Privacy
Ridge Privacy Policy.
A UCPA-aware privacy notice for Ridge's draft-only AI workflows, integrations, demo funnel, and pilot operations.
Scope.
This Policy explains how Ridge handles personal data in connection with the Ridge website, demo funnel, private pilot, and AI workflow service. Ridge is primarily a B2B service used by builder agents and builder sales teams.
Data Ridge collects.
Ridge may collect account data, contact data, role and employer data, authentication data, billing and subscription records, chat messages, voice memos and transcripts, text screenshots, uploaded source documents, deal and party context, builder data, draft content, feedback, support messages, device and log data, usage events, and integration metadata.
Sources of data.
Data may come from the customer, authorized users, uploaded files, voice and chat input, Follow Up Boss, authorized email accounts with read-only authorization, builder source documents, website forms, demo requests, support interactions, and service telemetry.
Purposes.
Ridge uses data to provide the service, authenticate users, process voice memos and screenshots, maintain deal memory, verify builder data, generate and critique drafts, operate workflows, support FUB and email context, secure accounts, debug issues, measure funnel performance, evaluate quality, improve Ridge, enforce terms, comply with law, and communicate about the service.
AI and provider processing.
Ridge may send Customer Content to AI model providers such as OpenAI and Anthropic to classify, summarize, extract, draft, critique, and evaluate output. Ridge does not authorize providers to use Customer Content to train foundation models except where a customer expressly instructs or opts in under an applicable provider program.
Ridge-specific boundaries.
Ridge prepares draft messages for user review. Users edit and send externally. Ridge does not ingest FUB text logs, does not connect an SMS provider, and does not request Microsoft Graph Mail.Send, Mail.Send.Shared, or Mail.ReadWrite scopes. Email context is read-only when connected.
No sale of personal data.
Ridge does not sell personal data. Ridge does not use personal data for cross-context behavioral advertising. If Ridge changes that position, Ridge will update this Policy and provide any opt-out rights required by law before doing so.
Sharing and subprocessor categories.
Ridge may share data with vendors and subprocessors that help provide the service, including cloud hosting, database, storage, authentication, CRM and email integrations, AI model providers, transcription and OCR providers, observability, security, analytics, customer support, professional advisors, and payment or invoicing providers if enabled.
Cookies and funnel analytics.
Ridge may use cookies, local storage, server logs, and privacy-conscious analytics to operate the website, remember preferences, understand demo interest, attribute campaigns, protect against abuse, and improve conversion flows. Browser settings may limit some cookies.
Retention.
Ridge retains data for as long as needed to provide the service, maintain deal memory, comply with legal obligations, resolve disputes, enforce agreements, support security, and improve quality. Retention periods may vary by data type, customer agreement, pilot status, and integration configuration.
Security.
Ridge uses administrative, technical, and organizational safeguards designed for the sensitivity of the data, including tenant-scoped access controls, encrypted secret handling, logging, and review of draft-only invariants. No method of transmission or storage is perfectly secure.
State privacy rights.
Depending on your state and Ridge's legal obligations, you may have rights to access, delete, correct, or obtain a copy of personal data, and to opt out of sale, targeted advertising, or certain profiling. Ridge may verify requests and may direct business-user data requests through the customer account owner.
Utah privacy rights.
Where the Utah Consumer Privacy Act applies, Ridge's notice is intended to describe the categories of personal data processed, purposes of processing, how consumers may exercise rights, categories shared with third parties, and categories of third parties. Ridge does not sell personal data or engage in targeted advertising.
Utah AI disclosure logic.
Ridge identifies itself as an AI workflow product in the service and public materials. Customers are responsible for any consumer-facing AI disclosures required when they use Ridge output, including disclosures for regulated occupations or high-risk AI interactions under applicable Utah law.
Children.
Ridge is not directed to children and is not intended for use by anyone under 18. Customers may not intentionally submit children's personal data unless they have authority and the submission is lawful for the business purpose.
International transfers.
Ridge is operated from the United States. If data is accessed from outside the United States, it may be transferred to and processed in the United States or other locations where Ridge or its providers operate.
Customer-controlled third-party data.
Customers control which integrations are connected and what data they submit. Customers are responsible for having the rights, notices, consents, and authority required to provide FUB, email, screenshot, voice, buyer, agent, builder, and deal data to Ridge.
Changes.
Ridge may update this Policy as the product, law, providers, or data practices change. Material changes will be posted with a new effective date or communicated through reasonable notice.