Privacy Policy

Last updated: May 2026

Rollable ("we", "our", "us") is committed to protecting your personal data. This policy explains what data we collect, how we use it, and your rights under the General Data Protection Regulation (GDPR) and Norwegian privacy law.

1. Who we are

Rollable is operated by Rollable (rollable.app), Norway. For privacy-related questions, contact us at hello@rollable.app.

2. Data we collect

We collect the following categories of data:

• Account data — name, email address, and password (hashed) when you create an account.
• CRM data — contacts, companies, deals, notes, and files you enter or upload into Rollable.
• Usage data — pages visited, features used, session duration, and browser type, collected via server logs and analytics.
• Communication data — emails or messages you send to us.

3. How we use your data

• To provide and improve the Rollable service.
• To process AI-powered features (voice, photo, text capture) on your behalf.
• To send transactional emails (account, billing, security).
• To analyse usage and improve product features.
• To comply with legal obligations.

We do not sell your data to third parties.

4. Legal basis for processing

We process your data under the following legal bases:

• Contract — to deliver the service you signed up for.
• Legitimate interest — to improve our product and prevent abuse.
• Legal obligation — where required by law.
• Consent — for optional communications such as product updates.

5. Data storage and transfers

Your data is stored on servers within the European Economic Area (EEA). Where we use third-party processors outside the EEA, we ensure appropriate safeguards are in place (e.g. Standard Contractual Clauses).

6. Third-party processors

We use the following sub-processors to operate the service:

• Vercel — hosting and delivery
• Anthropic — AI processing for capture and assistant features
• Stripe — payment processing (we do not store card details)

7. Data retention

We retain your account and CRM data for as long as your account is active. If you delete your account, we delete your personal data within 30 days, except where retention is required by law.

8. Your rights

Under GDPR you have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your data ("right to be forgotten").
• Object to or restrict certain processing.
• Receive your data in a portable format.
• Lodge a complaint with Datatilsynet (the Norwegian Data Protection Authority) at datatilsynet.no.

To exercise any of these rights, email us at hello@rollable.app.

9. Cookies

We use strictly necessary cookies to keep you logged in and maintain your session. We do not use advertising or tracking cookies. No cookie consent banner is required for strictly necessary cookies under ePrivacy rules.

10. Changes to this policy

We may update this policy from time to time. We will notify you of significant changes by email or via the app. Continued use of Rollable after changes take effect constitutes acceptance of the updated policy.

Questions? Email hello@rollable.app