Last Modified: September 3rd, 2025
This Privacy Policy of R11N Ventures GmbH (doing business as Ring Sizer) ("we," "us," or "our"), describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you:
Visit our marketing website, or any website of ours that links to this Privacy Notice
Use Ring Sizer: The Ring Sizer application serves as an extension for online shops, available for installation via custom integration or through the Shopify marketplace. The application's primary function is to enable End Users to provide sizing recommendations for ring sizes on product detail pages. Furthermore, we operate a marketing website targeted towards B2B customers including jewelry brand employees.
Engagement with sales, customer support, marketing, or events
Understanding this Privacy Statement will give you clarity about your privacy protections and available options. As the entity determining how your personal data is handled, we take responsibility for its processing and protection. Should you find yourself uncomfortable with these data handling practices, we encourage you to refrain from utilizing our platform and associated features. For any privacy-related inquiries or clarifications, our Data Protection team is available to assist you via privacy@r11n.io.
Data controller and responsible body: R11N Ventures GmbH, Glasbläserallee 6, 10245 Berlin
Duly represented by Lars Triebel / Data Protection Officer: dpo@r11n.io
The following applies to visitors of our marketing website (https://ringsizer.app/) and B2B customers of our services (e.g. through Shopify marketplace).
Configure Your ConsentWe gather personal information that you voluntarily submit when requesting details about our organization, products, or Services, engaging with platform features, or initiating contact with us.
Business communications: When you interact with our sales team or customer support representatives, we collect information you provide including your name, company details, business email, phone number, and the content of your inquiries or support requests. This information may be shared with our authorized service providers who assist in delivering these services.
Sensitive Data Processing: Our systems do not process sensitive personal information.
Payment Data:
To facilitate purchases, we may collect payment-related data such as payment instrument details and associated security credentials. Payment processing and data storage are managed exclusively by our payment processor, Shopify Inc. Their privacy practices can be reviewed at https://www.shopify.com/ca/legal/privacy?lang=en.
You are responsible for ensuring all personal information provided is accurate, complete, and truthful. You must promptly inform us of any changes to maintain data accuracy.
During your interaction with our platform, our systems automatically gather technical data about your visit and usage patterns. The collected technical details include your device specifications, system settings, browsing habits, and network identifiers - such as operating system version, language settings, IP address, browser type, entry pages, and timing of platform usage. While this technical data does not directly identify you as an individual, it helps us ensure platform security, maintain stable operations, analyze usage patterns, and generate internal reports.
Additionally, we employ standard web tracking methods, including cookies and related technologies, to collect usage data.
The information we collect includes:
Log and Usage Data: Our servers track and store technical data when you use our platform. These system records capture performance metrics, service diagnostics, and interaction patterns. Your digital footprint may include: network identifiers, hardware details, browser configuration, timestamp data of platform activities (including viewed content, search queries, and feature utilization), plus system behavior logs and technical issue reports, including debugging information.
Device Specifications: When connecting to our platform, we receive technical details about your access device, whether it's a desktop computer, smartphone, or tablet. This encompasses: network routing data, unique device markers, app identifiers, web browser details, internet connectivity provider information, operating system specifics, and system settings.
Geo data: We process geographic location information that may range from general area indicators to specific coordinates. The precision depends on your device type and settings. For instance, we may determine your general area through IP address mapping. While you can prevent location tracking by adjusting device permissions or settings, some platform features may become unavailable without location access.
Your data enables us to provide our services in the following ways:
Service Provision: We handle your information to fulfill your service requests and ensure proper platform functionality.
Customer Support: Your data helps us address your questions, troubleshoot issues, and maintain service quality.
Promotional Communication: With your consent and preference settings, we process your data to share relevant updates and offers.
Quality Improvement: We analyze your input to enhance our services and may contact you to gather platform feedback.
Campaign Assessment: Understanding how users interact with our marketing efforts helps us provide more relevant content.
Security Measures: Your data helps maintain platform integrity through security monitoring and fraud prevention protocols.
