Last Updated: September 1st, 2025,

At REACH.ai LLC and our subsidiaries (“REACH.ai”), we respect your privacy and are committed to maintaining your trust. This privacy policy (“Privacy Policy”) applies to visitors of our sites and users of the REACH.ai Services. 

This Privacy Policy describes our practices and your rights in connection with information that we collect, use, or disclose through: 

• Our consumer-facing mobile application (“REACH.ai”), 
• Our consumer-facing website (“getreach.ai”), 
• Our online business management software products (“Software Service”), 

• Our social media pages 
• HTML-formatted email messages that we send to you that link to this Privacy Policy, and any other products and services offered through any other venues, websites and mobile applications that direct you to this Privacy Policy 
• Collectively the “REACH.ai Services” 

When you access or use the REACH.ai Services, you agree to the terms and conditions of this Privacy Policy and that the information contained in this Privacy Policy serves as notice at or before the point of collection for all information collected as described below.

1. Introduction

REACH.ai Software LLC (“REACH.ai,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your Personal Information.
This Privacy Policy explains how we collect, use, disclose, and safeguard information when you:

• Visit our websites, apps, or other digital properties
• Use our software products and services (“Services”)
• Interact with us in any other way (support, marketing, recruiting, etc.)

By using our Services, you consent to the practices described here. If you do not agree, please discontinue use of our Services.

2. Key Definitions

• Personal Information: Data that identifies or can reasonably identify you or your household.
• Other Information: Aggregated or de-identified data that cannot reasonably identify you.
• Subscriber / Customer: A business or organization that subscribes to or purchases our Services.
• End User / Visitor: An individual who uses or interacts with our Services, including through a Subscriber’s platform.

3. Information We Collect

We collect the following categories of information:

• Contact & Identity Data – name, email, postal address, phone number, company name, job title.
• Account Data – login credentials, preferences, profile details.
• Transactional & Payment Data – billing details, purchase history, payment method (processed by secure third parties).
• Device & Usage Data – IP address, browser type, operating system, app logs, crash reports, analytics.
• Geolocation Data – precise or approximate location (when enabled).
• Sensitive Information – only where strictly necessary or with consent (e.g., government ID if required).
• Other Information – any content you voluntarily provide, such as survey responses or support requests.
• Employment/Recruiting Data – for job applicants or employees (see Section 19.5).

We may also receive information from third parties (partners, analytics providers, marketing affiliates, public databases, and social platforms when you connect an account).

4. How We Use Your Information

• Deliver, maintain, and improve the Services
• Authenticate users and manage accounts
• Process payments and fulfill transactions
• Provide customer support
• Send administrative messages, security alerts, and updates
• Personalize content and marketing (with consent where required)
• Conduct analytics, research, and product development
• Detect, investigate, and prevent fraud or security incidents
• Comply with legal obligations

Legal bases include your consent, contractual necessity, our legitimate interests, and legal compliance.

5. Automated Decision-Making & Artificial Intelligence

We may use AI and machine-learning models for features such as recommendations, content analysis, or predictive analytics.
If automated processing produces legal or similarly significant effects, you have the right to request human review and to contest decisions, where required by law.

6. Data Protection Impact Assessments (DPIA) & Risk Management

We conduct regular privacy and security risk assessments, including DPIAs for high-risk processing, and maintain records of processing activities to demonstrate accountability.

7. Data Sharing & Disclosures

We share Personal Information only as needed:

• Service Providers / Sub-processors (cloud hosting, payment processors, analytics, email services) under strict contractual obligations
• Business Transfers – if we are involved in a merger, acquisition, or sale of assets
• Legal / Regulatory Requests – to comply with law, enforce agreements, or protect rights and safety
• With Your Consent – for any other disclosures

We do not sell Personal Information as defined by U.S. state privacy laws.

8. Cookies & Tracking

We and our partners use cookies, pixels, and similar technologies for functionality, analytics, and advertising.
You can manage preferences via browser settings or our on-site cookie banner.
Some essential cookies are required for basic site functionality.

9. Data Retention

We retain Personal Information only as long as needed for the purposes described, or as required by law, then securely delete or anonymize it.

10. International Data Transfers

Your data may be processed in countries other than where you reside.
We use Standard Contractual Clauses and other lawful mechanisms to protect data when transferred internationally.

11. Security

We use administrative, technical, and organizational safeguards to protect your data.
However, no system is perfectly secure.
If a breach occurs that risks your rights or freedoms, we will notify you and regulators without undue delay as required by law.

12. Your Privacy Rights

Depending on your jurisdiction, you may have rights to:

• Access, correct, or delete Personal Information
• Object to or restrict processing
• Data portability in a machine-readable format (e.g., JSON or CSV)
• Withdraw consent where processing is based on consent
• Opt-out of profiling or targeted advertising (see Section 19.3 for region-specific details)

To exercise these rights, email legal@getreach.ai.
We will verify your identity before responding.

