Legal

Privacy Policy

Last updated: 14 July 2026

This Policy explains what personal data Airaa collects, how we use and share it, and the rights you have over it. It applies across the Airaa website, application, and services.

1. Introduction & scope

This Privacy Policy explains how RapidNode Pte. Ltd. (“Airaa”, “we”, “us” or “our”), a company incorporated in Singapore, collects, uses, discloses, and protects personal data when you use the Airaa website at airaa.xyz, the application at app.airaa.xyz, and related services (the “Platform”).

We handle personal data in accordance with Singapore’s Personal Data Protection Act 2012 (PDPA). Where the EU/UK General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA/CPRA) applies to you, the additional rights described in the “Your rights” section also apply.

2. Personal data we collect

Depending on how you use the Platform, we may collect:

  • Account & contact data — name, email, company or organisation, and details you provide when you create an account, book a demo, or contact us.
  • Creator application data — profile information, connected social accounts and handles, audience and content data, and any profile image (avatar) you upload.
  • Connected-account & analytics data — metrics and content from social platforms (such as X, TikTok, Instagram, and YouTube) that you connect, used to power analytics, Smart Followers scoring, and campaign results.
  • Payout data — the wallet address you provide to receive USDC Rewards, and related transaction records.
  • Communications — newsletter sign-ups, demo bookings, and messages you send us.
  • Usage & device data — pages visited, actions taken, IP address, browser and device information, and similar technical data collected automatically as you use the Platform.

3. How we use personal data

  • To provide, operate, secure, and improve the Platform and its features.
  • To onboard Brands and Creators, run campaigns, and calculate and release Rewards.
  • To generate analytics, Smart Followers scores, and campaign reporting, and to detect bots and inauthentic engagement.
  • To communicate with you — service messages, demo scheduling, support, and (where you have opted in) newsletters and marketing.
  • To prevent fraud and abuse, enforce our Terms, and comply with legal obligations.

5. How we share data & sub-processors

We do not sell your personal data. We share it only as needed to run the Platform:

  • With Brands — Creator profile, submissions, and campaign performance data are shared with the relevant Brand whose campaign you take part in.
  • Service providers (sub-processors) — trusted vendors that process data on our behalf, which currently include hosting/infrastructure (Vercel), product analytics (Muro Analytics), demo scheduling (Calendly), and the social-platform APIs (X, TikTok, Instagram, YouTube) used to retrieve connected-account data. This list may change as our services evolve.
  • Legal & safety — where required by law, regulation, or legal process, or to protect the rights, safety, and security of Airaa, our users, or the public.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this Policy.

6. Cookies & tracking

The Platform uses cookies and similar technologies for essential functionality, to remember your preferences, and to understand usage through analytics (including Muro Analytics). You can control cookies through your browser settings; disabling some cookies may affect how the Platform works.

7. Data retention

We keep personal data for as long as needed to provide the Platform and for the purposes set out in this Policy, and thereafter as required to meet legal, tax, accounting, or regulatory obligations, resolve disputes, and enforce our agreements. When data is no longer needed, we delete or anonymise it.

8. Security

We use reasonable technical and organisational measures to protect personal data against unauthorised access, loss, or misuse. No method of transmission or storage is completely secure, so we cannot guarantee absolute security; you also play a part by keeping your credentials and wallet secure.

9. International transfers

Airaa is based in Singapore and our service providers may process data in other countries. Where we transfer personal data outside Singapore, we take steps required by the PDPA (and, where applicable, the GDPR) to ensure it receives a comparable standard of protection, including through appropriate contractual safeguards.

10. Your rights

Under the PDPA, you may request access to the personal data we hold about you and request correction of inaccurate or incomplete data. You may also withdraw consent to our collection, use, or disclosure of your personal data.

If the GDPR or CCPA/CPRA applies to you, you may additionally have rights to erasure, restriction, portability, and objection, and the right not to be discriminated against for exercising your privacy rights. To exercise any right, contact us at hello@airaa.xyz. We will respond within the timeframe required by applicable law.

11. Children

The Platform is not intended for anyone under 18, and we do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact us and we will delete it.

12. Changes to this Policy

We may update this Privacy Policy from time to time. We will revise the “Last updated” date above and, where the changes are material, take reasonable steps to notify you.

13. Contact us

For any privacy question, data-access or correction request, or to reach our data protection contact, email hello@airaa.xyz or write to RapidNode Pte. Ltd., 18 Kaki Bukit Road 3, #05-16, Entrepreneur Business Centre, Singapore 415978.