Back to home

Effective: May 28, 2026 | Last updated: May 28, 2026

Terms of Use – Ryng for Business

These terms govern use of Ryng's business services – including the Ryng for Business website, admin panel, API/SDK interfaces, and verified caller identity services. They also include a unified Data Processing Agreement (DPA) in Section 18.

Acceptance
Authority and Entity Eligibility
Service Description
Business Account, Representatives and Security
Permitted and Prohibited Use
Phone-Number Ownership and Identity Configuration
Commercial Terms, Pricing and Billing
Service Availability (SLA) and Support
Third-Party Services and Telecom Providers
Intellectual Property, License and Customer Brand
Mutual Confidentiality
Beta Features and Service Changes
Disclaimer of Warranties
Limitation of Liability
Indemnity
Suspension and Termination
Governing Law and Dispute Resolution
DPA – Unified Data Processing Agreement
Changes to these Terms
Contact

1. Acceptance

Use of Ryng for Business services – including opening an account, running a POC, integrating with the API, or purchasing a subscription – constitutes full and irrevocable acceptance of these terms and of the Ryng for Business Privacy Policy. If you do not agree to these terms, do not use the service.

2. Authority and Entity Eligibility

The service is intended solely for corporations, organizations and licensed sole proprietors. The service is not intended for individual personal use.
By accepting these terms, you represent that you are authorized to bind the Business Client on whose behalf you are acting, and that any action by Business Representatives will be attributed to the Business Client itself.
The Business Client represents that it is a duly registered, active legal entity, and that it holds the legal rights to use the brand rights, phone numbers and end-user data it inputs into the Ryng system.
Ryng reserves the right to require entity-identity documents, powers of attorney and ownership proof during onboarding and at any time thereafter.

3. Service Description

Ryng for Business provides the Business Client with a verified caller identity service for calls to its end users. The service may include, among other things:

Display of a verified brand identity on the incoming-call screen of relevant end users.
Admin panel for brand configuration, managing verified phone numbers, campaigns and call context.
API/SDK interfaces for integration with call centers, CRM systems and telephony providers.
Performance reports: pick-up rates, end-user experience indicators, usage volumes.

Actual availability of the identity display depends on the end user installing and consenting to the Ryng consumer app. The service does not constitute legal, regulatory or consumer advice and does not guarantee response to every call.

4. Business Account, Representatives and Security

The Business Client is responsible for the accuracy of the information it provides and for keeping it up to date.
The Business Client is responsible for safeguarding the confidentiality of credentials and API keys issued to its representatives.
Any action carried out within the account will be deemed performed by the Business Client, unless proven otherwise.
Unauthorized use, lost API keys, or any suspected security compromise must be reported immediately.
Ryng may require the Business Client to enable multi-factor authentication (MFA) for its representatives.
The Business Client is responsible for removing representatives who are no longer authorized to act in the account (e.g., upon termination of employment).

5. Permitted and Prohibited Use

5.1 Permitted use

Legitimate business contact with the Business Client's end users, including service, collections, scheduling and lawful sales.
Full compliance with applicable law, including consumer-protection law, the Israeli Telecommunications (Bezeq and Broadcasting) Law, the Privacy Protection Law, and their regulations.
Compliance with do-not-call (DNC) rules and direct-marketing rules (Amendment 40 of the Telecommunications Law).

5.2 Prohibited use

Attempting to circumvent security controls or reverse-engineer the service interfaces.
Aggressive scraping, deliberate load, or intentional excess of API quotas.
Using the service to impersonate an entity other than the Business Client, fraud, phishing or harassment.
Integrating Ryng into campaigns that do not comply with DNC rules and direct-marketing consent rules.
Sharing API keys with third parties outside an authorized integrator framework.
Using end-user phone numbers for purposes unrelated to the current/planned call.