Platform Enhancement: We examine usage patterns to optimize features and improve user experience.
Safety Protocols: When necessary, we process data to prevent harm and protect vital interests of platform users.
Essential > Security Monitoring
Purpose: We use a web application firewall to keep our services and users protected from malicious activity.
Data Processor: Cloudflare, Inc., located at 101 Townsend St., San Francisco, California 94107 United States of America
Location of processing: Global (depending on user location in a Cloudflare data center close to the user)
Data Categories: IP address, timestamps, device information, traffic information, cookie identifiers (e.g. cf_clearance).
Duration: 7 days
Legal basis: Article 6(1)(f) - Legitimate Interest
Essential > Customer Service and Sales Support
Purpose: Provide customer support, handle sales inquiries, process B2B customer onboarding, and manage client relationships
Data Processor: Trepkas Aps
Location of processing: Copenhagen, Denmark
Data Categories:
Contact information (name, email, phone number, company name)
Communication history and support tickets
Business/account information
Product usage and subscription details
Sales inquiry details and correspondence
Legal Basis: Article 6(1)(b) - Contract (necessary for performance of contract) and Article 6(1)(f) - Legitimate Interest (for improving services)
Data Protection Measures: Data processing agreement in place with appropriate technical and organizational measures
Marketing > Live Chat
Purpose: Provide customer support through live chat service integrated in the website
Data Processor: Sendinblue SAS (Brevo) — 17 rue de Salneuve, 75017, Paris, France
Location of processing: European Union
Data Categories: IP address, timestamps, device information, traffic information, cookie identifiers, sent messages, name, company name, email address
Duration: Up to 2 years
Legal basis: Art. 6 (1) (a) GDPR - Consent
Marketing > Newsletter
Purpose: Provide a newsletter about products and services of RingSizer
Data Processor: Sendinblue SAS (Brevo) — 17 rue de Salneuve, 75017, Paris, France
Location of processing: European Union
Data Categories: IP address, timestamps, device information, traffic information, cookie identifiers, sent messages, name, company name, email address
Duration: Up to 2 years
Legal basis: Art. 6 (1) (a) GDPR - Consent
Analytics > Web Analytics
Purpose: Gather usage statistics to improve the product experience
Data Processor: Google Analytics – Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Location of processing: Global (incl. United States of America)
Data Categories: IP address (anonymised), pseudonymous identifiers (e.g. GA cookie ID, Client ID), timestamps, requested URLs and referrer URL, pages viewed and on‑page interaction events (clicks, scroll depth, video plays), session duration and frequency, browser and device details (type, operating system, screen resolution, language), and approximate geolocation (city/region derived from IP).
Duration: Up to 2 years
Legal basis: Art. 6 (1) (a) GDPR - Consent
Analytics > Web Analytics
Purpose: Gather usage statistics to improve the product experience
Data Processor: Google Analytics – Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Location of processing: Global (incl. United States of America)
Data Categories: IP address (anonymised), pseudonymous identifiers (e.g. GA cookie ID, Client ID), timestamps, requested URLs and referrer URL, pages viewed and on‑page interaction events (clicks, scroll depth, video plays), session duration and frequency, browser and device details (type, operating system, screen resolution, language), and approximate geolocation (city/region derived from IP).
Duration: Up to 2 years
Legal basis: Art. 6 (1) (a) GDPR - Consent
The following applies to visitors of online stores embedding the Ring Sizer “Find My Size” button, Ring Sizer product demos and the Ring Sizer application used for ring size and finger measurements:
We gather personal information that you voluntarily submit when requesting details about our organization, products, or Services, engaging with platform features, or initiating contact with us.
Sensitive Data Processing: Our systems do not process sensitive personal information.
You are responsible for ensuring all personal information provided is accurate, complete, and truthful. You must promptly inform us of any changes to maintain data accuracy.
Email My Size Feature: Where enabled by the online store operator, you may voluntarily provide your email address to receive your measurement results. If the store operator has enabled a marketing opt-in, you may also choose to consent to receiving marketing communications from the store operator. By submitting your email address, your data is transmitted to the store operator's e-commerce platform for customer record creation. Marketing communications, if consented to, are managed by the respective store operator, not by us.
During your interaction with our platform, our systems automatically gather technical data about your visit and usage patterns. The collected technical details include your device specifications, system settings, browsing habits, and network identifiers - such as operating system version, language settings, IP address, browser type, entry pages, and timing of platform usage. While this technical data does not directly identify you as an individual, it helps us ensure platform security, maintain stable operations, analyze usage patterns, and generate internal reports.
Additionally, we employ standard web tracking methods, including cookies and related technologies, to collect usage data.
The information we collect includes:
Log and Usage Data: Our servers track and store technical data when you use our platform. These system records capture performance metrics, service diagnostics, and interaction patterns. Your digital footprint may include: network identifiers, hardware details, browser configuration, timestamp data of platform activities (including viewed content, search queries, and feature utilization), plus system behavior logs and technical issue reports, including debugging information.
Device Specifications: When connecting to our platform, we receive technical details about your access device, whether it's a desktop computer, smartphone, or tablet. This encompasses: network routing data, unique device markers, app identifiers, web browser details, internet connectivity provider information, operating system specifics, and system settings.
Geo data: We process geographic location information that may range from general area indicators to specific coordinates. The precision depends on your device type and settings. For instance, we may determine your general area through IP address mapping. While you can prevent location tracking by adjusting device permissions or settings, some platform features may become unavailable without location access.
Your data enables us to provide our services in the following ways:
Service provision: We handle your information to fulfill your requests and ensure proper platform functionality.
Usage tracking for subscription billing: We anonymously record interactions with the Ring Sizer application and the “Find My Size” button being displayed on third party online stores in order to check if the usage is within the quota of the subscribed plan of the online store operator.
Aggregated usage statistics for online store operators: We provide a high-level count of events in an aggregated way to online store operators to assess the effectiveness of the application.
Quality Improvement: We analyze your input to enhance our services and may contact you to gather platform feedback.
Security Measures: Your data helps maintain platform integrity through security monitoring and fraud prevention protocols.
Platform Enhancement: We examine usage patterns to optimize features and improve user experience.
Safety Protocols: When necessary, we process data to prevent harm and protect vital interests of platform users.
Delivery of measurement results via email: Where the online store operator has enabled the "Email My Size" feature and you voluntarily provide your email address, we process your email address to send you a transactional email containing your measurement results via our email service provider.
Transmission of customer data to store operators: Where you provide your email address and, optionally, marketing consent, we transmit this information to the store operator's e-commerce platform (Shopify) to create or update a customer record on their behalf. The store operator is the controller for any subsequent use of this data, including marketing communications. When you use the "Email My Size" feature, R11N Ventures GmbH acts as the data controller for the processing necessary to deliver your measurement results via email. Where you additionally opt in to receive marketing communications from the store operator, the store operator acts as the data controller for that marketing processing. We facilitate the collection and transmission of your consent and email address to the store operator on their behalf.
The following tracking is happening automatically without explicit consent based on the specified legal basis and minimal privacy impact on users:
Functional Session Information
Purpose: We store certain information that are important for the correct functioning of the application and security.
Data Processor: R11N Ventures GmbH (on Cloudflare, Inc. infrastructure)
Location of processing: Global (depending on user location in a Cloudflare data center close to the user)
Data Categories: Language preferences (lng), measured sizes and calibration data
Legal Basis: Article 6(1)(b) - Contract
Duration: Session (expire when closing your browser)
Security Monitoring
Purpose: We use a web application firewall to keep our services and users protected from malicious activity.
Data Processor: Cloudflare, Inc., located at 101 Townsend St., San Francisco, California 94107 United States of America
Location of processing: Global (depending on user location in a Cloudflare data center close to the user)
Data Categories: IP address, timestamps, device information, traffic information, cookie identifiers (e.g. cf_clearance).
