Privacy Policy
Last updated: March 11, 2026
OnRamp Innovations, Inc. ("ONRAMP," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the ONRAMP application and related services.
1. Information We Collect
Account Information
When you create an account, we collect your name, email address, phone number, and employer/service center information. If you sign in with Google, we receive your name and email from your Google profile.
Work Data
As you use ONRAMP, we store job records including VIN numbers, repair order (RO) numbers, repair steps, time clock entries, and notes. Documents you upload (repair manuals, PDFs, technical service bulletins) are stored securely. Our AI is not trained on documents you upload. Uploaded documents are stored for your individual technician account only and are not shared between technicians, nor shared anywhere outside of that individual technician's account.
Voice Sessions
When you use voice-guided repair assistance, audio is streamed in real-time to our AI providers for processing. Raw audio is not permanently stored. We retain session metadata (duration, token usage, timestamps) for service improvement and billing.
Usage Analytics
We collect anonymized usage data through PostHog to understand how the app is used and improve the experience. This data does not include personally identifiable information.
Payment Information
Payment processing is handled entirely by Stripe. We never receive, store, or process your full credit card number, CVV, or bank account details. We store only Stripe customer and subscription identifiers needed to manage your account.
2. How We Use Your Information
- Provide and maintain the ONRAMP service, including voice-guided repair assistance
- Manage your account, service center membership, and team assignments
- Process payments and manage subscriptions
- Track work time and performance metrics for your shop
- Improve our AI models and service quality (using aggregated, non-identifiable data)
- Send transactional communications (account confirmation, password resets, invitations)
- Ensure security, detect fraud, and comply with legal obligations
3. How We Share Your Information
We do not sell your personal information. We share data only with:
- Your service center: Administrators and team leads at your shop can see your job records, time clock data, and performance metrics
- Service providers: Third-party processors (Render, Google Cloud, Stripe, Deepgram, Resend, PostHog) that help us operate the service, each bound by data processing agreements
- Legal requirements: When required by law, court order, or to protect our rights or the safety of others
4. Data Security
We implement industry-standard security measures including:
- AES-256 encryption at rest for all database and stored data
- TLS 1.2+ encryption for all data in transit
- Bcrypt password hashing (passwords are never stored in plaintext)
- Role-based access control with multi-tenant data isolation
- Rate limiting and input validation on all API endpoints
- Audit logging of all administrative actions
5. Data Retention
- Account data: Retained until you delete your account
- Job records and documents: Retained as configured by your service center
- Voice audio: Processed in real-time; raw audio is not retained
- Session metadata: Retained indefinitely for billing and service improvement
- Audit logs: Retained for a minimum of one year
- Payment data: Stripe identifiers retained until subscription cancellation
6. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data (subject to legal retention requirements)
- Export your data in a portable format
- Opt out of non-essential analytics
To exercise these rights, contact us at support@getonramp.io.
7. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell your personal information. To exercise your CCPA rights, contact us at support@getonramp.io.
8. Children's Privacy
ONRAMP is not intended for use by anyone under 18 years of age. We do not knowingly collect personal information from minors.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy in the app and updating the "Last updated" date.
10. Contact Us
If you have questions about this Privacy Policy or our data practices, contact us at: support@getonramp.io