13. Children’s Privacy

Our Services are not directed to children under 16 (or the age required by local law).
We do not knowingly collect data from such children.
If we discover such collection, we will delete the data promptly.

14. Public Forums & Testimonials

Information you post publicly (forums, reviews, social media) may be read, collected, and used by others.
You may request removal, though complete removal may not be possible.

15. Data Localization & Regional Hosting

Certain enterprise customers may request that data be stored within specific geographic regions.
We offer regional hosting options subject to contractual agreement.

16. Environmental & Ethical Data Practices

We strive to operate our infrastructure in an environmentally responsible way and select vendors committed to sustainable data center operations.

17. Transparency Reports

Where legally permissible, we may publish periodic transparency reports summarizing government or law-enforcement data requests.

18. Changes to This Policy

We may update this Privacy Policy periodically.
We will post the updated version with a new “Last Updated” date and, if changes are material, provide notice via email or our Services.
Continued use after notice constitutes acceptance.

19. Regional Privacy Notices

19.1 California (CCPA/CPRA)

California residents have rights to know/access, correct, delete, opt-out of sale/sharing, and limit use of sensitive data.
We describe categories of data collected, sources, and purposes in Sections 3–4.
Submit requests by emailing legal@getreach.ai or calling +1-888-796-5755.
We will not discriminate for exercising these rights.

19.2 Canada (PIPEDA)

You may access and correct your Personal Information and withdraw consent subject to legal limits.
Data may be processed outside Canada (e.g., U.S.); we use contractual and technical safeguards.
Contact our Canadian Privacy Officer at legal@getreach.ai.
You may also contact the Office of the Privacy Commissioner of Canada at www.priv.gc.ca.

19.3 Australia

We comply with the Privacy Act 1988 (Cth) and Australian Privacy Principles.
You may request access or correction of your Personal Information or lodge complaints at legal@getreach.ai.
If unresolved, contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

19.4 New Zealand

We comply with the Privacy Act 2020.
You may access or correct your information and request that we not transfer data overseas except with adequate safeguards.
Complaints may be directed to the Office of the Privacy Commissioner at www.privacy.org.nz.

19.5 Employees & Job Applicants

For recruiting and HR, we collect Personal Information (e.g., employment history, references, tax details) solely for employment-related purposes and retain it as required by employment laws.

20. Arizona State Law Requirements

Because REACH.ai is headquartered in Arizona, the following obligations under Arizona law apply:

• Definition of Personal Information: For purposes of Arizona Revised Statutes §§ 18-551 and 18-552, “Personal Information” includes your name (or first initial plus last name) combined with one or more of the following: Social Security number; driver’s license or non-operating ID number; passport number; taxpayer identification number; medical or mental health treatment information; health insurance ID numbers; biometric data; or a username/email address in combination with a password or security question/answer that permits access to an online account.
• Security Incident & Breach Notification: If we own, maintain, or license unencrypted or unredacted computerized personal information and become aware of a security incident, we will promptly investigate to determine whether a “security system breach” has occurred. If so, we will notify affected individuals within 45 days after that determination, except where law enforcement determines that notification would impede an investigation.
• Large-Scale Notification: If a breach affects more than 1,000 Arizona residents, we will also notify the Arizona Attorney General and the three largest nationwide consumer reporting agencies.
• Notification Contents: Notices will include the date or date range of the breach, a description of the types of personal information involved, steps taken to mitigate harm, and contact information.
• Penalties: Knowing and willful violations are unlawful practices under the Arizona Consumer Fraud Act and may result in civil penalties of up to $10,000 per affected individual, not to exceed $500,000 for a single breach or series of related breaches.
• Preemption & Coordination: Arizona’s breach-notification law preempts conflicting local laws and is applied in conjunction with federal obligations (e.g., HIPAA, GLBA) where applicable.

21. Contact Us

REACH.ai Software LLC – Privacy Officer: Nate Romney
Phone: +1-888-796-5755
Email: legal@getreach.ai

If you have any questions regarding this Privacy Policy you can contact us via email at legal@getreach.ai

Subject Line: ATTN: REACH.ai – Privacy Policy Issues 

For the EEA, you may also: 

Contact our Data Protection Officer responsible for your country or region, if applicable at legal@getreach.ai  

Lodge a complaint with a data protection authority for your country or region or where an alleged infringement of applicable data protection law occurs. A list of data protection authorities is available at http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080. 

22. Sub-Processors

The following is a list of current third-party vendors that may either directly or indirectly collect information from you in their capacity as a Sub-Processor. Please review the relevant privacy policies (links current as of the date of publication of this Privacy Policy) for further information on how each third-party handles your Personal Information: 

Third Party Name Privacy Policy/Notice Link 

SendGrid: https://sendgrid.com/policies/privacy/
Stripe: https://stripe.com/us/privacy
Twilio: https://www.twilio.com/legal/privacy