Privacy Policy

Last updated: May 2026

Back to Home

1. Introduction

Ravencord ("Ravencord", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ravencord.com or use any of our products and services.

Ravencord is a dual-jurisdiction technology group operating through two legal entities. EU operations are conducted by Ravencord OÜ (Estonia) under the General Data Protection Regulation (GDPR). US operations are conducted by Ravencord Inc. (Delaware) under applicable US federal and state privacy laws.

Data Controller (EU operations):

Ravencord OÜ

Register No: 17088619

Meistri tn 6, Tallinn, 13517, Estonia

Email: office@ravencord.com

Data Controller (US operations):

Ravencord Inc.

Delaware C Corporation

6688 Nolensville Rd, Ste 108 #2225, Brentwood, TN 37027

Email: us@ravencord.com

2. Scope & Covered Products

This Privacy Policy applies to all Ravencord websites, products, platforms, and services. Public-facing products currently include:

Finlex Pro

finlexpro.com · operated by Ravencord OÜ

AI-powered regulatory intelligence platform for EU financial regulations including MiCA, DORA, AML, and more. Designed for legal and compliance professionals.

Visit Finlex Pro

Grønlog

gronlog.dk · operated by Ravencord OÜ

AI-powered climate accounting platform for Danish SMEs. Automates Scope 1, 2 and 3 emissions reporting under CSRD, ESRS, and the GHG Protocol.

Visit Grønlog

Invoset

invoset.com · operated by Ravencord Inc.

Automated WCAG 2.1 AA accessibility compliance scanner for US small businesses, with a companion Chrome browser extension and embeddable monitoring badge.

Visit Invoset

Data collected through EU-operated products (Finlex Pro, Grønlog) is processed by Ravencord OÜ under the GDPR. Data collected through US-operated products (Invoset) is processed by Ravencord Inc. under applicable US federal and state privacy laws. Each product may collect different types of data depending on its functionality and your use of the service.

3. Information We Collect

3.1 Information You Provide

We may collect information that you voluntarily provide when you:

  • Contact us via email or phone
  • Request information about our services
  • Engage in business communications with us

This information may include your name, email address, phone number, company name, and the content of your communications.

3.2 Automatically Collected Information

When you visit our website, we may automatically collect certain technical information, including:

  • IP address
  • Browser type and version
  • Operating system
  • Referring website
  • Pages visited and time spent
  • Date and time of visit

4. Cookies and Third-Party Services

4.1 Essential Cookies

Our website uses minimal cookies necessary for basic functionality.

4.2 Google Maps

We embed Google Maps on our website to display our office location. When you view pages containing Google Maps, Google may collect data according to their privacy policy. This may include cookies set by Google. For more information, please review Google's Privacy Policy.

4.3 External Fonts and Icons

We use Google Fonts and Bootstrap Icons, which are loaded from external servers. These services may collect anonymous usage data.

5. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your inquiries and communicate with you
  • To provide information about our services
  • To fulfill contractual obligations
  • To improve our website and services
  • To comply with legal obligations
  • To protect our rights and prevent misuse

6. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on the following legal grounds:

  • Consent: Where you have given explicit consent for specific purposes
  • Contract: Where processing is necessary for a contract with you
  • Legitimate Interest: Where we have a legitimate business interest that does not override your rights
  • Legal Obligation: Where we are required to process data by law

7. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: With trusted partners who assist in operating our business, subject to confidentiality agreements
  • Legal Requirements: When required by law, court order, or governmental authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Protection: To protect our rights, privacy, safety, or property

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Business communications: Duration of business relationship plus 3 years
  • Contractual data: Duration of contract plus statutory retention periods
  • Website analytics: 26 months maximum

9. Your Rights (GDPR)

As a data subject under the GDPR, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise any of these rights, please contact us at office@ravencord.com.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

11. International Data Transfers

Data collected through Ravencord OÜ (EU operations) is primarily processed within the European Economic Area (EEA). Where transfers outside the EEA are required, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

Data collected through Ravencord Inc. (US operations) is primarily processed within the United States. EU or EEA users of US-operated products may have their data transferred to the United States under the relevant approved transfer mechanisms in effect at the time of processing.

12. Children's Privacy

Our website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

14. Supervisory Authority and Complaints

If you believe that our processing of your personal data violates applicable data protection laws, you have the right to lodge a complaint.

For EU users and data processed by Ravencord OÜ:

Estonian Data Protection Inspectorate

(Andmekaitse Inspektsioon)

Tatari 39, 10134 Tallinn, Estonia

Website: www.aki.ee

You may also lodge a complaint with the supervisory authority in your EU member state of residence.

For US users and data processed by Ravencord Inc.:

US users may submit complaints to the US Federal Trade Commission (reportfraud.ftc.gov) or their respective state Attorney General. California residents have additional rights under the California Consumer Privacy Act (CCPA) and may contact the California Attorney General's office.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact the relevant entity:

Ravencord OÜ (EU operations)

Meistri tn 6, Tallinn, 13517, Estonia

Email: office@ravencord.com

Phone: (+45) 71 35 29 44

Ravencord Inc. (US operations)

Delaware C Corporation

6688 Nolensville Rd, Ste 108 #2225, Brentwood, TN 37027

Email: us@ravencord.com

Phone: (+1) 615 413 2151