1. Who we are
RidgeCommand is a product of PenguinRidge ("we", "us", "our"). We are a software company based in the United Kingdom. When we refer to "RidgeCommand", we mean the web application available at this domain.
We are the data controller responsible for your personal data under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Contact: hello@penguinridge.co.uk
2. What data we collect
We collect only what is necessary to provide the service:
- Account data: Email address, username, and a hashed password (we never store your password in plain text).
- Task data: Tasks you create, including text, dates, tags, themes, priority, and completion status.
- Habit data: Habits you define and your daily check-in history.
- Journal data: Journal entries including date, mood, energy level, free-text content, gratitude, and reflection fields. All journal content is encrypted at rest using AES-128 encryption.
- Story data: AI-generated stories created from your journal entries, stored encrypted.
- Session data: An anonymous session token stored in a cookie to keep you signed in.
- Technical logs: Anonymous request logs for error monitoring (no personal content included).
We do not collect: payment card details, government ID, biometric data, or location data. We do not run advertising or sell data to any third party.
3. How we use your data
- To provide the service: Storing your tasks, habits, and journal entries so you can access them.
- To keep you signed in: Session cookies allow you to stay authenticated between visits.
- To send account emails: Password reset emails, and account activation or deactivation notifications. These are transactional only — we do not send marketing emails without your explicit opt-in.
- To power AI features: When you use AI features (journal story transformations, writing prompts, tidy-up), the relevant text is sent to our AI provider. See Section 4.
- To monitor application health: Anonymous request metrics and error logs help us detect and fix problems.
4. AI processing — please read this
When you use any AI feature in RidgeCommand, relevant text from your account is sent to Anthropic's Claude API for processing. This includes:
- Journal entry content (for story transformations, tidy-up, and analysis)
- Gratitude and reflection fields (when AI features are applied to those sections)
Anthropic processes this data on our behalf as a data processor under a data processing agreement. Your journal text is sent only when you actively trigger an AI feature — it is not continuously monitored or transmitted.
Anthropic's data handling: Anthropic does not use API data to train their models by default. For details, refer to Anthropic's Privacy Policy.
Before your first AI feature use, you will be asked to explicitly confirm you understand and accept this processing. You can revoke this consent at any time in Settings — doing so will disable AI features for your account.
If you do not wish your journal content to be processed by Anthropic, do not use the AI features. All core tasks, habits, and journal writing functions work without any AI processing.
5. Legal basis for processing
| Processing activity | Legal basis |
|---|---|
| Account creation and authentication | Contract performance — necessary to provide the service |
| Storing tasks, habits, and journal entries | Contract performance — the core purpose of the service |
| Sending transactional emails | Contract performance |
| Session cookies | Strictly necessary — no consent required under PECR |
| AI processing of journal content | Explicit consent — collected before first AI feature use |
| Anonymous application monitoring | Legitimate interest — maintaining service security and reliability |
6. Third-party processors
We share data only with processors necessary to deliver the service:
| Provider | Purpose | Data shared |
|---|---|---|
| Anthropic (USA) | AI feature processing | Journal text (content, gratitude, reflection, mood, energy), only when you trigger an AI feature and have given explicit consent. No account data is sent. |
| Google (optional) | Sign in with Google | We request OpenID, email, and profile scopes. Google shares your email address and display name with us to create or link your account. Only activated if you click "Sign in with Google". |
| Microsoft (optional) | OneNote integration | OAuth token for OneNote API access. We read OneNote notebook and page content to power theme analysis. Only activated if you connect your Microsoft account in Settings. |
| Trello (optional) | Task export to Trello | OAuth token for Trello API access. We send task names and descriptions to create Trello cards when you use the export feature. Only activated if you connect Trello in Settings. |
| Hetzner Online GmbH (Germany) | Hosting infrastructure | All data stored on servers in EU data centres |
Google, Microsoft, and Trello integrations are entirely optional and only activated by your explicit action. We do not share your data with advertisers, analytics companies, or any other third party.
7. Data retention
- Account and content data: Retained for as long as your account is active.
- Deleted items: Tasks, habits, and journal entries are soft-deleted and permanently purged after 7 days.
- Sessions: Expired sessions are automatically purged after 7 days.
- On account deletion: All your data is permanently deleted immediately. There is no recovery after account deletion.
- Backups: Encrypted database backups are retained for up to 30 days for disaster recovery, then automatically purged.
9. Your rights under UK GDPR
You have the following rights regarding your personal data:
- Right of access: Request a copy of all data we hold about you.
- Right to rectification: Correct inaccurate data.
- Right to erasure: Delete your account and all associated data. Available directly in Settings → Account → Delete Account.
- Right to data portability: Export all your data as a JSON file. Available in Settings → Account → Export Data.
- Right to withdraw consent: Withdraw AI processing consent at any time in Settings. This disables AI features without affecting your account.
- Right to object: Object to processing based on legitimate interest.
- Right to lodge a complaint: You have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.
To exercise any right, contact us at hello@penguinridge.co.uk. We will respond within 30 days.
10. Security
We take security seriously:
- All connections are encrypted via HTTPS (TLS).
- Passwords are hashed using bcrypt — we cannot recover your password.
- Journal entries, stories, and analyses are encrypted at rest using AES-128 (Fernet).
- Sessions are server-side with HttpOnly, SameSite=Lax cookies.
- Login attempts are rate-limited; accounts lock after 10 failed attempts.
Despite these measures, no system is completely immune to attack. If you discover a security vulnerability, please report it to hello@penguinridge.co.uk.
11. Changes to this policy
We may update this policy to reflect product changes or legal requirements. Material changes will be communicated via email to registered users. The "last updated" date at the top of this page indicates when changes were last made.
12. Contact us
For any questions about this policy or your data:
Email: hello@penguinridge.co.uk
Company: PenguinRidge, United Kingdom