services.
1. Who we are
For the purposes of applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the EU GDPR, Risilience Limited is the data controller of personal data described in this Privacy Policy.
Risilience Limited
50-60 Station Road, Cambridge, CB1 2JH, United Kingdom
Company number: 09921767
Risilience has affiliated entities, including an affiliate located in the United States, which may process personal data in accordance with this Privacy Policy.
Risilience does not to process personal data on behalf of its customers within the Services. We do not act as a data processor of customer end-user data.
2. Personal data we collect
“Personal data” means information that identifies or can reasonably be used to identify an individual.
We may collect the following categories of personal data:
Information you provide to us
- • Name
- • Business email address
- • Business contact details
- • Job title and employer
- • Information submitted through contact forms, event registrations, or employment applications
- • Communications with us (including sales, support, or enquiries)
Information collected automatically
When you use our Services or visit our website, we may collect:
- • IP address
- • Device type, operating system and browser type
- • Language and region settings
- • Log data and timestamps
- • Pages visited and usage information
- • Referring URLs
- • Cookie and similar tracking information
Information from third parties
We may receive business contact information from:
- • Your employer or organisation
- • Event organisers or sponsors
- • Business partners
- • Publicly available sources
3. How we use personal data
We use personal data for the following purposes:
- • To provide, operate and maintain the Services
- • To manage our relationship with you
- • To set up and administer accounts and access to the Services
- • To respond to enquiries and provide customer support
- • To provide product information, demonstrations and updates
- • To improve and secure our Services
- • To manage events, marketing activities and business development
- • To comply with legal obligations and enforce our agreements
- • To prevent fraud, misuse, or security incidents
4. Legal bases for processing
Under UK GDPR and EU GDPR, we rely on the following legal bases:
| Purpose | Legal basis |
| Providing and administering Services | Performance of a contract |
| Responding to enquiries and support requests | Legitimate interests |
| Business communications and relationship management | Legitimate interests |
| Marketing to business contacts | Legitimate interests or consent (where required) |
| Security, fraud prevention, and system monitoring | Legitimate interests |
| Legal and regulatory compliance | Legal obligation |
| Employment applications | Legitimate interests or consent |
Where we rely on legitimate interests, we balance our interests against your rights and expectations. You may object to processing based on legitimate interests at any time.
5. Marketing communications
You may opt out of marketing communications at any time by:
- • using the unsubscribe link in our emails; or
- • contacting us at contact@risilience.com .
Even if you opt out of marketing communications, we may still send you non-marketing messages relating to your relationship with Risilience or your use of the Services.
In some cases, we may be unable to honour an opt-out request where communications are necessary to fulfil contractual obligations between Risilience and your employer.
6. Cookies and similar technologies
We use cookies and similar technologies to operate and improve our website and Services.
Where required by law, we obtain your consent for non-essential cookies.
Further information about our use of cookies is available in our Cookie Policy.
7. Data sharing and disclosures
We may share personal data with:
- • Risilience affiliates
- • Service providers who support our business operations
- • Professional advisers (e.g. legal, accounting)
- • Authorities or regulators where required by law
We do not sell personal data.
Third parties who process personal data on our behalf are required to:
- • process data only on our instructions; and
- • implement appropriate security measures.
8. International data transfers
Personal data may be transferred to and processed in countries outside your country of residence, including the United States and United Kingdom.
Where required, we implement appropriate safeguards for international transfers, including:
- • UK or EU-approved Standard Contractual Clauses; and
- • additional technical and organisational measures where appropriate.
9. Data security
We implement reasonable technical and organisational measures to protect personal data, including:
- • encryption of data in transit and at rest
- • access controls and authentication
- • confidentiality obligations for personnel
- • secure hosting environments
10. Data retention
We retain personal data for as long as necessary to fulfil the purposes described in this Privacy Policy, including:
- • providing Services
- • maintaining business relationships
- • complying with legal, accounting, or reporting obligations
Retention periods may vary depending on the nature of the data and applicable legal requirements.
11. Your rights
Depending on your location, you may have the right to:
- • access your personal data
- • correct inaccurate or incomplete data
- • request deletion of your personal data
- • restrict processing
- • object to processing (including marketing)
- • request data portability
- • withdraw consent at any time (where processing is based on consent)
To exercise your rights, contact us at legal@risilience.com. We may request verification of your identity before responding.
If you are in the UK, you also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).
12. Third-party websites
Our Services may contain links to third-party websites. We are not responsible for the privacy practices of those websites.
13. Changes to this Privacy Policy
We may update this Privacy Policy from time to time.
Material changes will be communicated through appropriate means, such as website notices or email notifications.
Your continued use of the Services after changes take effect constitutes acceptance of the updated Privacy Policy.
14. Relationship with employer agreements
Your use of certain Services may be governed by agreements between Risilience and your employer.
Those agreements may supplement or override aspects of this Privacy Policy.
Effective date: 10 February 2026