6. Phone-Number Ownership and Identity Configuration

The Business Client represents that all phone numbers it inputs into the Ryng system for identity verification are either fully owned by it or licensed to it under a valid license from a duly authorized telecom provider.
The Business Client undertakes to provide Ryng, on request, with ownership/licensing evidence for these phone numbers (including number-allocation letters from carriers, telecom invoices, agreements).
Ryng may suspend identity verification for phone numbers whose legitimacy cannot be substantiated, or remove their display at its discretion at any time.
Branding displayed to end users (name, logo, tagline) must be appropriate, accurately represent the Business Client, and not contain misleading content.

7. Commercial Terms, Pricing and Billing

Plans, pricing, tiers and usage limits will be set in a separate order form / quote ("Order Form") between you and Ryng.
The Order Form is an integral part of these terms. In any conflict between the Order Form and these terms, the specific clause in the Order Form will prevail for the matter it addresses, unless otherwise specified in writing.
Charges will be made in the currency and via the payment method specified in the Order Form.
Overdue payments will accrue interest and indexation as permitted by law, and Ryng may suspend the service until payment is settled.
All prices are exclusive of VAT unless expressly stated otherwise.
Subscription renewals, if applicable, will be as specified in the Order Form.

8. Service Availability (SLA) and Support

Ryng will work to provide reasonable availability and professional support for the service. The specific service level (annual uptime, response times, maintenance windows, service credits for missed targets) will be set out in a separate SLA annex or in the Order Form.

Ryng is not responsible for unavailability arising from causes outside its reasonable control, including telecom provider outages, sophisticated cyberattacks, earthquakes, or regulatory disruptions.

9. Third-Party Services and Telecom Providers

The service relies on third-party providers (cloud, analytics, AI, communications, billing). A detailed list appears in Section 18 (DPA) and in the Privacy Policy.
Actual display of the verified identity to the end user depends on the end user installing the Ryng consumer app and consenting to its terms.
We are not responsible for the content or activity of third-party services outside our control (such as the Business Client's telephony provider or CRM provider).

10. Intellectual Property, License and Customer Brand

All rights in the software, design, algorithms, brand, content and screens of Ryng are reserved to WebEngine.
Ryng grants the Business Client a limited, non-exclusive, non-transferable, revocable license to use the service for the agreed purposes only, for the subscription term only.
The Business Client grants Ryng a limited, non-exclusive, revocable license to use its brand name, logo, brand colors and trademarks for the purpose of displaying them within the identity-verification screen and in reasonable marketing materials (including "Powered by" / case studies), subject to standards specified by the Business Client. The Business Client may terminate this license on 30 days' prior written notice.
No copying, sale, distribution, modification, or creation of derivative works of the service is permitted without express written permission.
The Business Client grants Ryng a perpetual, non-exclusive, royalty-free license to use aggregated and anonymized data derived from use of the service for product-improvement and research purposes.

11. Mutual Confidentiality

Each party undertakes to keep confidential information of the other party that is disclosed to it within the business relationship confidential, and to use it only to exercise its rights and obligations under these terms.
Confidentiality does not apply to information that: (a) was known to the receiving party prior to disclosure; (b) became publicly known not as a result of breach; (c) was independently developed; (d) must be disclosed under law.
The confidentiality obligation will apply during the term of the agreement and for an additional 3 years after its termination.

12. Beta Features and Service Changes

Ryng may offer experimental ("beta") features that may change, be unstable or cease operating without prior notice. Ryng may change, add or remove features from the service, including changes to API interfaces, with reasonable prior notice to the Business Client – where feasible – and at least 60 days' notice when the change is material and breaks existing functionality.

13. Disclaimer of Warranties

The service is provided "AS IS" and "AS AVAILABLE," without warranty of any kind, express or implied, including fitness for a particular purpose, continuity, full accuracy, compatibility with any system, or non-infringement. Ryng does not warrant that the service will be error-free, that any defect will be fixed within a specific time, or that every end user will see the verified identity display.

14. Limitation of Liability

To the extent permitted by law, Ryng, WebEngine and their affiliates will not be liable for indirect, special, consequential, incidental damages, loss of profits, loss of business opportunity, loss of data, or reputational harm arising from use of or inability to use the service, even if advised of the possibility of such damage.

