Privacy Policy

Last updated: February 14, 2026

Reta AI, Inc. ("Reta," "we," "us," or "our") operates the Reta platform at app.retafinance.com and the website at retafinance.com (collectively, the "Service"). This Privacy Policy describes how we collect, use, disclose, and protect your information when you use our Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

Name and email address
Company or firm name
Password (stored in hashed form)

1.2 Google User Data

If you connect your Google account, we may access the following data based on the permissions you grant:

Google Calendar: Calendar events, meeting times, attendees, and meeting details to generate meeting prep packs and schedule follow-ups.
Gmail: Email metadata and content necessary to draft and send follow-up emails on your behalf, and to surface relevant prior correspondence in meeting briefs.
Google Profile: Basic profile information (name, email, profile picture) for account creation and identification.

We only request the minimum scopes necessary to provide our Service. You can review and revoke access at any time through your Google Account permissions.

1.3 CRM and Integration Data

When you connect third-party tools (e.g., Salesforce, Redtail, Wealthbox), we access client records, meeting notes, tasks, and related data necessary to provide meeting preparation, documentation, and follow-up features.

1.4 Meeting Data

We process meeting transcripts, notes, and recordings that you provide to generate structured meeting documentation, action items, and follow-ups.

1.5 Usage Data

We automatically collect standard usage information such as IP address, browser type, device information, pages visited, and feature usage patterns to improve our Service.

2. How We Use Your Information

We use the information we collect to:

Provide, maintain, and improve the Service
Generate meeting prep packs, structured notes, CRM updates, and follow-up drafts
Authenticate your identity and manage your account
Send transactional emails (account confirmations, security alerts)
Respond to support requests
Analyze usage patterns to improve the product
Comply with legal obligations

3. How We Use Google User Data

Our use of Google user data is limited to the practices explicitly described in this Privacy Policy. Specifically:

We use Google Calendar data solely to prepare meeting briefs and manage meeting-related workflows.
We use Gmail data solely to draft follow-up emails for your review and to surface relevant context in meeting preparation.
We do not use Google user data for advertising purposes.
We do not sell Google user data to third parties.
We do not use Google user data to train AI or machine learning models.

Our use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

Service Providers: We share data with third-party vendors who help us operate the Service (e.g., cloud hosting, analytics). These providers are contractually bound to protect your data and use it only for the purposes we specify.
At Your Direction: When you instruct us to send data to a connected integration (e.g., updating your CRM), we transmit data to that service on your behalf.
Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Security

We implement industry-standard security measures to protect your data:

Encryption in transit (TLS 1.2+) and at rest (AES-256)
SOC 2 Type II certified security controls
Role-based access controls
Regular security assessments and monitoring
Secure cloud infrastructure with leading providers

6. Data Retention and Deletion

We retain your data for as long as your account is active or as needed to provide the Service. You may:

Export your data at any time in standard formats
Delete your account and all associated data by contacting us
Configure retention policies within the application

Upon account deletion, we will remove your data within 30 days, except where retention is required by law.

7. AI and Machine Learning

Reta uses AI to generate meeting notes, action items, and follow-up drafts. Important points:

We do not train AI models on your data.
AI-generated outputs are always presented for your review before any action is taken.
We use third-party AI providers under strict data processing agreements that prohibit them from using your data for model training.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

Access the personal information we hold about you
Correct inaccurate personal information
Delete your personal information
Object to or restrict processing of your data
Data portability (export your data)
Withdraw consent at any time

To exercise any of these rights, contact us at privacy@retafinance.com.

9. Cookies

We use essential cookies to maintain your session and preferences. We may use analytics cookies to understand how the Service is used. You can control cookie preferences through your browser settings.

10. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service. Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Reta AI, Inc.
Email: privacy@retafinance.com