Duration: 7 days
Legal basis: Article 6(1)(f) - Legitimate Interest
Anonymous Cookie-less Usage Analytics
Purpose: Improve the user experience and detect issues with the platform (without IP addresses)
Data Processor: PostHog, Inc., located at 2261 Market Street #4008, San Francisco, California 94114 United States of America
Data Categories: Pageviews, Usage data, geo information, A/B test interaction
Duration: 1 Year
Legal basis: Article 6(1)(f) - Legitimate Interest
Location of processing: Frankfurt, Germany (using PostHog EU Cloud and proxied through first-party domain)
Anonymous Cookie-less Billing-related Usage Tracking and Aggregated Usage Statistics
Purpose: Track usage of the platform based on the quota of a subscribed online store and provide high-level aggregated event data to online store operators
Data Processor: R11N Ventures GmbH (on Cloudflare, Inc. infrastructure)
Data Categories: Events including “Find My Size” button shown, measurement started and completed
Duration: 1 Year
Legal Basis: Article 6(1)(b) - Contract
Location of processing: Global (depending on user location in a Cloudflare data center close to the user)
Order Attribution Tracking
Purpose: Identify and track orders where customers utilized the Ring Sizer application for size determination prior to purchase, enabling merchants to understand the application's impact on conversion and providing usage metrics.
Data Processor: R11N Ventures GmbH (on Cloudflare, Inc. infrastructure)
Data Categories: Order ID, timestamp, information if a user has interacted with the RingSizer app (i.e., clicked, viewed the button, added a product to cart and made an order), no personal identifiers
Duration: 1 Year
Legal Basis: Consent (through merchant's Shopify "analytics" consent category)
Location of processing: Global (depending on user location in a Cloudflare data center close to the user)
Human Verification for Email Submission
Purpose: Prevent automated or fraudulent submissions of email addresses in the "Email My Size" feature.
Data Processor: Cloudflare, Inc., located at 101 Townsend St., San Francisco, California 94107 United States of America
Location of processing: Global (depending on user location in a Cloudflare data center close to the user)
Data Categories: Turnstile verification token, IP address, timestamps, device information, browser interaction data
Duration: Session
Legal Basis: Article 6(1)(f) – Legitimate Interest
Email My Size – Transactional Email Delivery
Purpose: Send measurement results to end users who voluntarily provide their email address through the "Email My Size" feature.
Data Processor: Sendinblue SAS (Brevo) — 17 rue de Salneuve, 75017, Paris, France
Location of processing: European Union
Data Categories: Email address, measurement result data, timestamp of submission
Duration: Transient (retained only for the period necessary to deliver the email)
Legal Basis: Article 6(1)(b) – Contract (user-initiated request to receive their measurement result)
Email My Size – Marketing Consent and Customer Record Creation
Purpose: Where the store operator has enabled the marketing opt-in and the end user consents, transmit the email address and marketing consent status to the store operator's Shopify platform for customer record creation.
Data Processor: R11N Ventures GmbH (acting on behalf of the store operator as Controller)
Location of processing: Dependent on store operator's Shopify region
Data Categories: Email address, marketing opt-in status, timestamp of consent
Duration: Transmitted to the store operator's platform; not retained by the Processor beyond delivery confirmation
Legal Basis: Article 6(1)(a) – Consent (end user's explicit opt-in to marketing)
The following applies to all data subjects of both marketing visitors, business users and end users:
This section applies to you, when located in the EU or UK:
Under data protection laws, including European and UK regulations, we must establish valid legal grounds for processing your personal data. Our processing activities are based on and are referenced with the respective activity in Section 1 and 2:
Consent: Processing occurs when you provide explicit permission for specific uses of your data. You retain the right to revoke this permission anytime.
Performance of a Contract: We process data necessary to deliver our services and meet our contractual commitments to you, including pre-contract preparations at your request.
