Bridge by Rizolvr — Privacy Policy

• Account Information: Name, email address, and shop name provided during signup.
• Lightspeed POS Data: Data synced via OAuth 2.0 read-only scopes — customers, items, sales, work orders, reference data (categories, manufacturers, vendors, tags, employees).
• Billing Information: Card details are collected and stored by Stripe. Rizolvr LLC never sees or stores your card.
• Tool Usage: Per-request logs containing tenant ID, tool name, response row count, and latency. We do not log the natural-language questions you ask your AI assistant — those never reach Rizolvr.

• To provide, maintain, and improve the Service.
• To answer the read-only queries your AI assistant sends to Bridge on your behalf.
• To send service-related emails (onboarding, billing, security alerts, kill-switch notifications).
• To detect and block abuse — e.g., a runaway AI agent exhausting the rate limit or attempting to access tenants other than yours.

Your synced POS data is stored in a dedicated logical database on AWS Aurora Serverless v2 (us-west-2). Each tenant has a database user with SELECT-only privileges scoped to that database alone, so a query injection cannot escape tenant boundaries.

Per-customer secrets (database credentials and Lightspeed tokens) are stored as encrypted JSON in AWS Secrets Manager, accessible only to the specific Lambda functions that need them. All data in transit uses TLS 1.2+ (HTTPS, MCP-over-HTTPS, Postgres SSL).

We do not sell personal or identifiable customer data to third parties. Limited disclosure occurs only:

• To service providers processing data on our behalf under confidentiality agreements (Stripe for payments, AWS for hosting, transactional email provider).
• For legal compliance when required by law or valid legal process.
• To AI assistants you authorize. When you connect an AI client (e.g., Claude Desktop) to Bridge, the AI receives the data it requests via tool calls. Your contract with that AI provider governs how that data is used and stored on their side.

Bridge passes data to your AI client. Once the data leaves Bridge and arrives at your AI client, the AI provider's privacy policy and data-retention practices apply. We encourage you to review the privacy policies of any AI assistant you connect:

• Anthropic (Claude): claude.ai/privacy
• OpenAI (ChatGPT): openai.com/privacy
• Google (Gemini): support.google.com/gemini

Your data is retained while your subscription is active. On cancellation, we retain it for sixty (60) days as a grace period during which you can reactivate or request a one-time export. After 60 days your tenant database is permanently dropped and your Secrets Manager secrets are deleted. To expedite deletion before the grace period ends, contact support.bridge@rizolvr.com.

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your account and associated data.
• Disconnect your Lightspeed account at any time (revokes Bridge's OAuth grant).
• Request a one-time export of your synced data (CSV per entity).
• Request immediate revocation of your MCP token in case of suspected compromise.