Last Updated: February 2026
Effective Date: February 2026
Raw, Inc. ("Raw," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the raw mobile application, website, and related services (collectively, the "Service"). This policy is designed to comply with the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA"), the Children's Online Privacy Protection Act ("COPPA"), and other applicable data protection laws. Please read this policy carefully. By using the Service, you consent to the practices described herein.
Raw, Inc. is the data controller responsible for your personal data. For questions or concerns regarding this Privacy Policy or our data practices, contact us at:
Raw, Inc.
Email: privacy@raw.ski
Website: https://raw.ski
We collect information in the following categories:
(a) Account Information: email address, username, password (stored in hashed form), and profile information you choose to provide.
(b) User Content: videos recorded through or uploaded to the Service, including associated captions and descriptions.
(c) Communications: information you provide when contacting us for support, submitting reports, or participating in surveys.
(a) Device Information: device model, operating system and version, unique device identifiers, and hardware specifications relevant to video capture capabilities.
(b) Sensor and Motion Data: gyroscope data, accelerometer data, and other motion sensor readings captured during video recording. This data is essential to our anti-tampering verification system, as it helps determine whether a video was captured directly from a physical camera sensor or reproduced from another screen.
(c) Location Data: approximate geographic location based on IP address. Precise GPS location is collected only if you explicitly grant location permissions in the app, and is used to provide location context for verified content.
(d) IP Address: your Internet Protocol address, collected for security, fraud prevention, and approximate geolocation purposes.
(e) Usage Data: information about how you interact with the Service, including pages visited, features used, timestamps, and referring URLs.
(f) Video Metadata: technical metadata extracted from your video content, including resolution, frame rate, codec information, capture timestamps, and authenticity verification data generated by our analysis systems.
If you choose to sign in using a third-party authentication provider (e.g., Apple Sign-In, Google), we receive the information you authorize that provider to share, typically your name and email address.
We use the information we collect for the following purposes and legal bases:
(a) Provide and Operate the Service (Legal basis: Contract Performance) — to create and manage your account, host and display your content, and deliver the core functionality of the platform.
(b) Authenticity Verification (Legal basis: Contract Performance and Legitimate Interest) — to analyze uploaded and recorded content using our anti-tampering detection systems, assign authenticity scores, and flag or restrict tampered content. This is the core purpose of the raw platform.
(c) Improve Anti-Tampering Detection (Legal basis: Legitimate Interest) — to research, develop, and improve our authenticity verification technology using aggregated and anonymized data patterns from content analysis. Individual content is not used for this purpose without consent.
(d) Safety and Security (Legal basis: Legitimate Interest) — to detect and prevent fraud, abuse, security incidents, and other harmful activity on the platform.
(e) Communications (Legal basis: Contract Performance / Consent) — to send you service-related notices, respond to support requests, and, with your consent, send promotional communications.
(f) Legal Compliance (Legal basis: Legal Obligation) — to comply with applicable laws, regulations, legal processes, or governmental requests.
4.1. User Content: Videos and associated content are stored on our servers for as long as your account is active and until you choose to delete them. Upon deletion by you, content is removed from public visibility immediately and purged from our systems within ninety (90) days, except as required for legal compliance or legitimate business purposes.
4.2. Anti-Tampering Metadata: Verification results, authenticity scores, and associated analytical metadata are retained for the duration of the content's existence on the platform and for a period of up to two (2) years following content deletion to maintain verification history, support appeals, and improve detection accuracy. This metadata does not include the video content itself.
4.3. Account Information: Account data is retained for as long as your account is active. If you delete your account, we will delete or anonymize your personal information within thirty (30) days, except as required to comply with legal obligations, resolve disputes, or enforce our agreements.
4.4. Sensor and Motion Data: Raw sensor data collected during video recording is processed for authenticity verification and then either discarded or stored in aggregated, anonymized form. We do not retain raw motion sensor data linked to your identity beyond the verification process.
If you are a resident of the European Union, European Economic Area, or the United Kingdom, you have the following rights under the GDPR regarding your personal data:
(a) Right of Access (Article 15): You have the right to request a copy of the personal data we hold about you, along with information about how it is processed.
(b) Right to Rectification (Article 16): You have the right to request correction of inaccurate personal data or completion of incomplete personal data.
(c) Right to Erasure (Article 17): You have the right to request deletion of your personal data, subject to certain exceptions such as legal compliance obligations.
(d) Right to Restriction of Processing (Article 18): You have the right to request that we restrict the processing of your personal data under certain circumstances, such as when you contest the accuracy of the data.
(e) Right to Data Portability (Article 20): You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller without hindrance.
(f) Right to Object (Article 21): You have the right to object to processing of your personal data based on legitimate interests, including profiling. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests.
(g) Right Not to Be Subject to Automated Decision-Making (Article 22): Our authenticity verification system involves automated processing. Where such processing produces legal effects or similarly significant effects on you, you have the right to obtain human intervention, express your point of view, and contest the decision.
To exercise any of these rights, please contact us at privacy@raw.ski. We will respond to your request within thirty (30) days as required by the GDPR. We may request verification of your identity before processing your request. You also have the right to lodge a complaint with your local data protection supervisory authority.
6.1. The Service is operated from the United States. Your personal data is stored on Firebase servers located in the United States, operated by Google LLC.
6.2. If you are located in the European Union, European Economic Area, the United Kingdom, or another jurisdiction with data transfer restrictions, we ensure that your personal data is transferred with appropriate safeguards in place. We rely on the European Commission's Standard Contractual Clauses ("SCCs") as the legal mechanism for transferring personal data from the EU/EEA/UK to the United States.
6.3. Google LLC, our infrastructure provider, maintains compliance with applicable data protection frameworks. Additional information about Google's data protection practices can be found in their privacy documentation.
7.1. We do not sell your personal data. Raw does not sell, rent, or trade your personal information to third parties for their marketing purposes.
7.2. We may share your personal data only in the following limited circumstances:
(a) Service Providers: With trusted third-party service providers who assist us in operating the Service (e.g., cloud hosting, analytics), subject to contractual obligations to protect your data and use it only as directed by us.
(b) Legal Requirements: When required by applicable law, regulation, legal process, or governmental request, including to meet national security or law enforcement requirements.
(c) Protection of Rights: When necessary to protect the rights, property, or safety of Raw, our users, or the public.
(d) Business Transfers: In connection with a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, in which case your personal data may be transferred as part of that transaction. We will notify you of any such change and any choices you may have.
8.1. The Service is not directed to children under the age of thirteen (13). We do not knowingly collect personal information from children under 13 in compliance with COPPA. If we learn that we have collected personal information from a child under 13 without verified parental consent, we will take steps to delete that information as quickly as possible.
8.2. For users in the European Union, European Economic Area, or the United Kingdom, the minimum age for using the Service without parental consent is sixteen (16). Users between 13 and 15 in these jurisdictions require verified parental or guardian consent.
8.3. If you believe a child under the applicable age has provided us with personal information, please contact us at privacy@raw.ski and we will promptly investigate and take appropriate action.
9.1. The raw mobile application does not use cookies. This cookie policy applies only to the raw website (raw.ski).
9.2. Our website uses the following categories of cookies:
(a) Strictly Necessary Cookies: Required for the operation of the website, such as session management and security tokens. These cannot be disabled.
(b) Analytics Cookies: Used to understand how visitors interact with our website, including page views, traffic sources, and user journeys. We use these to improve the website experience. These are set only with your consent.
9.3. You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of the website. For EU visitors, we display a cookie consent banner upon your first visit.
If you are a California resident, you have the following rights under the California Consumer Privacy Act and the California Privacy Rights Act:
(a) Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the categories of sources from which the information was collected, the business or commercial purpose for collecting the information, and the categories of third parties with whom we share the information.
(b) Right to Delete: You have the right to request that we delete the personal information we have collected about you, subject to certain exceptions.
(c) Right to Correct: You have the right to request correction of inaccurate personal information.
(d) Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.
(e) Right to Opt-Out of Sale: We do not sell personal information. However, if we ever do, you will have the right to opt-out of such sales.
Categories of Personal Information Collected (as defined by the CCPA): identifiers (email, username, IP address); internet or electronic network activity information; geolocation data; sensory data (video content); and inferences drawn from the above.
To exercise your CCPA rights, contact us at privacy@raw.ski or submit a request through the Service. We will verify your identity before processing your request and respond within forty-five (45) days.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, access controls, regular security assessments, and incident response procedures. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by posting the updated policy on the Service with a revised "Last Updated" date and, where required by law, by sending you an email or in-app notification. Your continued use of the Service after the effective date of the revised policy constitutes acceptance of the changes.
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Raw, Inc.
Data Protection Inquiries
Email: privacy@raw.ski
Website: https://raw.ski
For EU/EEA/UK residents, you also have the right to lodge a complaint with your local Data Protection Authority.