The total and aggregate liability cap of Ryng towards the Business Client for any cause related to the service will be limited to the amount actually paid by the Business Client for the service during the 12 months preceding the event giving rise to the claim.

These limitations do not apply in cases of damage caused by willful misconduct or gross negligence, breach of confidentiality, infringement of intellectual property rights, or indemnity obligations under Section 15.

15. Indemnity

The Business Client will indemnify Ryng and WebEngine, their officers and employees, against any damage, expense (including reasonable attorney's fees) or claim arising from: (a) breach of these terms by the Business Client; (b) unlawful use of the service or unlawful integration into its systems; (c) infringement of third-party rights by the Business Client, including IP rights and the privacy of its end users; (d) content or branding displayed by the Business Client on the identity screen.
Ryng will indemnify the Business Client against a third-party claim alleging that the service itself (as provided by Ryng) infringes the third party's intellectual property rights, provided that the Business Client (i) gave Ryng prompt written notice of the claim, (ii) allowed Ryng to control the defense and settlement, and (iii) cooperated with Ryng. This indemnity does not apply to integrations, customizations or use contrary to these terms.

16. Suspension and Termination

Ryng may immediately suspend or terminate access to the service in case of a material breach of these terms, an immediate security risk, non-payment, or suspected unlawful activity.
Either party may terminate the engagement on 30 days' prior written notice, unless otherwise specified in the Order Form.
Upon termination, the Business Client will immediately cease use of the service, remove API keys and terminate active integrations.
Ryng will act according to the DPA (Section 18) for the return or deletion of data processed on behalf of the Business Client.
Provisions on intellectual property, confidentiality, liability, indemnity, the DPA, and any other provisions that by their nature are intended to survive termination – will continue to apply.

17. Governing Law and Dispute Resolution

These terms are governed by the laws of the State of Israel, without applying its conflict-of-laws rules. Exclusive jurisdiction over any dispute arising out of these terms or the service is granted to the competent courts of Tel Aviv-Yafo, unless otherwise required by law. The parties may agree on arbitration via the Israeli Institute of Commercial Arbitration.

18. DPA – Unified Data Processing Agreement

This section (the "DPA") applies whenever Ryng processes personal information on behalf of the Business Client in the course of the service. The DPA is an integral part of these terms and is binding on both parties.

18.1 Definitions

"Personal Information" – as defined in the GDPR and in the Israeli Privacy Protection Law, 5741-1981, including identifying details of an individual, including end users of the Business Client.
"Controller" – the Business Client, which determines the purposes and means of processing.
"Processor" – Ryng, processing personal information on the Business Client's instructions.
"Sub-processor" – any third party processing personal information on behalf of Ryng for the purpose of providing the service.
"Personal Data Incident" – a security breach resulting in destruction, loss, alteration, unauthorized disclosure of or access to personal information.

18.2 Roles, Nature and Purpose of Processing

The Business Client is the Controller of personal information of end users that it transfers to Ryng.
Ryng acts solely as a Processor with respect to such information, on the Business Client's documented instructions only.
Type of data processed: phone numbers of end users, operational call metadata, and any additional categories agreed in advance in writing.
Categories of data subjects: customers, suppliers or business contacts of the Business Client, to the agreed extent.
Purpose of processing: providing the verified caller identity service, managing brand display on the end-user's screen, and reporting performance back to the Controller.
Duration of processing: the term of the engagement, up to deletion/return of the data under Section 18.10.

18.3 Processing Instructions

Ryng will process personal information only (a) on the Business Client's instructions as provided through the admin panel, the API interfaces, and written instructions; (b) as required to provide the service under these terms; (c) as required under applicable law. If Ryng is required by law to process data beyond the Controller's instructions, it will notify the Controller before processing, unless the law prohibits such notice.

18.4 Business Client Obligations as Controller

Ensure there is a valid legal basis for the processing carried out by Ryng (including end-user consents and privacy notices).
Provide lawful and clear processing instructions.
Not transfer special categories of data (health, biometric, etc.) to Ryng without prior written coordination.
Ensure that end users have received an appropriate privacy notice explaining the use of Ryng for Business services.

