Skip to content
RidgeAI
The Pipeline Proof Pricing Comparison Transparency
Sign in →
Privacy

Privacy Policy

Effective May 31, 2026 Last updated May 31, 2026

RidgeAI helps roofing contractors recover the line items carriers miss. To do that we handle account data, billing data, and the claim documents you upload. This page explains exactly what we collect, why, who we share it with, and the controls you have. No dark patterns.

Plain-language summary. We collect what we need to run your account, process your supplements, and bill you. We send your claim documents to our AI provider only to generate your output. We never sell your data. We don't use your private claim documents to train third-party AI models. You can export or delete your data by emailing us.

Contents
  1. Who we are
  2. What we collect
  3. Your claim documents
  4. How we use it
  5. AI processing
  6. Who we share with
  7. Subprocessors
  8. Cookies & analytics
  9. Retention
  10. Security
  11. Your rights
  12. Children
  13. Changes
  14. Contact

01 Who we are

RidgeAI ("RidgeAI," "we," "us," or "our") is a software service operated by POCO LLC, 8409 Racine Trl, Austin, TX 78717. We provide an AI-assisted platform that helps roofing and storm-restoration contractors build insurance supplements, denial responses, reinspection requests, and related documents.

This Privacy Policy applies to the RidgeAI website at ridgeai.org and the RidgeAI application (together, the "Service"). It works alongside our Terms of Service.

02 What we collect

Information you give us

  • Account data — your email address and password (or a Google sign-in token if you use Google OAuth).
  • Business profile — company name, phone number, contractor license number, company address, and operating region.
  • Integration credentials — if you connect third-party tools, the API keys you provide (for example, AccuLynx or CompanyCam). These are used only to connect those services on your behalf.
  • Claim documents — the PDFs and files you upload (carrier estimates, scopes, photos, denial letters, and similar). See Section 03.
  • Communications — messages you send to support or sales.

Information we collect automatically

  • Usage data — pages viewed, features used, and actions taken in the Service.
  • Device & log data — IP address, browser type, and timestamps, captured in standard server logs.
  • Cookies & analytics — see Section 08.

Information we collect from others

  • Payment data — when you subscribe, our payment processor (Stripe) collects and processes your card details. We never see or store full card numbers; we receive only billing status, the last four digits, and subscription metadata.
  • Authentication data — if you sign in with Google, we receive your basic profile and email from Google.

03 Your claim documents

The documents you upload may contain information about third parties — most often the homeowner or insured, the property address, the claim number, and damage details. We treat this material with care.

You are the controller of this data; we are the processor. You upload claim documents to get a work product back, and you are responsible for having the right to share that information with us — including any consent required from the homeowner or policyholder. We process those documents only to provide the Service to you (generating supplements, denial responses, and related output) and to improve the Service as described in this policy.

Uploaded files are held in memory for processing and stored in our database so you can revisit and edit your work. We do not sell this data, and we do not share it for anyone else's advertising.

04 How we use your information

  • To provide, operate, and maintain the Service.
  • To generate the supplements and documents you request.
  • To authenticate you and keep your account secure.
  • To process subscriptions, usage, and overage billing.
  • To improve our product, including refining the prompts and AI workflows that power the Service. When a contractor edits AI output, we capture the difference between the original and edited text as an internal quality signal (a "correction").
  • To provide support and respond to your requests.
  • To detect, prevent, and address fraud, abuse, and security issues.
  • To comply with legal obligations.

We rely on the performance of our contract with you, your consent (where required), and our legitimate interest in running and improving a secure, useful product as the legal bases for these uses.

05 AI processing

To generate your output, we send the relevant contents of your claim documents and prompts to our third-party AI provider (Anthropic, the maker of Claude). They process that content to return a result to us, which we return to you.

We do not permit our AI provider to use your claim content to train their general models. We use enterprise/API access where customer inputs and outputs are not used for model training by the provider. We may use de-identified internal correction signals (described in Section 04) to improve our own prompts and workflows.

AI output can be wrong or incomplete. RidgeAI is a drafting tool, not legal, insurance, or professional advice — you are responsible for reviewing every document before you rely on or submit it. See our Terms of Service.

06 Who we share information with

We share your information only in these situations:

  • Service providers (subprocessors) who run parts of our infrastructure on our behalf, listed in Section 07.
  • At your direction — for example, with integrations you connect.
  • Legal & safety — when required by law, subpoena, or to protect the rights, safety, and security of RidgeAI, our users, or the public.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this policy.

We do not sell your personal information, and we do not share it for cross-context behavioral advertising.

07 Subprocessors

We rely on the following providers to deliver the Service. Each is bound by contractual confidentiality and security obligations.

ProviderPurpose
SupabaseAuthentication and primary database (account, profile, and document storage)
AnthropicAI model processing (Claude) to generate your documents
StripeSubscription and payment processing
RailwayApplication hosting
GoogleOptional sign-in (OAuth)
PostHogProduct analytics
OpenAIText embeddings used to score document quality and surface similar past claims
TwilioSMS delivery for phone sign-in (one-time login links)
ResendTransactional and account email (trial, billing, and notifications)

This list may change as our infrastructure evolves; we will keep it current here.

08 Cookies & analytics

We use cookies and similar technologies for two purposes: essential cookies that keep you signed in and the Service working, and analytics cookies that help us understand how the product is used so we can improve it.

We use PostHog for product analytics, and our marketing pages may use Google Analytics and a Meta (Facebook) pixel to measure ad performance. You can control cookies through your browser settings; disabling non-essential cookies will not break the core Service. We honor "Do Not Track" signals where legally required.

09 Data retention

We keep your account and document data for as long as your account is active so you can return to your work. If you close your account or ask us to delete your data, we will delete or de-identify it within a reasonable period, except where we must retain certain records to comply with legal, tax, or accounting obligations or to resolve disputes. Backups are purged on a rolling schedule.

10 Security

We protect your data with encryption in transit, access controls, scoped database queries tied to your account, rate limiting on authentication, and secure session cookies. No system is perfectly secure, but we work to hold a high bar and to notify you and the appropriate authorities if a breach affecting your data occurs, as required by law.

11 Your rights

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate information.
  • Delete your information ("right to be forgotten").
  • Export your information in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent where processing is based on consent.

To exercise any of these, email privacy@ridgeai.org. We will verify your request and respond within the timeframe required by applicable law. You will not be discriminated against for exercising your rights. If you are in the EEA/UK, you may also lodge a complaint with your local data protection authority.

12 Children

The Service is a business tool intended for users 18 and older. We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.

13 Changes to this policy

We may update this Privacy Policy as the Service evolves. When we make material changes, we will update the "Last updated" date above and, where appropriate, notify you in the app or by email. Your continued use of the Service after an update means you accept the revised policy.

14 Contact us

Questions about your privacy or this policy? Email privacy@ridgeai.org or write to us at POCO LLC, 8409 Racine Trl, Austin, TX 78717.

© 2026 RidgeAI · Built for crews, not boardrooms
Home Terms Contact Sign in