top of page

Privacy Policy

 LAST UPDATED August 22, 2025 

Quick Summary 

  • What we collect: Your account information, including name, email address, phone numbers, learning progress, voice recordings (if you use voice chat), text interactions, User Content, and website/Services usage data. 

  • How we use it: To run our AI coach (Goldi), provide our Services, track your learning, support and improve our services, provides customer support, process payments, communicate with you, including through email, and use of newsletters, marketing or promotional materials that may be of interest, or for required notifications about the Services, for analytics and statistical purposes, to understand interactions with our Services and communications, to monitor the Services, detect, prevent and address technical issues, to measure traffic and usage trends using third-party analytics tools, to prevent fraud and ensure legal compliance, and for other lawful purposes. 

  • How we protect it: We encrypt all data, require multi-factor authentication, and review our service providers for employing reasonable security measures consistent with this Privacy Policy. 

  • Your rights: You can access, correct, or delete your data by contacting us. 

  • Voice chat: Voice recordings are kept for 90 days to improve Goldi's coaching abilities. 

  • Cookies & tracking: We use cookies and analytics to improve your experience, operate the Services, and employ security. 

  • Data retention: Most data is kept for 90 days to 12 months, depending on the type, but is subject to the terms of this Privacy Policy. 

  • Questions?: Contact us at privacy@climbtogether.co

 

Your Consent

By using Climb Together services, you agree to this Privacy Policy. If you disagree, please don't use our services. When you sign up, we'll ask you to explicitly consent to this policy by checking a box that says "I have read and agree to the Privacy Policy" or similar statement. You can withdraw your consent at any time by deleting your account, though this won't affect our previous use of your information. 

Introduction

At Climb Together, we believe in being transparent about how we collect and use your data. This policy explains what information we collect, how we use it, and the choices you have regarding your data. We've written this in plain language to make it easier to understand. 

What Information We Collect

We collect several types of information when you use our services: Account Information 

  • Your name, phone number, and email address and other personal data provided that can reasonably linked to you or your household (“Personal Data”) 

  • Login information (password is encrypted) 

  • Profile information you provide 

 

Learning Data 

  • Your course progress and completion 

  • Assessment results 

  • Interactions with learning materials 

 

AI Coaching Data 

  • Text conversations with Goldi (our AI coach) 

  • Voice recordings and transcripts (if you use voice chat) 

  • Feedback you provide on AI responses 

 

Usage Data 

  • How you use our platform 

  • Device information (e.g., browser type/version, operating system) 

  • IP address and general location 

  • Time spent on different features, pages visited, time and date stamps, duration of visits, unique device identifiers and other diagnostic data. 

 

Tracking & Cookies Data 

We use first party cookies and similar tracking technologies, such as web beacons and/or pixels to track the activity on our Service, hold certain information, including usage and demographic information about visitors over time, to track new visitors to our websites, to prevent fraud, to understand interactions with our websites and emails, and improve the performance of our Services and websites. 

Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, pixels, and scripts to collect and track information and to improve and analyze our Service. We do not use this information to personally identify you. 

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. See www.allaboutcookies.org to learn how to disable cookies on your browser or otherwise opt out of cookies. However, if you do not accept cookies, you may not be able to use some portions of our Service. 

Examples of Cookies we use: 

  • Session Cookies. We use Session Cookies to operate our Service. 

  • Preference Cookies. We use Preference Cookies to remember your preferences and various settings. 

  • Security Cookies. We use Security Cookies for security purposes. 

  • ‘Necessary Cookies. We use Necessary Cookis to provide the Site(s) and authenticate users. 

 

Some cookies may be active during the time you are viewing a website (“Session cookies”). Other cookies may remain on your computer after you have closed your browser or turned off your computer (“Persistent or Preference cookies”). We also deploy “Necessary” cookies to provide the websites and Services, such as to authenticate and identify returning users. We do not use cookies to serve online advertising, whether on our websites or on other websites. 

The cookies sent by our websites are used only by the websites and are not used to collect Personal Data without your permission. If you choose to provide us with personal information (such as your email address), that information could be linked to the data stored in the cookie. We reserve the right to change our use of cookies and our practices regarding linkage to Personal Data without prior notification. 

Payment Information 

  • We use Stripe to process payments and don't store your complete credit card information. We reserve the right to change our payment process without prior notification. 

 

How We Use Your Information We use your information to: 

  • Provide and personalize our Services, and allow you to access interactive features 

  • Improve Goldi's AI coaching 

  • Track your learning progress 

  • Keep our platform secure 

  • Send important updates and changes, and otherwise communicate with you about our Services 

  • To remember your username and account information next time you log in. 

  • Process payments 

  • To gather analysis or valuable information so that we can improve our Service, better understand the users of our websites and Services, and protect the Services and websites 

  • To monitor the usage of our Services 

  • To detect, prevent and address technical issues 

  • To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information 

  • To help us measure traffic and usage trends for the websites and Services utilizing third-party analytics tools. These tools collect information sent by your device or our websites, including the web pages you visit, add-ons, and other information that assists us in improving our websites. We collect and use this analytics information with analytics information from other users so that it cannot reasonably be used to identify any particular individual user. 

  • Comply with legal requirements, resolve legal disputes, for regulatory investigations, and to enforce our agreements 

 

About Voice Recordings If you use voice chat with Goldi: 

  • Your voice is processed in real-time to generate responses 

  • Recordings help us improve Goldi's understanding and responses 

  • You can choose to use text-only chat instead 

 

How We Protect Your Information Your security is important to us. We protect your data by: 

  • Encrypting all data at rest using AES-256 encryption 

  • Encrypting all data in transit using TLS 1.2 or higher 

  • Requiring multi-factor authentication for our staff 

  • Limiting access to only those who need it 

  • Regularly testing our security systems 

  • Working only with trusted service providers who meet strict security standards 

 

Who We Share Your Information With We share your information as follows: 

Lawful Basis 

We have a lawful basis for our processing of your Personal Data, including processing for our legitimate interests (when balanced against your rights and freedoms), to fulfill our obligations to you under a contract with you, and required by law, and with your consent, as described below: 

  • Consent. By using our websites or Services, you consent to our collection, use, and sharing of your Personal Data as described in this Privacy Policy. If you do not consent to this Privacy Policy, please do not use our websites or Services. 

  • Legitimate Interests. We will process your Personal Data as necessary for our legitimate interests. Our legitimate interests are balanced against your rights and freedoms, and we do not process your Personal Data if your rights and freedoms outweigh our legitimate interests. Our legitimate interests may include safeguarding our IT infrastructure and intellectual property. 

  • As Required by Law. We may also process your Personal Data when we are required or permitted to by law; to comply with government inspections, audits, and other valid requests from government or other public authorities; to respond to legal process such as subpoenas. 

  • To Protect Ourselves or Others. We may process your Personal Data as necessary for us to protect our interests or otherwise pursue our legal rights and remedies (for instance, when necessary to prevent or detect fraud, attacks against our network, or other criminal and tortious activities), defend litigation, and manage complaints or claims. 

 

Service Providers 

  • We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used. 

  • These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. 

  • We currently share your Personal Data with: 

  • Clerk: For secure login and authentication 

  • TalentLMS: To host learning content and track your progress 

  • Langfuse: To monitor and improve AI performance 

  • PostHog: For anonymous usage analytics 

  • HumeAI: To process voice interactions for Goldi 

  • Stripe: To process payments; Click here to view the Stripe Privacy Policy 

  • Vercel: To host our platform 

 

We only share what's necessary for these services to work properly. We never sell your data to third parties. In addition, voice data is never sold or shared beyond HumeAI, which processes it solely for AI response generation and system improvements. All our service providers must comply with security standards including SOC 2, ISO 27001, GDPR, and CCPA where applicable. 

Business Transactions 

If Climb Together is involved in a merger, acquisition or asset sale, your Personal Data may be transferred. We will provide notice whenever your Personal Data is transferred and becomes subject to a different Privacy Policy. 

Analytics 

We may use third-party Service Providers to monitor and analyze the use of our Service. 