Legitimate Interest: When our legitimate operational needs don't override your fundamental rights, we may process data to:
Provide promotional offers and service updates
Create relevant user content and advertising
Evaluate and enhance service performance
Conduct marketing initiatives
Maintain technical functionality
Prevent misuse
Improve user experience through platform analysis
Legal Obligations: We handle data as required by applicable laws, including cooperation with authorities, protection of legal interests, and participation in legal proceedings.
Vital Interests: Processing may occur to protect essential individual interests during safety-critical situations.
This section applies to you, when located in Canada:
Your personal information may be processed based on either explicit authorization (express consent) or reasonably presumed permission (implied consent) for specified purposes. You maintain the right to revoke such consent at any time.
Applicable law permits certain exemptions where we may process your information without obtaining consent, including but not limited to:
Emergency situations where obtaining consent is impracticable and collection serves individual interests
Detection, prevention, and investigation of fraudulent activities
Qualified business transactions meeting statutory requirements
Insurance claim processing requiring witness statement evaluation
Emergency contact and identification of individuals in medical distress or deceased
Reasonable suspicion of financial exploitation or abuse
Investigative purposes where consent requirements would impair information integrity or availability regarding contract breaches or legal violations
Compliance with judicial orders, warrants, subpoenas, or court-mandated record production
Professional or business records collected within scope of original purpose
Legitimate journalistic, artistic, or literary endeavors
Publicly accessible information as defined by regulatory provisions
In connection with corporate transactions, we reserve the right to transfer your personal data as part of any merger, asset sale, financing arrangement, or acquisition, whether during preliminary negotiations or upon completion of such transactions, where your information may be among the transferred business assets or be subject to ownership changes.
We engage trusted third-party service providers to assist in delivering our Services. These providers are contractually bound to process personal information solely for the purposes we specify and in accordance with this Privacy Notice and applicable data protection laws.
Our platform employs cookies and related tracking mechanisms (including but not limited to web beacons and pixel tags) to collect usage data during your interaction with our Services. Certain tracking technologies are essential for maintaining platform security, preventing system failures, addressing technical issues, retaining user preferences, and enabling core functionality.
We additionally authorize third-party service providers to deploy tracking technologies across our Services for analytical and advertising purposes. Such technologies enable these providers to manage advertisement delivery, and implement remarketing campaigns (subject to your communication preferences). These authorized providers utilize their proprietary technologies to deliver relevant advertisements about products and services, which may appear within our Services or across other digital properties.
Please review the specific tracking and cookie use under Section 1.3. and 2.3. depending on your data subject group.
What are Cookies: Cookies are small text files that websites place on your device to store information about your preferences, improve your experience, and help the website operator understand how people use their site. Similar tracking technologies like web beacons, pixels, and tags work in comparable ways.
Cookie Management: You can control cookies through your browser settings:
Block all cookies
Allow only first-party cookies
Delete cookies when closing your browser
Accept cookies from specific websites
Popular browsers provide these controls at:
Chrome: Settings > Privacy and Security > Cookies and other site data
Firefox: Options > Privacy & Security > Enhanced Tracking Protection
Safari: Preferences > Privacy > Cookies and website data
Edge: Settings > Cookies and site permissions
Please note that blocking certain cookies may impact website functionality.
Each third-party partner processes data according to their own privacy policies, which we encourage you to review.
Your personal information shall be retained only for the duration necessary to fulfill the purposes outlined in this Privacy Notice, except where extended retention periods are mandated or permitted by law, including but not limited to tax regulations, accounting requirements, or other legal obligations. The purposes described herein do not necessitate retention of your personal information beyond a period of two years.
Upon cessation of legitimate business necessity for processing your personal information, we shall either permanently delete or irreversibly anonymize such data. In instances where immediate deletion or anonymization is not technically feasible (such as data stored in backup systems), such personal information shall be securely maintained in isolation from active processing until permanent deletion becomes technically practicable.
Email addresses submitted through the "Email My Size" feature are retained only for the period necessary to deliver the measurement result email. Where the email address and marketing consent are transmitted to the store operator's platform, subsequent retention is governed by the store operator's own privacy policy and data retention practices.
