Privacy Policy
Radpilot Inc. ("Radpilot," "we," "us," or "our") operates the Radpilot website and desktop application (the "Services"). We're committed to protecting your personal data and helping you understand how we collect, use, and share it. By using our Services, you agree to this Privacy Policy.
1. Information We Collect
Personal Identifiers
Name, email address, display name
Organization/org membership identifiers
Usage & Technical Data
IP address, device identifiers, browser type, operating system
Cookies and local storage
Metadata & Logs
Access logs, audit traces, timestamps, feature-usage logs, crash reports, performance metrics
2. How We Collect Data
Directly from You:
Account sign-up and profile updates (via Clerk)
Automatically:
Cookies and tracking scripts (see Section 5)
Access logs and audit traces generated during use of the application
From Third Parties:
Clerk (authentication and identity)
Google Cloud Platform (hosting and infrastructure)
Anthropic (LLM processing, under BAA + ZDR)
3. Why We Use Your Data
We use your personal data for:
Provide & maintain the Services
Authenticate & secure user accounts (fraud prevention and account integrity)
Product improvement (diagnose issues, improve features via audit logs and access traces)
4. Sharing & Disclosure
We do not sell your personal data. We share it only with:
Service Providers & Subprocessors:
Clerk (authentication and identity management)
Google Cloud Platform (hosting and infrastructure)
Anthropic (LLM processing, under BAA and zero data retention agreement)
Legal & Safety:
To comply with legal obligations, enforce our Terms, or protect Radpilot’s rights.
Business Transfers:
In connection with a merger, acquisition, or sale of assets (with notice).
5. Cookies & Tracking Technologies
We use essential cookies for login, security, and basic functionality. We do not use analytics cookies, session replay, or third-party tracking. If you disable cookies in your browser, some features may not function correctly.
6. Children's Privacy
Our Services are intended for workplace use and not directed to children under 13.
We do not implement age verification. If we learn that we’ve collected personal data from a child under 13, we will delete it immediately.
We do not obtain parental consent under COPPA, as we do not target children.
7. Your Rights & Choices
You can exercise the following rights by emailing legal@radpilot.io:
Access a copy of your personal data
Delete your personal data (subject to legal exceptions)
Correct or update inaccurate data
Withdraw consent for marketing emails (via the unsubscribe link in each email)
We honor all valid requests.
8. Data Security
We employ industry-standard measures to protect your data, including:
Encryption (TLS in transit; AES-256 at rest)
Secure servers and network controls (hosted in U.S. data centers)
Access controls, logging, and regular security audits
9. Data Retention & Transfers
Retention:
We retain personal data for as long as your account is active plus 12 months of inactivity, unless law requires otherwise.
Transfers:
All data is stored and processed in the U.S. We do not transfer data internationally.
10. Changes to This Policy
We may update this Policy as our Services or legal requirements change. We’ll revise the “Last Updated” date and, if the changes are material, notify you by email or in-app notice.
Legal
This policy does not grant rights to act against applicable laws or contracts. Your testing must respect all legal and regulatory requirements. By submitting a report you agree that Radpilot may use the information to remediate the vulnerability and to contact you about your report.
Unanswered Questions?
Please don’t hesitate to reach out to us at legal@radpilot.io with any questions you have about the information contained on this page. We do not maintain a physical mailing address. Reach us anytime via email for questions or to exercise your privacy rights.
