Privacy Policy

We believe in trust, transparency, and keeping your data secure. This policy outlines how RuyQA handles your information.

Last updated: February 4, 2026
Effective date: February 1, 2026

Tensflare Ltd ("we", "us", "our") operates the RuyQA service, a cloud-based quality assurance and test management platform (the "Service" or "RuyQA"), accessible at www.ruyqa.com and through associated applications (the "Platform").

We are committed to protecting your privacy and handling personal data responsibly. This Privacy Policy explains how we collect, use, disclose, store, secure, and otherwise process personal information when you:

Visit our website (the "Website")
Register for, access, or use the Service
Communicate with us (support, sales, etc.)

By using the Service, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use RuyQA.

1. Who We Are – Data Controller

Tensflare Ltd is the data controller responsible for personal data processed under this policy (except where we act solely as a processor on behalf of our customers).

Company details:

Tensflare Ltd
Abuja, Nigeria

Email: privacy@tensflare.com

2. Information We Collect

We collect two main categories of information:

A. Information You Provide Directly

Account & Profile Data: name, email address, password, company/organization name, job title, phone number (optional)
Billing & Payment Data: billing name, billing address, payment card details (processed securely via third-party payment processors – we do not store full card numbers)
Support & Communication Data: messages, attachments, screenshots, logs or files you send when contacting support
Test Management Content: any personal data you or your team include in test cases, test runs, defects, requirements, comments, or uploaded files (e.g., names, emails, identifiers appearing in test documentation)

B. Information Collected Automatically

Technical & Usage Data: IP address, browser type/version, operating system, device type, device identifiers, pages visited, time/date of access, time spent, referral source, clickstream data
Analytics Data: interactions with features (e.g., test case creation, run execution, report views)
Cookies & Similar Technologies: session cookies, authentication tokens, analytics cookies, functional cookies (see our Cookie Policy for details)

C. Information from Third Parties

Integration Data: when you connect third-party tools (e.g., Jira, GitHub, Slack), we receive limited data such as project names, issue keys, usernames, or authentication tokens
Payment Processor Data: confirmation of successful payment (not full card details)

3. How We Use Your Information

We use personal information for the following purposes:

To provide, maintain, and improve the Service (including test case management, execution tracking, reporting, integrations)
To process subscriptions, payments, and send transactional emails (invoices, renewals, service announcements)
To communicate with you about your account, support requests, updates, or security notices
To analyze usage trends, detect issues, prevent fraud, and enhance product features
To comply with legal obligations, enforce our Terms of Service, protect rights/safety, or respond to valid legal requests
With your consent (where required): for marketing communications or additional optional features

4. Legal Basis for Processing (GDPR)

Where applicable (e.g., GDPR), we rely on:

Performance of a contract — to deliver the Service you requested
Legitimate interests — improving the product, analytics, fraud prevention, security (balanced against your rights)
Legal obligations — tax, accounting, compliance with data protection law
Consent — for certain marketing emails or optional features (you can withdraw consent anytime)

5. Sharing Your Information

We do not sell personal data. We share information only in these limited cases:

Service Providers — cloud hosting (e.g., AWS, GCP), analytics (e.g., Google Analytics), payment processors (e.g., Stripe/PayPal), email services (e.g., SendGrid), support tools — all under strict confidentiality and data processing agreements
Business Transfers — in case of merger, acquisition, or sale of assets
Legal Requirements — if required by law, court order, or to protect rights/safety
With Your Consent — or at your direction (e.g., sharing test reports you export)

6. International Data Transfers

Tensflare Ltd is based in Nigeria. We may transfer data to countries outside your jurisdiction (e.g., EU, US, other cloud regions).

We use appropriate safeguards:

Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions (where applicable)
Other legally recognized mechanisms

7. Data Retention

We keep personal data only as long as necessary:

Account data — while your account is active + 30–90 days after termination (for legal/backup purposes)
Billing data — 7–10 years (tax/legal requirements)
Test management content — until you delete it or the account is terminated (subject to backup retention)
Logs/analytics — up to 12–24 months

Afterwards, data is anonymized or securely deleted.

8. Your Rights

Depending on your location and applicable law, you may have rights including:

Access, rectification, erasure ("right to be forgotten")
Restriction of processing, data portability
Object to processing (including for direct marketing)
Withdraw consent (where processing is based on consent)

To exercise rights, contact privacy@tensflare.com. We respond within legally required timeframes (usually 30 days).

9. Security

We implement reasonable technical and organizational measures to protect data, including:

Encryption in transit (TLS) and at rest (where appropriate)
Access controls, regular security testing
Incident response procedures

No system is 100% secure. You are responsible for keeping your login credentials confidential.

10. Contact Us

For questions, concerns, or to exercise your rights:

Email: privacy@tensflare.com

Address: Tensflare Ltd, Abuja, Nigeria