Privacy Policy
Your privacy is important to us. This policy explains how RPA Automate collects, uses, and protects your information.
Last updated: April 17, 2026
1. Information Collection
We collect information you provide directly to us, such as when you create an account, request an audit, fill out a form, or contact us. This may include your name, email address, phone number, company name, job title, and any other information you choose to provide. We also automatically collect certain technical information when you visit our website, including your IP address, browser type, operating system, referring URLs, and pages viewed.
2. Use of Data
We use the information we collect to provide, maintain, and improve our services; process transactions and send related information; respond to your comments, questions, and requests; send you technical notices, updates, security alerts, and administrative messages; communicate with you about products, services, offers, and events offered by RPA Automate; monitor and analyze trends, usage, and activities in connection with our services; and personalize and improve your experience.
3. Cookies
We use cookies and similar tracking technologies to collect and track information about your activity on our website. Cookies are small data files stored on your device. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device until deleted). You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, some features of our website may not function properly without cookies.
4. Third-Party Services
We may share your information with third-party service providers who perform services on our behalf, such as hosting, analytics, email delivery, and customer support. These providers are bound by contractual obligations to keep personal information confidential and to use it only for the purposes for which we disclose it to them. We may also share information if required by law or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
5. Data Security
We take reasonable measures to help protect your personal information from loss, theft, misuse, unauthorized access, disclosure, alteration, and destruction. All data transmitted between your browser and our servers is encrypted using industry-standard TLS/SSL protocols. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.
6. Your Rights
Depending on your location, you may have certain rights regarding your personal information, including the right to access, correct, or delete the personal data we hold about you; the right to object to or restrict certain processing; and the right to data portability. To exercise any of these rights, please contact us at the email address below. We will respond to your request within the timeframe required by applicable law.
7. GDPR (European Economic Area)
If you are in the EEA, we process your data under Article 6 of the GDPR. Legal bases include: (a) your consent for marketing emails, (b) legitimate interest for analytics, (c) contract performance for service delivery. Data controller: RPA Automate, 151 Yonge St 11th Floor, Toronto, ON M5C 2W7, Canada. You have the right to: access your data, rectify inaccuracies, request erasure (Article 17), data portability (Article 20), restrict processing, and object to processing. To exercise these rights, email privacy@rpa-automate.com or use our self-service endpoint at rpa-automate.com/api/gdpr/export. You also have the right to lodge a complaint with your local supervisory authority. Data retention: contact/lead data is retained for 2 years, newsletter subscriptions until unsubscribed plus 90 days, email event logs for 1 year.
8. CASL (Canada)
Under Canada's Anti-Spam Legislation (CASL), we obtain your express consent before sending commercial electronic messages. Consent is collected via an unchecked checkbox on our forms. We record the date, time, IP address, and method of consent. You may withdraw consent at any time by clicking the unsubscribe link in any email or by contacting privacy@rpa-automate.com. We honour unsubscribe requests within 10 business days.
9. California Privacy Rights (CCPA)
If you are a California resident, you have the right to: know what personal information we collect and how it is used, request deletion of your data, opt out of the sale or sharing of your personal information, and not be discriminated against for exercising these rights. We do not sell personal information. Our use of Meta Pixel and Google Analytics for advertising purposes may constitute "sharing" under CCPA. You can opt out via our cookie consent banner by declining marketing cookies. To submit a CCPA request, email privacy@rpa-automate.com with "CCPA Request" in the subject line.
10. Sub-Processors
We share data with the following third-party processors under data processing agreements: MongoDB Atlas (database hosting), Vercel (website hosting), Zoho Mail (email delivery), Twilio (WhatsApp notifications), Stripe (payment processing), Meta (conversion tracking via CAPI), and Google (analytics via GA4). Each processor is bound by contractual obligations to protect your data.
11. Contact
If you have any questions about this Privacy Policy or our data practices, please contact us at: