Workridge Privacy Policy

How Workridge collects, uses, and protects information

Last updated: June 17, 2026Version v1.1


This Privacy Policy explains how Workridge, a product of Next313 — a registered d/b/a of Dignetix Ltd., a Michigan corporation (“Dignetix,” “we,” “us”) — collects, uses, stores, and protects information when you use Workridge (“the Service”), available at workridge.app. By using the Service, you agree to the practices described here.

This Privacy Policy works alongside our Terms of Service, our Acceptable Use Policy (AUP), and, where applicable, our Data Processing Addendum (DPA). For privacy questions, contact us at privacy@next313.com.

1. Who We Are and Our Role

Workridge is project-tracking and billing software used by businesses and their teams. For information about your own account and our public website, we act as a data controller. For the content your organization stores in its workspace (projects, tasks, billing records, uploads), we act as a data processor on behalf of your organization, which is the controller of that content. Our processing of workspace content is governed by our agreement with your organization, including a DPA where applicable.

2. Information We Collect

We collect only what is necessary to deliver and support the Service.

Account information

  • Your name, email address, and (if you sign in with Microsoft) your Entra ID identifier.
  • Your organization, company memberships, and role/permission assignments.
  • Notification, timezone, and display preferences.

Workspace content (processed for your organization)

  • Projects, phases, tasks, comments, issues, and approvals.
  • Billing data — rate cards, labor, expenses, mileage, and travel records.
  • Photos, receipts, and files you upload to the Service’s storage.
  • Addresses you enter for mileage and route calculation.

Technical and usage information

  • Log and diagnostic data (IP address, browser, device type, timestamps).
  • Aggregated, privacy-preserving usage analytics used only to improve the Service.
  • Error reports generated when the Service encounters a problem.

Waitlist and marketing

If you join our waitlist, we collect the email address you provide to contact you about availability. You can opt out at any time.

We do not knowingly collect information from children under 16.

3. How We Use Your Information

  • Operate, maintain, secure, and improve the Service.
  • Authenticate users and enforce role- and tenant-based access controls.
  • Respond to support requests and send service-related communications.
  • Detect and prevent fraud, abuse, and security incidents.
  • Comply with our legal obligations.

We do not sell your data, we do not use your workspace content for advertising, and we do not train artificial-intelligence models on it.

4. How We Share Information — Sub-processors

We share information only with trusted providers necessary to run the Service:

  • Supabase — database, authentication, and file storage.
  • Microsoft Azure — application hosting.
  • Microsoft Entra ID — single sign-on for staff users.
  • Mapbox — address autocomplete and driving-distance calculation; when you use mileage features, your IP address and the addresses you enter are sent to Mapbox.
  • Stripe — payment processing (when billing is enabled).

These providers are contractually bound to protect your data. We also share information within your workspace according to the role permissions you set, and for legal reasons where required.

Business transfers

If Workridge, Dignetix, or the assets relating to the Service are involved in a merger, acquisition, reorganization, financing, change of control, or a sale or transfer of all or part of the business or assets relating to the Service, your information may be transferred as part of that transaction. The recipient will be required to honor this Privacy Policy or to provide equivalent protection, and we will notify you of any change in the controller of your personal data where required by law.

5. Data Storage and Security

Data is stored in Supabase-hosted PostgreSQL with row-level security and a restrictive tenant-isolation policy that fences each tenant’s data. Data is encrypted in transit using Transport Layer Security (TLS) and at rest; uploads live in access-controlled buckets. No system is perfectly secure; if we become aware of an incident affecting your data, we will notify you in accordance with applicable law.

No system is perfectly secure. In the event of a confirmed unauthorized access to personal data, we will notify affected customers without undue delay and in accordance with applicable law and our contractual obligations.

6. Data Retention

We retain workspace content for as long as the account is active. Deleted records are removed promptly; backups may retain deleted data for up to 30 days. On account closure, the organization may export its workspace content during a 30-day window, after which we delete workspace content within 90 days, except where retention is legally required.

7. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, export, delete, object to, or restrict processing of your personal data, and to data portability. To exercise them, email privacy@next313.com; we respond within 30 days. If you are a member of a customer organization, some requests may be directed to that organization as the controller of your workspace content.

California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA), as amended:

  • Right to know the categories and specific pieces of personal information we collect, use, and disclose;
  • Right to request deletion of personal information, subject to certain exceptions;
  • Right to correct inaccurate personal information;
  • Right to opt out of the sale or sharing of personal information (we do not sell or share personal information as those terms are defined under the CCPA);
  • Right to non-discrimination for exercising your privacy rights.

Categories of personal information collected include identifiers (such as name and email), commercial information (such as billing data), internet or network activity (such as log data), and other information users provide through the Service.

To exercise your rights, contact us at privacy@next313.com.

8. International Transfers

We are based in the United States, and our providers may operate servers in other countries. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) for cross-border transfers.

9. Cookies and Analytics

We use strictly necessary cookies and browser storage to keep you signed in and maintain session state. For traffic measurement we use privacy-preserving, cookieless analytics; we do not use third-party advertising cookies or cross-site trackers, so no cookie-consent banner is required.

10. Changes to This Policy

We may update this policy. We will change the “Last updated” date and, for material changes, notify you by email or in the Service before they take effect.

11. Contact

Questions or requests: privacy@next313.com. 100 W Big Beaver Rd Ste 160 Troy, MI 48084

Workridge is a product of Next313, a registered d/b/a of Dignetix Ltd. © 2026 Dignetix Ltd. All rights reserved.