RIAX Privacy Policy
Last Updated: March 25, 2026
Node AI Inc., doing business as RIAX ("RIAX," "we," "us," or "our"), is committed to protecting the privacy and security of our users' information. This Privacy Policy describes how we collect, use, share, and protect information when you use our AI-powered intelligence platform and services.
1. Information We Collect
Information You Provide
- Account Information: Name, email address, company name, and contact details when you register
- Meeting Data: Meeting recordings, transcripts, and notes from integrated platforms (Zoom, Microsoft Teams)
- Integration Credentials: OAuth tokens and API keys for connected services (with your explicit consent)
Information Collected Automatically
- Usage Data: Features used, meeting durations, platform interactions
- Log Data: IP addresses, browser type, access times, and referring pages
- Device Information: Operating system, device type, and unique device identifiers
2. How We Use Your Information
We use collected information to:
- Provide and improve our AI meeting intelligence, client health scoring, task management, and calendar hub services
- Generate meeting summaries, behavioral classifications, compliance flags, and action items
- Calculate and update client health scores across engagement, compliance, and service quality metrics
- Unify calendar data from multiple sources and surface scheduling intelligence
- Integrate with your authorized third-party services (Redtail CRM, Wealthbox, Salesforce, Orion, Black Diamond, etc.)
- Ensure platform security and prevent fraud
- Comply with legal obligations and regulatory requirements
- Communicate with you about service updates and support
3. Information Sharing
We do not sell, rent, or trade your personal information. We may share information:
- With Your Consent: When you explicitly authorize sharing with integrated services
- Service Providers: With vendors who assist in operating our platform (hosting, analytics)
- Legal Requirements: When required by law, regulation, or legal process
- Business Transfers: In connection with a merger, acquisition, or sale of assets
4. Data Security
We implement industry-standard security measures including:
- Encryption in transit (TLS 1.3) and at rest (AES-256)
- Multi-tenant data isolation via acts_as_tenant — no firm can access another firm's data
- Access controls and authentication mechanisms
- Regular security assessments and monitoring
- Secure US-based data centers (AWS) with physical security controls
5. Data Retention
- Meeting Data: Retained according to your configured retention policy (default: 7 years for SEC compliance)
- Account Data: Retained for the duration of your account plus 90 days after closure
- Usage Logs: Retained for 12 months for security and troubleshooting
6. Your Rights and Choices
You have the right to:
- Access, correct, or delete your personal information
- Export your data in a portable format
- Opt-out of non-essential communications
- Configure data retention settings
- Revoke integration permissions at any time
7. AI and Machine Learning
Important: We do NOT use your meeting data, transcripts, client health scores, or any client information to train our AI models. Your data is processed only to provide services to you and is never used to improve our general AI capabilities.
8. Google API Services User Data
Google API Services Disclosure: RIAX's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
- RIAX accesses Google Calendar data (calendar events, event times, attendee information) solely to provide the Unified Calendar Hub feature, including displaying events from multiple sources and detecting scheduling conflicts.
- Google user data is not used for advertising, marketing, or any purpose unrelated to providing or improving the calendar integration functionality.
- Google user data is not shared with third parties except as necessary to provide the core calendar service.
- Google Calendar data is not sent to any AI model or machine learning service. Our AI processing is limited to meeting transcripts obtained through a separate integration and does not involve Google user data.
- Users can revoke Google Calendar access at any time through their RIAX integration settings or their Google Account permissions page.
9. Compliance
RIAX is designed to support compliance with:
- SEC recordkeeping requirements (Rule 204-2)
- FINRA regulations
- GDPR (for EU users)
- CCPA (for California residents)
- SOC 2 Type 1 (completed)
10. Children's Privacy
Our services are not directed to individuals under 18. We do not knowingly collect information from children.
11. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes via email or platform notification.
12. Contact Us
For privacy-related questions or concerns:
Node AI Inc. (dba RIAX)
Email:
Address: Troy, Michigan 48098
Data protection inquiries: