RITHOS

Privacy Policy

Last updated: March 2026

1. Introduction

RITHOS (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the RITHOS mobile application and related services.

2. Information We Collect

We collect the following types of information:

  • Account information: Email address, name (optional), and authentication provider details (Google or Apple Sign-In).
  • Check-in data: Mood, energy, stress, sleep quality, triggers, and optional context you choose to record.
  • Cycle data: Menstrual cycle information, only if you choose to track it.
  • AI conversations: Messages exchanged with the AI companion within the app.
  • Journal entries: Text entries you create in the journaling feature.
  • Usage data: App usage analytics, crash reports (via Firebase Crashlytics), and performance metrics.

3. How We Use Your Information

  • To provide and personalize the RITHOS experience
  • To detect patterns in your emotional and behavioral data
  • To generate anonymous cohort insights (Oracle feature) by comparing anonymized, aggregate patterns
  • To improve app performance and fix technical issues
  • To communicate service updates and important notices

4. How We Protect Your Data

  • All data is encrypted at rest and in transit (AES-256, TLS 1.3)
  • Authentication is handled through Firebase Authentication with Google and Apple providers
  • Database access is restricted and monitored
  • We conduct regular security reviews

5. Data Sharing

We do not sell, rent, or share your personal data with:

  • Advertisers
  • Data brokers
  • Insurers
  • Employers
  • Any other third party for marketing purposes

The only data that crosses user boundaries is fully anonymized, aggregate pattern data used for the Oracle cohort feature. This data cannot be traced back to any individual user.

6. Your Rights and Control

You have the right to:

  • Access your personal data
  • Export your data in a portable format
  • Request correction of inaccurate data
  • Request deletion of all your data
  • Cancel your subscription at any time
  • Opt out of optional data collection (cycle tracking, analytics)

7. Data Retention

Your data is retained as long as your account is active. When you delete your account, all personal data is permanently removed from our servers within 30 days. Anonymized aggregate data that has already been contributed to cohort patterns cannot be individually removed, as it is not linked to your identity.

8. Children's Privacy

RITHOS is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or by email. Continued use of RITHOS after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or your data, contact us at privacy@rithos.app.