Privacy Policy

PRIVACY POLICY

RIVES GENÈVE SA

Version: 2.0

Effective date: 10 January 2026

PREAMBLE

Rives Genève SA, a company incorporated under Swiss law, with its registered office at Rue du Rhône 118, 1204 Geneva, Switzerland, hereinafter “Rives”, attaches particular importance to the protection of personal data and respect for privacy.

This privacy policy, hereinafter the “Policy”, aims to define, in a comprehensive manner, the conditions under which Rives collects, processes, stores, secures and, where applicable, discloses the personal data of users, hereinafter the “User”, in connection with the use of:

  • the website accessible at www.rives.app;
  • the mobile application, iOS and Android;
  • all services offered by Rives, hereinafter the “Services”.

This Policy constitutes an enforceable contractual document and forms an integral part of the general terms of use of the Services.

Any use of the Services implies the User’s prior, express, free, specific, informed and unambiguous acceptance of this Policy.

ARTICLE 1 – IDENTITY OF THE DATA CONTROLLER

The data controller for personal data is:

Rives Genève SA
Rue du Rhône 118
1204 Geneva – Switzerland
Email address: info@rivesgroup.com

Rives may involve:

  • affiliated entities acting as joint controllers;
  • third-party service providers acting as processors.

The allocation of responsibilities may evolve and may be communicated upon request.

ARTICLE 2 – SCOPE

This Policy applies exclusively to the processing of personal data carried out by Rives or on its behalf.

It does not apply to processing carried out by third parties, including those accessible through external links.

Rives disclaims any liability for the data protection practices of such third parties.

ARTICLE 3 – CATEGORIES OF DATA PROCESSED

Rives may process the following categories of data:

3.1. Identification data

Last name, first name, email address, login credentials.

3.2. Contractual and transactional data

Rental history, payment information, billing, subscriptions.

3.3. Technical and browsing data

IP address, connection logs, device type, browser, timestamps, interactions.

3.4. Location data

Data relating to the geographical location of the User when using the Services.

3.5. Derived data

Analytics, statistics and usage profiles.

ARTICLE 4 – METHODS OF COLLECTION

Data is collected:

  • directly from the User;
  • automatically through the use of the Services;
  • indirectly through technical service providers.

The User acknowledges that certain data is essential for the proper functioning of the Services.

ARTICLE 5 – PURPOSES OF PROCESSING

Personal data is processed for the following purposes:

5.1. Performance of the Services

Account management, rental processing, payments, support.

5.2. Security and prevention

Fraud prevention, system security, incident detection.

5.3. Improvement and development

Statistical analysis, performance optimisation, development of the Services.

5.4. Legal obligations

Compliance with regulatory, tax and administrative obligations.

ARTICLE 6 – LEGAL BASES

The processing is based on the following legal grounds:

  • performance of a contract;
  • Rives’ legitimate interest;
  • the User’s consent;
  • compliance with a legal obligation.

The User acknowledges that certain processing operations are necessary for the provision of the Services.

ARTICLE 7 – MANDATORY NATURE OF DATA

Data identified as mandatory is required to access the Services.

If such data is not provided, Rives reserves the right to refuse access to the Services.

ARTICLE 8 – RECIPIENTS OF THE DATA

Personal data may be disclosed to the following categories of recipients:

8.1. Processors

Technical service providers, hosting providers, cloud computing providers, maintenance providers.

8.2. Partners

Local authorities, technical operators, suppliers.

8.3. Competent authorities

Judicial, administrative or regulatory authorities.

8.4. Structural operations

Merger, acquisition, asset transfer or restructuring.

ARTICLE 9 – INTERNATIONAL TRANSFERS

Data may be transferred outside Switzerland or the European Union.

In such cases, Rives implements appropriate safeguards, including:

  • standard contractual clauses;
  • appropriate security measures.

The User acknowledges and accepts such transfers.

ARTICLE 10 – DATA RETENTION PERIOD

Data is retained for a period strictly necessary for the purposes pursued and for compliance with legal obligations.

By way of indication:

  • account data: for the lifetime of the account;
  • deletion: anonymisation or deletion within 30 days;
  • legal obligations: retention may last up to 10 years.

ARTICLE 11 – DATA SECURITY

Rives implements appropriate technical and organisational measures, including:

  • access control;
  • encryption;
  • enhanced authentication;
  • system monitoring.

However, as no measure can guarantee absolute security, Rives shall not be held liable in the event of a security breach beyond its control.

ARTICLE 12 – COOKIES AND TRACKERS

Cookies may be used in order to:

  • ensure technical operation;
  • analyse the use of the Services;
  • improve the user experience.

The User may configure their preferences through their browser.

ARTICLE 13 – USER RIGHTS

The User has the following rights:

  • right of access;
  • right to rectification;
  • right to erasure;
  • right to restriction of processing;
  • right to object;
  • right to data portability.

Any request must be sent to: info@rivesgroup.com

ARTICLE 14 – COMPLAINTS

The User has the right to lodge a complaint with the competent supervisory authority.

ARTICLE 15 – TRACEABILITY AND EVIDENCE

Technical data, activity logs and electronic records constitute admissible evidence.

ARTICLE 16 – LIMITATION OF LIABILITY

To the fullest extent permitted by law, Rives disclaims any liability in the event of:

  • unauthorised access;
  • loss or alteration of data;
  • cyberattack;
  • technical failure;
  • event beyond its control.

ARTICLE 17 – AMENDMENTS

Rives reserves the right to amend this Policy at any time.

Amendments shall take effect upon publication.

In the event of disagreement, the User must stop using the Services.

ARTICLE 18 – CONTACT

Any question relating to this Policy may be sent to: info@rivesgroup.com