18.5 Confidentiality of Processing Personnel

Ryng will ensure that all persons authorized to process personal information on its behalf are bound by an appropriate contractual or statutory confidentiality obligation, and that access is granted on a need-to-know basis with RBAC controls.

18.6 Security

Ryng will implement reasonable technical and organizational security measures as described in the Privacy Policy, including:

Encryption in transit (TLS 1.2+) and at rest for sensitive data.
Role-based access control (RBAC) and MFA.
Environment separation, logical tenant separation, and API-key isolation.
Monitoring, logging, vulnerability scans, and periodic penetration testing.
Security incident response procedures.

18.7 Sub-processors

The Business Client provides general consent to the use of sub-processors as listed in the Privacy Policy (Section 10.1).
Ryng will notify the Business Client of any change/addition of a sub-processor at least 30 days in advance (e.g., via sub-processor page, email, or admin panel notice).
The Business Client may object on reasonable data-protection grounds within 30 days of notice. In case of a material dispute that is not resolved, the Business Client may terminate the relevant portion of the engagement.
Ryng will impose on each sub-processor data-protection obligations no less protective than those applicable to it under this agreement.

18.8 International Transfers

Transfers of personal information outside the EEA, the UK or Israel will be carried out under an appropriate legal mechanism (including European Commission Standard Contractual Clauses (SCCs) or adequacy decisions). Ryng will provide the Business Client, upon reasonable request, with the information necessary to demonstrate the existence of a valid transfer mechanism.

18.9 Assistance to the Controller

Ryng will assist the Business Client, through reasonable technical and organizational measures and in a manner consistent with the nature of the service, with:

Fulfilling data-subject requests (access, correction, deletion, portability, objection).
Performing Data Protection Impact Assessments (DPIA) as required.
Meeting any obligation to notify authorities and data subjects in case of a personal data incident.

Ryng may charge the Business Client reasonable costs for significant assistance beyond the standard service, at its prevailing rates and subject to prior notice.

18.10 Deletion / Return upon Termination

Upon termination, and subject to the Business Client's written instructions provided within 30 days of termination, Ryng will delete or return personal information it processed on the Business Client's behalf, including existing copies, unless retention is required by law. Residual backups will be removed in routine backup cycles within an additional 90 days.

18.11 Personal Data Incident Notification

Ryng will notify the Business Client of a personal data incident affecting its data without undue delay, and in any event no later than 72 hours after Ryng becomes substantively aware of the incident.
The notice will include, where possible: the nature of the incident, approximate categories and volumes of data subjects and records, possible consequences, and measures taken or planned to mitigate harm.
Ryng will cooperate with the Business Client in assessing the duty to notify authorities and end users, but the ultimate decision on notification lies with the Controller.

18.12 Audit

Upon reasonable request and no more than once per year (unless otherwise required by a regulator), Ryng will provide the Business Client with reasonable information demonstrating compliance with DPA obligations, including security audit summaries and third-party certifications (such as ISO 27001, SOC 2) where available.
In case of a substantiated suspicion of material breach, the Business Client may request an audit through an independent auditor subject to confidentiality, at the Business Client's expense, coordinated with Ryng as to timing, scope and manner, and in a way that does not impact Ryng's other customers.

18.13 Priority and Conflicts

In any conflict between the DPA and the rest of the Terms of Use, the DPA will prevail with respect to processing of personal information on behalf of the Business Client. For all other matters – the rest of the Terms of Use will apply.

19. Changes to these Terms

We may update these terms from time to time. For material changes (including changes to the DPA, sub-processors, or limitation of liability), we will provide the Business Client with reasonable notice at least 30 days in advance. Continued use of the service after the change takes effect will be deemed acceptance of the updated terms.

20. Contact

For commercial questions: [email protected]
For privacy, DPA or data-security questions: [email protected]
Address: 10 Yehuda HaLevi St., Kiryat Shmona, Israel