RiderReady
SoftPatch

Legal

Privacy Policy

Last Updated: March 1, 2026 | Effective: v0.4.10.2

Overview

Introduction

RiderReady ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform. We are GDPR and CCPA compliant and respect your data rights.

Collection

Data We Collect

Account Information

  • Email address - Required for account creation and communication
  • Name - Optional, used for your profile display
  • Profile information - Display name, job title, years of experience, expertise (optional)
  • Location - Optional, used for geo-search features and local connections

Usage Analytics

  • Analytics data - We use PostHog (privacy-friendly analytics) to understand how you use our platform
  • Page views - Which pages you visit, how long you stay, navigation patterns
  • Search queries - What equipment and features you search for (to improve search results)
  • Device information - Browser type, operating system, screen resolution (for optimization)
  • Filter usage patterns - Anonymous, session-based tracking of filter interactions to improve search experience (no cookies, no personal identification)

Payment Information

  • Payment processing - Handled entirely by Stripe (we do NOT store credit card details on our servers)
  • Billing information - Name and address for invoicing purposes only

Content You Create

  • Reviews - Your equipment reviews, ratings, and feedback
  • Contributions - Equipment data edits, manufacturer information, GDTF files
  • Profile content - Bio, expertise categories, professional background

Location

SoftPatch Location Privacy

Your safety is our priority. When you list gear or studio space on SoftPatch, we automatically obscure your exact location on public maps.

  • Map Display - Your location is shown as an approximate area (city/neighborhood level), never your exact address
  • Random Offset - Pin locations are randomly offset within a safe radius to protect your privacy
  • No Street-Level Details - Other users cannot see your street address or building until you choose to share it directly
  • Contact First - Users must message you through the platform before any location details are exchanged
  • You Control Sharing - You decide when and with whom to share your precise location for pickups/deliveries

This protection applies to all SoftPatch listings including gear rentals, studio spaces, and service locations.

Trust

What We Don't Collect

  • Social security numbers - We never ask for or store SSNs
  • Credit card details - All payment processing is handled by Stripe PCI-compliant infrastructure
  • Unnecessary personal data - We only collect what's needed for platform functionality
  • Tracking pixels or third-party ads - We don't sell your data or use invasive tracking
  • Private messages content - We don't read or analyze your private communications (future feature)

How We Use Your Data

  • Platform functionality - To provide core features like search, comparison, reviews
  • Account management - To manage your account, authentication, and role permissions
  • Communication - To send important updates, notifications, and account-related emails
  • Analytics & improvement - To understand usage patterns and improve the platform
  • Moderation - To review flagged content, prevent spam, and maintain quality
  • Legal compliance - To comply with legal obligations and enforce our Terms of Service

Rights

Your Rights

GDPR/CCPA Compliant

Right to Access

You can view and download all your personal data at any time from your profile dashboard. We provide a "Download My Data" feature for complete transparency.

Right to Delete

You can delete your account and all associated data at any time through your profile settings. This is self-service and takes effect immediately. Note: Published reviews and contributions may be anonymized rather than deleted to maintain data integrity.

Right to Opt Out

You can opt out of marketing emails at any time via the unsubscribe link in any email. You can also disable analytics tracking through your browser settings.

Right to Portability

You can export your data in a machine-readable format (JSON) for transfer to another platform.

Right to Correction

You can update your profile information, email address, and preferences at any time through your profile settings.

Security

Data Security & Sharing

Security Measures

  • Encryption - All data is encrypted in transit (HTTPS/TLS) and at rest
  • Password security - Passwords are hashed using bcrypt (industry standard)
  • Supabase infrastructure - We use Supabase's secure, GDPR-compliant database infrastructure
  • Access controls - Strict role-based access control (RBAC) limits who can access data
  • Regular backups - Automated backups with encryption
  • Monitoring - Continuous security monitoring and error tracking (Sentry)

We DO NOT sell your personal information. Period.

Your email, name, profile data, and any personally identifiable information will NEVER be sold to third parties.

Anonymized Equipment & Review Data: We may sell or license aggregated, anonymized equipment specifications, review data, and usage statistics to manufacturers, vendors, or industry partners. This data contains NO personal information and cannot be traced back to individual users.

Example: "The Robe MegaPointe has an average rating of 4.5 stars from 120 reviews" - but NOT "John Smith gave it 4 stars."

Third-Party Services We Use

  • Supabase - Database and authentication (GDPR compliant)
  • Vercel - Hosting and infrastructure (GDPR compliant)
  • PostHog - Privacy-friendly analytics (GDPR compliant, EU hosting available)
  • Stripe - Payment processing (PCI-DSS compliant)
  • Sentry - Error monitoring (GDPR compliant)
  • Anthropic (Claude AI) - AI-powered specification extraction and search (data processed per Anthropic's privacy policy)
  • Resend - Email delivery for notifications and invitations

When We Share Data

  • Public profiles - Your display name, role, and badges are public if you choose to make your profile public
  • Reviews - Your reviews are public (unless submitted anonymously)
  • Anonymized data sales - Aggregated equipment/review data (no personal info)
  • Legal requirements - We may disclose data if required by law or to protect our rights
  • Service providers - Only as necessary to provide platform functionality (all under strict data processing agreements)

Cookies & Tracking

We use minimal cookies for essential functionality:

  • Authentication cookies - To keep you logged in (essential)
  • Preferences - To remember your settings like dark mode, units (metric/imperial)
  • Analytics - PostHog uses first-party cookies to track usage (can be disabled)

We do NOT use third-party advertising cookies or tracking pixels.

Policies

Additional Policies

Children's Privacy

RiderReady is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected data from a child under 18, we will delete it immediately.

Data Retention

  • Active accounts - Data retained while your account is active
  • Deleted accounts - Personal data deleted within 30 days of account deletion
  • Reviews & contributions - May be anonymized and retained for platform integrity
  • Logs & analytics - Aggregated data retained for up to 2 years for analysis
  • Legal holds - Data retained longer if required by law or ongoing legal matters

International Users

RiderReady is based in the United States. If you access our platform from outside the US, your data may be transferred to and processed in the US. We comply with GDPR for EU users and provide the same privacy protections to all users globally.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or a prominent notice on our platform. The "Last Updated" date at the top of this policy indicates when it was last revised.

Contact Us

If you have questions about this Privacy Policy or want to exercise your data rights, please contact us:

Summary

TL;DR

  • We collect only essential data for platform functionality
  • We DO NOT sell your personal information (email, name, profile data)
  • We may sell anonymized equipment/review data (no personal info)
  • You can access, download, and delete your data anytime
  • We use privacy-friendly analytics (PostHog, GDPR compliant)
  • All data is encrypted and securely stored
  • You can opt out of marketing emails anytime
  • We comply with GDPR and CCPA regulations
  • We're transparent about what data we collect and why

Questions about your data?

We're committed to transparency. Reach out anytime.

Contact UsTerms of Service
Help