Skip to content

Privacy

Privacy by Design. Data That Stays Yours.

Your data never leaves your infrastructure. We process it — we don't store it.

Our Privacy Philosophy

At Rollio, we believe data privacy is not a checkbox — it's a foundation. We've designed our platform from the ground up with one core principle: your data is yours, and we never store it.

Unlike traditional SaaS platforms that warehouse your data, Rollio processes information in-memory for the duration of a task, then it's gone. No backup databases. No long-term storage. No liability.

Zero data-at-rest

Agents read from your systems, process in-memory, execute, and discard. Nothing is written to disk on our side.

Inherited permissions

Agents operate using the same permissions you've already set in your source systems. No separate security model.

End-to-end encryption

TLS 1.2+ in transit between your systems and Rollio. Official, secure APIs and MCP connections — no screen scraping.

Data processor, not controller

You're the data controller. We're the processor. We handle data only as you direct, never for secondary purposes, never to train models.

Our Certification

SOC 2 Type II

Rollio has achieved SOC 2 Type II certification. Our systems, processes, and controls have been independently audited and verified by a third-party auditor against AICPA standards for Security, Availability, Confidentiality, Processing Integrity, and Privacy. The audit covers all Rollio production systems, infrastructure, and operations. We are audited annually.

Enterprise customers may request a copy of the audit report under NDA. Email security@rollio.ai with "SOC 2 Report Request" in the subject.

Last updated: July 2025

The Information We Collect

From you (when you contact us)

Name, email, phone, company, job title, and message details when you request a demo, download content, or subscribe to updates. Used to respond to inquiries and (with your consent) keep you informed about Rollio. Retained until you unsubscribe or request deletion.

From your use of our website

IP address, browser info, pages visited, referrer, device, and cookies. Processed by Google Analytics, HubSpot, and CloudFlare to understand and improve the site. Typically retained 12–24 months. Opt out of Google Analytics at tools.google.com/dlpage/gaoptout.

From your systems (when agents run)

Business process data, contextual information from emails/tickets/notes, and system metadata used to execute the workflows you configure. Processed in-memory and never stored by Rollio — 0-day retention. Your source systems remain the system of record.

How We Use Your Information

  • To provide Rollio services — run agents and execute decisions in your systems.
  • To improve Rollio — analyze aggregate patterns, never your specific data.
  • To communicate with you — support, product updates (with consent), and security notices.

We do not train AI models on your data, share it with third parties (except sub-processors under DPA), or sell or monetize it.

Third-Party Sub-Processors

All sub-processors sign a DPA, implement equivalent security, and may never use your data for their own purposes. Current sub-processors include Amazon Web Services (infrastructure), Intercom (support), and HubSpot (CRM/email). You may object to a new sub-processor before we engage them.

Your Privacy Rights

You have the right to access, correct, delete, port, or object to processing of your personal information. EU residents have additional GDPR rights. California residents have additional CCPA rights — and Rollio does not sell or share personal information.

To exercise any right, email support@rollio.ai with "Privacy Request" in the subject line, or write to Rollio, Inc., 41 Flatbush Ave, Suite 232, Brooklyn, NY 11217. We aim to respond within 30 days.

International Data Transfers

Rollio is based in the United States. Data from outside the U.S. may be processed here under U.S. law with additional safeguards (encryption, contracts). EU transfers rely on Standard Contractual Clauses.

Changes to This Policy

We may update this policy from time to time and will post updates here. Material changes will be notified by email.

Questions?

Privacy team: privacy@rollio.ai · Support: support@rollio.ai

See how zero-data-at-rest works in practice.