Privacy Policy
Last updated: January 2025
Information We Collect
We collect information you provide directly to us, such as when you create an account, use our services, or contact us. This includes your name, email address, company information, and any content you submit through our Web-Platform.
We automatically collect certain information about your device and usage of our services, including IP address, browser type, operating system, and interaction data with our Web-Platform features.
How We Use Your Information
We use the information we collect to provide, maintain, and improve our risk management services, including generating AI-powered analysis and compliance reports. Your data helps us deliver personalized insights and maintain audit trails as required by enterprise compliance standards.
We may use your information to communicate with you about our services, send important notices, and provide customer support. We also use aggregated, de-identified data to improve our AI algorithms and Web-Platform functionality.
Data Processing and AI Analysis
Our AI systems process your team's decision data, market context, and historical patterns to generate risk analysis reports. All processing occurs within secure, SOC 2 compliant infrastructure with end-to-end encryption.
We implement privacy-by-design principles, ensuring that personal data is processed only as necessary for legitimate business purposes and compliance requirements.
Information Sharing and Disclosure
We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as described in this policy. We may share information with trusted service providers who assist in operating our Web-Platform, conducting business, or serving users.
We may disclose information when required by law, to protect our rights, or in connection with a business transaction such as a merger or acquisition.
Data Security and Protection
We implement industry-standard security measures to protect your information, including encryption at rest and in transit, regular security audits, and access controls. Our infrastructure meets SOC 2 Type II compliance standards.
We maintain comprehensive audit logs and monitoring systems to detect and respond to potential security incidents. All team members undergo security training and background checks.
Data Retention and Deletion
We retain your information for as long as necessary to provide our services and comply with legal obligations. Risk analysis data may be retained for extended periods to maintain historical context and compliance audit trails.
You may request deletion of your personal data, subject to our legitimate business needs and legal requirements. We will respond to deletion requests within 30 days.
International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adequacy decisions.
All international transfers comply with applicable data protection laws, including GDPR and CCPA requirements where applicable.
Your Rights and Choices
You have the right to access, update, or delete your personal information. You may also request a copy of your data or object to certain processing activities. Contact us to exercise these rights.
You can control certain data collection through your account settings and browser preferences. However, some data collection is necessary for core Web-Platform functionality.
Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience, analyze usage patterns, and maintain session security. Our Cookie Policy provides detailed information about the types of cookies we use.
You can control cookie preferences through your browser settings or our cookie consent banner. Some cookies are essential for Web-Platform functionality and cannot be disabled.
Third-Party Integrations
Our Web-Platform integrates with third-party services like Slack and Jira. These integrations are governed by the respective privacy policies of those services, in addition to this policy.
We carefully vet all third-party providers to ensure they meet our security and privacy standards. Integration data is processed according to the same protections as other Web-Platform data.
Children's Privacy
Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware of such collection, we will take steps to delete the information promptly.
California Privacy Rights
California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to delete personal information, and the right to opt-out of the sale of personal information.
We do not sell personal information as defined by the CCPA. California residents may contact us to exercise their rights or designate an authorized agent to make requests on their behalf.
European Privacy Rights
If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR), including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority.
Our lawful basis for processing includes contract performance, legitimate interests, and compliance with legal obligations. Contact our Data Protection Officer for GDPR-related inquiries.
Updates to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of material changes through email or prominent notices on our Web-Platform.
Your continued use of our services after policy updates constitutes acceptance of the revised terms. We encourage you to review this policy regularly.
Contact Information
If you have questions about this Privacy Policy or our data practices, please contact us at privacy@rideas.ai or +1 415 555 0132. Our Data Protection Officer can be reached at dpo@rideas.ai.
You may also contact us by mail at: RIdeas AI, 548 Market St, San Francisco, CA 94104, USA.