Privacy Policy

Information You Provide to Us

• Account Information: Name, email address, phone number, and payment details when you create an account or make a purchase
• Property Data: Property addresses, MLS listings, photos, inspection reports, and other documents you upload for analysis
• Communications: Messages, feedback, and support requests you send to us
• Professional Information: Real estate license information, brokerage details, and business credentials (if provided)

Information Collected Automatically

• Usage Data: Pages visited, features used, time spent, and interaction patterns
• Device Information: IP address, browser type, operating system, and device identifiers
• Cookies and Tracking: We use cookies and similar technologies to improve your experience and analyze usage
• Analytics: Aggregated data about how our service is used to improve features and performance

We use the information we collect for the following purposes:

• Service Delivery: To generate AI-powered risk assessment reports and provide our core services
• Account Management: To create and maintain your account, process payments, and manage subscriptions
• AI Model Training: To improve our AI algorithms using anonymized and aggregated data (we never use your specific property data in ways that could identify you or your clients)
• Customer Support: To respond to your questions, troubleshoot issues, and provide assistance
• Security: To detect fraud, prevent abuse, and protect the security of our service
• Legal Compliance: To comply with applicable laws, regulations, and legal processes
• Communications: To send you service updates, security alerts, and (with your consent) marketing messages
• Analytics: To understand usage patterns and improve our features, user experience, and service quality

We use industry-standard security practices for data handling:

• Encryption: Data transmitted between your device and our servers uses SSL/TLS protocols
• Storage: Data is stored on servers with encryption at rest
• Access Controls: Access controls limit who can view or modify data
• Security Reviews: We conduct periodic security reviews and vulnerability assessments
• Payment Processing: Payment information is processed by PCI-DSS compliant third parties (Stripe/PayPal)
• Data Deletion: Reports and uploaded documents are deleted according to our retention policy unless you save them

We do not sell your personal information. We may share your information only in the following circumstances:

• Service Providers: With trusted third-party vendors who help us operate our service (e.g., hosting, payment processing, email delivery). These providers are contractually obligated to protect your data
• Legal Requirements: When required by law, court order, or government request
• Business Transfers: In connection with a merger, acquisition, or sale of assets (you will be notified of any such change)
• With Your Consent: When you explicitly authorize us to share your information
• Aggregated Data: We may share anonymized, aggregated data that cannot identify you for research, marketing, or analytics purposes

We never sell your data to third parties for marketing purposes.

Depending on your location, you may have the following rights regarding your personal information:

Montana Consumer Privacy Rights (SB 297/384)

• Right to know what personal information we collect and how we use it
• Right to access your personal information
• Right to correct inaccurate information
• Right to delete your personal information (with certain exceptions)
• Right to opt-out of the sale of your data (we don't sell data)

GDPR Rights (EU Users)

• Right to access, rectify, or erase your data
• Right to restrict or object to processing
• Right to data portability
• Right to withdraw consent at any time
• Right to lodge a complaint with a supervisory authority

CCPA Rights (California Users)

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information
• Right to opt-out of the sale of personal information
• Right to non-discrimination for exercising your rights

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

• Essential Cookies: Required for the service to function (login, security, preferences)
• Analytics Cookies: Help us understand how you use our service (Google Analytics, anonymized)
• Marketing Cookies: Track campaign effectiveness (only with your consent)

You can control cookies through your browser settings, but disabling essential cookies may affect service functionality.

7. Data Retention and Deletion

We retain your information only as long as necessary to provide services and comply with legal obligations:

• Uploaded Documents: Automatically deleted 30 days after report delivery. You can request early deletion via your dashboard or by contacting privacy@riskradar.rip
• Generated Reports: Stored in your account until you delete them or 90 days after account closure
• Account Data: Retained while your account is active. Upon account closure, personal data is deleted within 90 days (except where legal retention is required)
• Payment Information: Retained for tax and legal compliance (typically 7 years per IRS requirements)
• Analytics Data: Aggregated and anonymized data (no personally identifiable information) may be retained indefinitely for research and service improvement
• Backup Systems: Deleted data may persist in encrypted backups for up to 90 days before permanent deletion

Data Processing Location

Your data is primarily processed and stored in the United States (via AWS US-East-1 and US-West-2 regions). RiskMAX subscribers may request EU data residency for an additional fee. See our Trust & Security page for full details.

8. Children's Privacy

RiskRadar is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately at privacy@riskradar.rip.

9. Third-Party Links

Our service may contain links to third-party websites, services, or data sources (e.g., USDA maps, MLS listings, county records). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

10. International Data Transfers

RiskRadar is operated from the United States (Montana). If you access our service from outside the U.S., your information will be transferred to and processed in the United States. By using our service, you consent to this transfer. We implement appropriate safeguards to protect your data in accordance with this Privacy Policy and applicable laws.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending an email notification to your registered email address (for significant changes)
• Displaying a prominent notice on our website

Your continued use of the service after changes take effect constitutes acceptance of the updated Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: