RubiPro for Mac — Privacy Policy

This privacy policy describes how the RubiPro for Mac application ("the App") handles your data. The App is published by Rubi Professional and is distributed through the Mac App Store. This policy applies only to the macOS app — use of the RubiPro web CRM is governed by our main Privacy Policy.

1. Data the App Collects

The App is a thin client for your RubiPro tenant. It does not collect, generate, or transmit any analytics, telemetry, or tracking data of its own. Specifically:

• No analytics. The App does not include Google Analytics, Firebase, Mixpanel, or any third-party analytics SDK.
• No advertising identifiers. The App does not access IDFA, IDFV, or any device identifier for advertising.
• No third-party trackers. The App speaks only to your tenant's RubiPro backend at rubiprofessional.com.
• No crash reporting SDKs. Crashes are handled by Apple's standard system reports, which you control via System Settings.

2. Data You Enter or Access

When you sign in and use the App, it accesses customer, interaction, payment, and AI insight data from your RubiPro tenant on your behalf. This data:

• Is fetched on demand over a secure HTTPS connection.
• Is held only in memory while the App is running.
• Is not written to any local database, cache file, or disk storage on your Mac.
• Is purged from memory when you quit the App.

Your tenant administrator controls what data you can see, per RubiPro's role and permission system.

3. Authentication & Token Storage

To stay signed in, the App stores access and refresh tokens in the macOS Keychain:

• Service name: com.rubiprofessional.crm
• Accessibility: kSecAttrAccessibleWhenUnlockedThisDeviceOnly — tokens never sync to iCloud, never leave your Mac, and are unreadable when your Mac is locked.
• Tokens are never written to UserDefaults, log files, plain disk files, or anywhere outside the Keychain.
• Access tokens expire every 2 hours and refresh automatically. Refresh tokens expire after 30 days of inactivity.
• Signing out (or "Sign Out All Devices") revokes tokens server-side immediately.

4. Network & Transport Security

• All network traffic is HTTPS (TLS) only. Apple's App Transport Security is enforced — no cleartext HTTP is permitted.
• The App connects only to rubiprofessional.com.
• API requests carry a Bearer token scoped to your authenticated user and tenant. The backend enforces tenant isolation, so users can never see data from another organization.

5. App Sandbox & Permissions

The App runs inside the Mac App Store sandbox with minimum entitlements:

• com.apple.security.app-sandbox — full sandbox enforcement.
• com.apple.security.network.client — outbound HTTPS only; the App does not run any servers.
• com.apple.security.files.user-selected.read-write — file access is limited to documents you explicitly select via native macOS panels.

The App does not request access to your contacts, calendar, photos, microphone, camera, location, or any other system resource.

6. RubiLens AI

RubiLens AI features (customer synopses, next-best actions, AI Coach) are processed on the RubiPro backend through your tenant's configured AI provider (Claude by default). The App never communicates directly with Anthropic or any other AI provider. Your tenant administrator controls which models and prompts are used. Customer data sent to AI providers is governed by the AI provider agreements maintained by your tenant.

7. NICE CXone Integration

If your tenant uses the optional NICE CXone telephony integration, the App relays click-to-dial requests, screen pops, and agent status through the RubiPro backend to NICE CXone. No call audio or recordings are stored or processed locally by the App.

8. Data Retention

The App retains nothing on your device beyond authentication tokens in the Keychain. All customer, interaction, payment, and AI data lives in your RubiPro tenant in the cloud and is governed by your tenant's data retention policies, which your administrator configures.

9. Children

The App is a business CRM tool not directed to children. It is not intended for use by anyone under 16, and we do not knowingly collect data from children.

10. Your Rights

Because the App is a window into your RubiPro tenant, all rights of access, correction, deletion, and portability are exercised through your tenant administrator and through the main RubiPro Privacy Policy. Depending on your jurisdiction, you may have rights under GDPR, CCPA, or other applicable laws to access, correct, delete, or port your personal data, and to object to or restrict its processing. To exercise any of these rights, contact your tenant administrator or email us at privacy@rubiprofessional.com.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be reflected by an updated "Last updated" date at the top of this page.

12. Contact

Questions about this policy or the App's privacy practices? Contact us:

• Email: privacy@rubiprofessional.com
• Web: rubiprofessional.com/contact