Privacy Policy

1. Introduction

This Privacy Policy describes how RiderLabs LLC ("Company," "we," "us," or "our") collects, uses, shares, and protects information in connection with the InBlack platform and related services (collectively, the "Service"). RiderLabs LLC is a limited liability company organized under the laws of the State of Wyoming with operations in Colorado.

By using the Service, you consent to the practices described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

When you create an account, we collect your name, email address, and any other information you provide during registration. When you subscribe to a paid plan, we collect billing information through our payment processor (Stripe). We do not store your full credit card number on our servers.

2.2 Business Data from Integrations

When you connect third-party accounts, we collect business data from those services to provide the Service. This includes: transaction data from payment processors (Stripe, PayPal, Square, Shopify Payments); bank account transaction data via Plaid; product, order, and inventory data from commerce platforms (Shopify, Amazon, Etsy, eBay, Magento); and other business data you choose to import via CSV or API.

We access this data using OAuth tokens and official API integrations. We do not store your third-party account passwords.

2.3 Bank Account Data via Plaid

We use Plaid Inc. to connect your bank accounts to the Service. When you link a bank account through Plaid, you authorize Plaid to access your bank account information on our behalf. Plaid's use of your data is governed by the Plaid Privacy Policy. We receive transaction data, account balances, and account identifiers from Plaid. We do not receive or store your bank login credentials.

2.4 Automatically Collected Information

When you use the Service, we automatically collect certain information, including: your IP address; browser type and version; operating system; referring URL; pages viewed and features used within the Service; date and time of access; and device identifiers. We collect this information using cookies, server logs, and similar technologies.

3. How We Use Your Information

We use the information we collect to: provide, maintain, and improve the Service; generate AI-powered insights, journal entries, financial statements, storefronts, and other outputs; process transactions and send related information; send you technical notices, updates, security alerts, and administrative messages; respond to your inquiries and provide customer support; monitor and analyze usage trends and preferences; detect, investigate, and prevent fraudulent transactions and other illegal activities; and comply with legal obligations.

4. AI Processing

The Service uses artificial intelligence models provided by third-party AI providers to process your business data and generate outputs such as journal entries, financial insights, product descriptions, and storefront designs. When we send your data to AI model providers for processing, we do so under data processing agreements that prohibit those providers from using your data to train their models or for any purpose other than providing the requested output.

We may use aggregated, anonymized data (from which individual users or businesses cannot be identified) to improve the Service and our AI capabilities.

5. How We Share Your Information

We do not sell your personal information or business data to third parties. We may share your information with the following categories of recipients:

5.1 Service Providers

We share information with third-party service providers who perform services on our behalf, including cloud hosting (Google Cloud Platform), payment processing (Stripe), authentication (ZITADEL), bank connectivity (Plaid), AI model providers, email delivery, and analytics. These providers are contractually obligated to use your information only as necessary to provide their services to us.

5.2 Legal Requirements

We may disclose your information if required to do so by law, regulation, legal process, or governmental request, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

5.3 Business Transfers

If RiderLabs LLC is involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

5.4 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

6. Data Storage and Security

Your data is stored on Google Cloud Platform infrastructure in the United States. We use PostgreSQL databases with row-level security to ensure that your data is isolated from other users and organizations.

We implement appropriate technical and organizational security measures to protect your information, including: encryption of data in transit (TLS) and at rest; row-level security policies on all database tables; OAuth-based authentication for third-party integrations (we never store your third-party passwords); regular security reviews; and access controls limiting employee access to your data.

While we take reasonable measures to protect your information, no method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee absolute security.

7. Data Retention

We retain your account information and business data for as long as your account is active or as needed to provide the Service. If you terminate your account, we will make your data available for export for 30 days following termination. After this period, we will delete your data from our active systems within 90 days, unless we are required by law to retain it for a longer period.

Anonymized and aggregated data that cannot be used to identify you or your business may be retained indefinitely for analytics and product improvement purposes.

8. Your Rights and Choices

8.1 Access and Export

You may access and export your business data at any time through the Service's export functionality or by contacting us.

8.2 Correction

You may update or correct your account information at any time through your account settings.

8.3 Deletion

You may request deletion of your account and associated data by contacting us at hello@getinblack.com. We will process your request within 30 days, subject to any legal obligations that require us to retain certain data.

8.4 Disconnect Integrations

You may disconnect any third-party integration at any time through your account settings. Disconnecting an integration will stop the Service from accessing new data from that provider but will not automatically delete data previously imported.

8.5 Communication Preferences

You may opt out of non-essential communications from us by following the unsubscribe instructions in our emails or by contacting us. You cannot opt out of Service-related communications (such as security alerts and billing notices).

9. California Privacy Rights

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect about you, the right to request deletion of your personal information, and the right to opt out of the sale of your personal information. As noted above, we do not sell personal information.

To exercise your rights under the CCPA, please contact us at hello@getinblack.com. We will verify your identity before processing your request and will respond within 45 days.

10. International Users

The Service is operated from the United States. If you access the Service from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using the Service, you consent to the transfer of your information to the United States.

11. Cookies and Tracking Technologies

We use cookies and similar technologies to maintain your session, remember your preferences, and understand how you use the Service. We use essential cookies required for the Service to function and may use analytics cookies to help us improve the Service. We do not use third-party advertising cookies.

You can control cookies through your browser settings. Disabling essential cookies may prevent certain features of the Service from functioning properly.

12. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice through the Service or by email at least 30 days before the changes take effect. Your continued use of the Service after the effective date of the revised Privacy Policy constitutes acceptance of the changes. We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at: