Rento
Log inSign up

Privacy Policy

How Rento collects, uses, and protects your information across our website and app.

Last updated: May 19, 2026

Rento(“we”, “our”, or “us”) is committed to protecting your personal information and your right to privacy. This Privacy Policy explains what information we collect, why we collect it, how we use and disclose it, and the rights and choices you have when you use our website, iOS mobile app, and related services (together, the “Services”).

By using our Services you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use our Services.

1) Who we are

Rento is a B2B software-as-a-service (SaaS) platform designed to help vehicle rental operators manage bookings, renters, payments, and operational workflows.

For privacy enquiries, contact us at rento.support@gmail.com.

2) Information we collect

We collect only information that is reasonably necessary to provide and improve our Services.

Account and identity information

  • At sign-up (required): name and email address only. We do not collect your phone number for your account profile.
  • Authentication credentials, managed securely through Firebase Authentication. We do not store your password in plain text.

Subscription and billing information

  • Subscription tier, renewal status, and entitlement history (free, Starter, or Growth).
  • Apple App Store (iOS): subscription status and product identifiers via RevenueCat; Apple processes payment.
  • Website (Stripe): plan type, invoice history, and payment status; Stripe processes payment card data.

Rental operational data

  • Vehicle records, booking details, payment and bond tracking, and workflow notes.
  • Contract documents and rental history that you create within the app.

Renter information (third-party data you upload)

Our app allows you to store information about your own renters, which may include their name, phone number, driver's licence number, and uploaded photos or documents. This data is provided by you and is used solely to manage rental records inside your account.

You are solely responsible for ensuring you have the necessary authority, consent, or legal basis to collect, upload, and store this third-party information. You must comply with all applicable privacy laws when handling your renters' personal data.

Driver's licence and identity photos

Rento may store sensitive identification information that you or your staff enter about renters, including driver's licence numbers and photos of licences or other ID documents. Vehicle photos you upload are stored separately for fleet management.

  • Why we process it: solely to operate your rental records (bookings, compliance, and related workflows) inside your account.
  • How it is stored: data is stored in Google Firebase (Firestore for structured fields; Cloud Storage for images), transmitted over encrypted connections (HTTPS/TLS), and protected by access controls so only your signed-in account can access your data.
  • When we access photos: the app requests photo library access only when you tap to choose or upload an image. We do not browse your library in the background.
  • Sharing: we do not sell licence or renter data, use it for advertising, or share it with data brokers. It is disclosed only to service providers that host our infrastructure (see Section 6) or when required by law.
  • Retention and deletion: licence and photo data is kept while your account is active. When you delete your account (Profile → Account → Delete account), we delete or anonymise associated personal data within the period described in Section 9, including stored images linked to your account.

Licence photo uploads may be limited by subscription plan. Do not upload identification images unless you have a lawful basis and, where required, the renter's consent.

Device and usage data

  • Device type, operating system version, and app version.
  • App interaction events, crash reports, and performance diagnostics (collected via Firebase Analytics and Crashlytics).
  • IP address (used for security, fraud prevention, and approximate location — not stored long-term).

Camera, photos, and documents

  • Camera and photo library access is requested only when you choose to capture or upload images or documents. We do not access your media without your action.

Communications

  • Emails or messages you send to our support team, including any attachments or information you choose to share.
  • Push notification tokens (to send you booking and account alerts).

3) How we use your information

We use the information we collect to:

  • Create and manage your account and authenticate your identity.
  • Provide, operate, and improve the core features of our Services.
  • Process subscriptions and manage billing via Apple In-App Purchase (through RevenueCat) on iOS, and via Stripe on our website.
  • Sync and display your rental records securely across your authorised devices.
  • Send transactional notifications (booking updates, payment receipts, account alerts).
  • Send service communications (policy updates, maintenance notices). We do not send marketing emails without your consent.
  • Monitor performance, diagnose bugs, and improve product reliability.
  • Detect, prevent, and respond to fraud, abuse, or security incidents.
  • Comply with our legal obligations under applicable Australian law.

We do not use your data for advertising, and we do not sell your personal information to third parties.

4) Legal basis for processing (Australian Privacy Act)

We operate under Australia's Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). We collect and handle personal information that is reasonably necessary to provide our Services. Our key grounds for processing are:

  • Performance of a contract — to provide the app and services you have signed up for.
  • Legitimate interests — to operate, secure, and improve our platform, provided those interests are not overridden by your privacy rights.
  • Legal obligation — to comply with applicable laws, regulatory requirements, or lawful requests.
  • Consent — where we ask for your permission (for example, to send push notifications).

5) Payments, subscriptions, and billing

Rento offers paid subscription plans (Starter and Growth) and a free tier with feature limits. Plan limits (such as vehicle count, active bookings, and photo uploads) may change over time; current limits are shown in the app and on our pricing page.

iOS app — Apple In-App Purchase

Purchases made in the iOS app are processed by Apple through the App Store. We use RevenueCat to validate receipts, sync subscription status to your account, and provide restore purchases. Apple's privacy policy applies to payment data Apple collects: Apple Privacy Policy.