Our organization maintains comprehensive technical and organizational security protocols designed to safeguard all personal information under our control. These security measures are regularly evaluated and updated to protect data during processing, transmission, and storage.
Notwithstanding these protective measures, please be advised that no method of electronic transmission or digital storage system can ensure absolute security. While we employ industry-standard protections, we cannot guarantee complete immunity from unauthorized access, acquisition, or alteration of your information by third parties who may circumvent our security infrastructure. Therefore, any transmission of personal information in connection with our Services carries inherent risks. We recommend accessing our Services only through secure networks and environments to minimize potential vulnerabilities.
Our Services are intended solely for users aged 18 and above. We neither intentionally gather information from nor direct marketing activities toward individuals under 18 years of age. Furthermore, we do not engage in the sale of personal information belonging to minors under 18.
Your use of our Services constitutes an affirmation that you have reached the age of majority (18 years) or are a parent/legal guardian consenting to a minor dependent's use of the Services. Upon discovery of any personal information collected from users under 18, we shall promptly terminate the associated account and implement reasonable procedures to delete such data from our systems. Please notify our Data Protection team at dpo@r11n.io if you become aware of any information we may have inadvertently collected from individuals under 18.
Residents of certain jurisdictions (including the EEA, UK, Switzerland, and Canada) are entitled to specific rights under their respective data protection laws. These rights encompass: accessing and obtaining copies of your personal information; requesting corrections or deletion; limiting information processing; exercising data portability where applicable; and exemption from automated decision-making. To exercise these rights, contact us through the methods outlined in our "Contact Information" section.
Each request will be evaluated and addressed in compliance with applicable data protection regulations.
EEA and UK residents may file complaints with their respective data protection authorities (EU and for UK) if they believe our processing activities violate applicable laws. Swiss residents may seek recourse through the Federal Data Protection and Information Commissioner.
Withdrawing consent: Where consent forms the basis of processing, whether expressed or implied as permitted by law, you maintain the right to withdraw such consent. Contact us via the methods detailed in our "Contact Information" section to withdraw consent. Note that withdrawal of consent: (1) does not impact the legitimacy of prior processing activities, and (2) where legally permitted, does not affect processing conducted under alternative legal bases.
Opting out of marketing and promotional communications: You may discontinue receipt of marketing communications by utilizing the unsubscribe mechanism in our emails or by contacting us directly. While marketing communications will cease, we reserve the right to send administrative messages necessary for account management, service delivery, or other non-promotional purposes.
Cookie Management: Browser settings typically accept cookies by default. You may modify these settings to remove or reject cookies, though this may impact service functionality.
Direct privacy-related inquiries to dpo@r11n.io.
We acknowledge that various web browsers, mobile operating systems, and applications offer Do-Not-Track ("DNT") functionality to indicate your tracking preferences for online activities. However, due to the current absence of a standardized implementation protocol for DNT signals across the digital ecosystem, our systems do not presently recognize or process such signals. Should industry-wide standards for DNT signal processing be established and legally mandated, we will update our practices accordingly and notify you through revisions to this Privacy Notice.
Specific to California privacy regulations, we are required to disclose our response to DNT browser signals. Given the lack of established industry or legal standards regarding DNT signal recognition and processing, we do not currently alter our data collection practices in response to these signals.
This Privacy Notice may be periodically revised to reflect changes in our practices. Material updates will be indicated by a new "Last Modified" date at the beginning of this Notice. We reserve the right to notify you of significant changes either through prominent website notifications or direct communications. Regular review of this Privacy Notice is recommended to stay informed about our data protection practices and your privacy rights.’
Subject to the privacy laws of your jurisdiction (country or U.S. state of residence), you may be entitled to: request details about your personal information in our systems, understand our processing activities, rectify inaccurate data, obtain copies of your information, or request its deletion. Additionally, you may have the right to revoke previously granted authorization for processing your personal information. Please note that certain legal restrictions may limit the exercise of these rights.
To exercise your data privacy rights or manage your personal information, please submit your request to dpo@r11n.io.