  • Google Analytics. Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network. You can read more about how Google Analytics functions at: https://support.google.com/analytics/answer/6004245?hl=en#zippy=%2Cdata-collected-by-google-analytics. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout. You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/ 

 

Links To Other Sites 

  • Our Service may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. 

  • Please remember that when you use a link to go from our websites to another website or service, our Privacy Policy does not apply to those third-party websites or services. Your browsing and interaction on any third-party website or service, including those that have a link on our websites, are subject to that third party’s own rules and policies. In addition, you agree that we are not responsible and do not have control over any third -parties that you authorize to access your Personal Data. If you are using a third-party website or service and you allow them to access Personal Data, you do so at your own risk. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services. 

 

Security Of Data 

  • The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. Climb Together has implemented a security program that includes appropriate administrative, technical and physical safeguards intended to keep the Personal Data stored in our systems protected from unauthorized access and misuse. Our systems are configured with data encryption, or scrambling technologies and common industry available firewalls. We also use Secure Socket Layer (SSL) technology that is designed to protect the data you send over the Internet. 

  • Please be aware, however, that no information system is totally secure, and therefore we cannot guarantee against all potential security breaches. While we will use reasonable security and monitoring controls in accordance with general industry standards to secure information you provide to us consistent with our legal requirements, we cannot guarantee that such information will not be unlawfully or illegitimately obtained by unauthorized parties. 

 

“Do Not Track” Signals 

  • We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. 

  • You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser. 

 

Your Rights and Choices 

Climb Together endeavors to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data. Whenever made possible, you can update your Personal Data directly within your account settings section or by responding to the opt-out directions in communications sent to you. If you are unable to change your Personal Data, please contact us at privacy@climbtogether.co to make the required changes. 

In certain circumstances, you have the right to: 

  • Access your personal information 

  • Correct inaccurate data 

  • Request deletion your data (except where we're legally required to keep it) 

  • Object to certain types of processing 

  • Download a copy of your data 

 

To exercise these rights, contact us at privacy@climbtogether.co. We'll respond within a reasonable period of time in accordance with applicable legal requirements. Please note that we may ask you to verify your identity before responding to such requests. 

Children's Privacy Our services are not designed for children under 13. We do not knowingly collect information from children under 13. If we learn we have collected information from a child under 13, we will take reasonable steps to delete that information. Parents or guardians who believe their child has submitted personal data may contact privacy@climbtogether.co for assistance. Data Retention We keep your information for different periods depending on is the type of data and the purpose. Subject to the terms below, we target the following retention periods: 

  • Authentication logs: 90 days 

  • AI conversation logs: 90 days 

  • Voice recordings: 90 days 

  • User analytics data: 12 months 

  • Course progress data: 12 months or until you request deletion 

 

Notwithstanding the foregoing, we will maintain your data only for as long as is necessary for the purposes, or otherwise as designated as set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies. 

We will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods. Anonymized data may be retained indefinitely. 

Data Exports and Access Controls To protect your information: 

  • Only authorized administrators can export data from our systems 

  • Goldi doesn't allow users to download personal conversation data 

  • Data extraction requests require admin approval and are logged 

 

International Data TransfersClimb Together is located in the United States. Your Personal Data will be stored on our (or our suppliers’) servers and data centers located in the United States. Information that we collect will be stored and processed in the United States in accordance with this Privacy Policy. This Privacy Policy shall apply even if we transfer Personal Information to other countries. 

By accessing our websites and the Services, you consent to this transfer, processing, and storage of your Personal Data in the United States or other jurisdictions, including to jurisdictions in which the privacy laws may not be as comprehensive as those in the country where you reside. Note that your Personal Data may be available to the United States government or its agencies under legal process in the United States. 

If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to the United States and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. 

Climb Together will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information. 

Changes to This Policy We may update this policy from time to time. If we make significant changes, we'll notify you by email or by posting a notice on this page. The latest version will always be available at climbtogether.co/privacy. 

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. Contact Us If you have questions about this policy or want to exercise your rights: 

 

By using Climb Together, you acknowledge you have read and understand this Privacy Policy. ​

bottom of page