  • Manage or cancel an App Store subscription in iPhone Settings → Apple ID → Subscriptions, or use “Manage in Apple Subscriptions” in the app when available.
  • Use “Restore Purchases” in the app to re-link an existing App Store subscription to your account after reinstalling or signing in on a new device.
  • Refunds for App Store purchases are handled by Apple according to their policies.

Website — Stripe

Subscriptions purchased on our website are processed by Stripe, a PCI DSS-compliant payment processor. We do not store your full card number, CVV, or other sensitive payment credentials.

Manage or cancel a Stripe subscription through your account on the website (billing portal) where you originally subscribed.

We retain billing records (plan type, renewal status, invoice history where applicable) to manage your subscription and comply with legal and tax obligations. If you delete your account, cancel any active subscription first to avoid further charges.

6) Third-party services and SDKs

We use the following third-party services which may process data on our behalf. Each operates under their own privacy policies:

  • Firebase (Google)— authentication, cloud database (Firestore), file storage, analytics, and crash reporting. Data may be processed on Google's servers, which may be located outside Australia. Firebase Privacy.
  • RevenueCat — iOS subscription validation, entitlement sync, and restore purchases. RevenueCat Privacy.
  • Stripe — website payment processing and subscription management. Stripe Privacy Policy.
  • Apple — App Store In-App Purchase processing for iOS subscriptions. Apple Privacy Policy.

We take reasonable steps to ensure our service providers handle personal information in a manner consistent with the Australian Privacy Principles.

7) International data transfers

Some of our third-party service providers (including Google/Firebase) operate infrastructure located outside of Australia, which means your personal information may be stored or processed overseas, including in the United States.

Where personal information is disclosed to overseas recipients, we take reasonable steps to ensure those recipients handle it in a way that is consistent with the Australian Privacy Principles (APP 8).

8) Data sharing

We do not sell, rent, or trade your personal information. We only share data in the following limited circumstances:

  • Service providers — trusted partners (Firebase, RevenueCat, Stripe, Apple where applicable) who process data on our behalf to deliver the Services.
  • Legal requirements — when required to comply with applicable law, regulation, court order, or lawful government request.
  • Safety and security — to protect the rights, safety, or security of our users, the public, or our business.
  • Business transfers — in connection with a merger, acquisition, financing, or sale of business assets, with appropriate confidentiality safeguards in place.

9) Data retention

We retain your personal information for as long as your account is active and as reasonably necessary to provide the Services. Specifically:

  • Account and operational data is retained while your account is active or as needed to provide ongoing service.
  • After account deletion, we will delete or anonymise your personal data within 30 days, except where we are required by law to retain it for longer (for example, billing and tax records may be retained for up to 7 years under Australian tax law).
  • Aggregated, de-identified analytics data may be retained indefinitely as it cannot be used to identify you.

10) Account deletion

If you created an account, you have the right to delete it at any time. You can initiate account deletion directly within the app:

Profile → Account → Delete account

Deleting your account will permanently remove your profile, rental records, and associated personal data, subject to our retention obligations described in Section 9 above. If you have an active subscription, cancel it first (App Store: iPhone Settings → Apple ID → Subscriptions; website: your Stripe billing portal) to avoid further charges.

If you are unable to delete your account through the app, contact us at rento.support@gmail.com and we will process your request within a reasonable timeframe.

11) Data security

We implement reasonable technical and organisational measures to protect your information, including:

  • Encrypted data transmission (HTTPS/TLS) between the app and our servers.
  • Firebase Security Rules to restrict access to data based on authenticated user identity.
  • Stripe's PCI DSS-compliant infrastructure for website payment data.
  • Firebase App Check to help protect backend APIs from abuse (device attestation signals).
  • Access controls limiting who within our team can access production data.

No method of transmission or storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security. If you believe your account has been compromised, contact us immediately at rento.support@gmail.com.

12) Your privacy rights

Under the Australian Privacy Principles, you have the right to:

  • Access — request a copy of the personal information we hold about you.
  • Correction — request that we correct inaccurate, incomplete, or out-of-date personal information.
  • Deletion — request deletion of your account and associated personal data (see Section 10).
  • Complaints — lodge a complaint with us about how we handle your personal information.
  • Notification preferences — disable push notifications at any time through your device settings (iOS Settings → Notifications → Rento).
  • App Store subscriptions — manage or cancel in iPhone Settings → Apple ID → Subscriptions; restore prior purchases in the app where offered.

To exercise any of these rights, contact us at rento.support@gmail.com. We will respond within 30 days. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC).

13) Cookies and web tracking

Our website may use cookies and similar technologies to maintain sessions, remember preferences, and gather analytics. You can control cookie behaviour through your browser settings, though disabling cookies may affect some website functionality.

Our iOS app does not use browser cookies. Firebase Analytics collects anonymised usage events to help us understand how the app is used and to improve it.

14) Children's privacy

Our Services are intended for use by business operators and are not directed to children under the age of 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will take steps to delete it.

15) Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or Services. When we make material changes, we will:

  • Update the “Last updated” date at the top of this page.
  • Notify you via email or an in-app notice where the change is significant and affects how we handle your personal information.

Your continued use of the Services after any changes constitutes your acceptance of the updated policy.

16) Contact us

For privacy-related questions, access requests, or complaints, please contact us at:

For general support, visit Support or email rento.support@gmail.com.