Privacy Policy

Last Updated: January 21, 2026

1. Introduction

Welcome to Rithim ("we," "us," or "our"). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you use our sales automation platform and related services (collectively, the "Service").

Rithim is an operating system for sales that automates administrative tasks by integrating with your calendar and meeting platforms. By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and authentication credentials provided during registration.
  • Contact Form Data: Name, email address, and message content when you contact us through our website.
  • Workspace Training Data: Information about your products, ideal customer profile, sales methodology, differentiation, objections, and communication preferences that you provide to train the AI.

2.2 Data from Third-Party Integrations

When you connect third-party services to Rithim, we collect and process:

  • Calendar Data (Google Calendar): Event details including titles, descriptions, locations, start and end times, attendees, meeting links, recurrence patterns, and organizer information.
  • Meeting Data: Meeting transcripts and metadata from Google Meet; transcripts, recordings, and metadata from Zoom, Fathom, and Gong.
  • OAuth Tokens: Access tokens, refresh tokens, and related authentication data necessary to maintain connections with third-party services.

2.3 CRM and Contact Data

  • Accounts: Company names, domains, status information, and associated metadata.
  • Contacts: Names, email addresses, job titles, employment history, and company affiliations.
  • Relationships: Information about connections between contacts and accounts, including employment dates and sources.

2.4 AI-Generated Content

  • Chat History: Conversations with our AI assistant, including your questions and the AI's responses.
  • Artifacts: AI-generated documents, drafts, and other content created through the platform, including version history.

2.5 Automatically Collected Information

  • Usage Data: Information about how you interact with our Service, including features used and time spent.
  • Device Information: Browser type, operating system, IP address, and device identifiers.
  • Sync Information: Timestamps, sync status, and error logs related to third-party integrations.

3. How We Use Your Information

We use the information we collect to:

  • Provide and Improve the Service: Automate sales tasks, generate insights, provide AI-powered recommendations, and enhance platform functionality.
  • Process Communications: Analyze calendar events and meetings to identify follow-up tasks, deal risks, and engagement opportunities.
  • Personalize Your Experience: Use your workspace configuration to tailor the Service to your specific business context, products, and communication preferences.
  • Maintain Integrations: Sync data from connected services and maintain OAuth connections.
  • Customer Support: Respond to inquiries, troubleshoot issues, and provide technical assistance.
  • Analytics and Research: Understand usage patterns and develop new features to enhance the Service.
  • Security: Detect, prevent, and address technical issues, fraud, and security vulnerabilities.
  • Legal Compliance: Comply with applicable laws, regulations, and legal processes.

4. How We Share Your Information

We do not sell your personal information. We may share your information with:

4.1 Service Providers

We share data with third-party vendors who perform services on our behalf, including:

  • Clerk: Authentication and identity management.
  • Cloud Infrastructure: Hosting and data storage providers (e.g., Vercel, database hosting).
  • AI Services: Large language model providers to power AI features within the Service. These providers process data solely to generate responses and do not use your data to train their models.

4.2 Connected Services

When you authorize integrations with third-party services (Google Calendar, Zoom, etc.), we access and process data from those services according to your authorization and their respective privacy policies.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to:

  • Subpoenas, court orders, or other legal processes.
  • Requests from government authorities.
  • Protection of our legal rights, property, or safety, or that of others.

4.4 Business Transfers

If Rithim is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and the choices you may have regarding your information.

4.5 Google User Data

Rithim's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only use Google user data to provide and improve user-facing features of the Service.
  • We do not use Google user data for advertising purposes, including retargeting, personalized advertising, or interest-based advertising.
  • We do not sell Google user data to third parties.
  • We do not use Google user data to build user profiles for advertising or to supplement data from other sources for advertising purposes.
  • We do not use Google user data to train AI or machine learning models outside of providing the Service to you.
  • We do not transfer Google user data to data brokers or information resellers.
  • We do not use Google user data for determining creditworthiness or for lending purposes.

Google user data is only shared with service providers as necessary to provide the Service, and these providers are contractually prohibited from using your data for any purpose other than providing services to us.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest.
  • Secure OAuth token storage and management.
  • Access controls and authentication requirements.
  • Regular security assessments and updates.

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee its absolute security.

6. Data Retention

We retain your personal information for as long as necessary to provide the Service and fulfill the purposes outlined in this privacy policy, unless a longer retention period is required or permitted by law.

  • Active Accounts: Data is retained while your account is active and for a reasonable period after account closure to comply with legal obligations.
  • Integration Data: Calendar and meeting data synced from third-party services is retained until you disconnect the integration or delete your account.
  • Backups: Data may persist in backups for a limited time after deletion.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

7.1 Access and Portability

You have the right to request access to the personal information we hold about you and receive a copy in a portable format.

7.2 Correction

You can update or correct your account information through the platform settings or by contacting us.

7.3 Deletion

You can request deletion of your personal information. Note that we may retain certain information as required by law or for legitimate business purposes.

7.4 Withdraw Consent

You can disconnect third-party integrations at any time through your account settings. This will stop further data collection from those services.

7.5 Opt-Out of Communications

You can opt out of marketing communications by following the unsubscribe instructions in our emails or contacting us directly.

To exercise any of these rights, please contact us at team@higherlevels.com.

8. Third-Party Services

Our Service integrates with third-party platforms (Google Calendar, Google Meet, Zoom, Fathom, Gong). These services have their own privacy policies, and we encourage you to review them:

We are not responsible for the privacy practices of these third-party services.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We take steps to ensure that your data receives an adequate level of protection wherever it is processed.

10. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to delete such information.

11. Changes to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last Updated" date. We encourage you to review this privacy policy periodically for any changes.

Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this privacy policy or our data practices, please contact us:

13. California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, shared, or sold.
  • Right to delete personal information held by us.
  • Right to opt-out of the sale of personal information (we do not sell personal information).
  • Right to non-discrimination for exercising your CCPA rights.

To exercise these rights, please contact us at team@higherlevels.com.

14. European Economic Area (EEA) Rights

If you are located in the EEA, you have rights under the General Data Protection Regulation (GDPR), including:

  • Right of access to your personal data.
  • Right to rectification of inaccurate personal data.
  • Right to erasure ("right to be forgotten").
  • Right to restriction of processing.
  • Right to data portability.
  • Right to object to processing.
  • Right to lodge a complaint with a supervisory authority.

Our legal basis for processing your personal information includes:

  • Contract: Processing necessary to provide the Service.
  • Consent: You have given clear consent for specific processing activities (e.g., connecting third-party integrations).
  • Legitimate Interests: Processing necessary for our legitimate business interests, provided these interests do not override your rights.
Rithim Logo

The operating system for sales that eliminates your busywork.

Product

The ProblemThe SolutionUse Cases

Company

Join the waitlistContact

Legal

Privacy PolicyTerms of Service

© 2026 Rithim. All rights reserved.