Privacy Policy

1. Introduction

This Privacy Policy describes how Ritmo (“we”, “us”) collects, uses, and shares information when you use the Ritmo mobile application (“App”).

2. Information We Collect

2.1 Information You Provide

• Account information: name, email address (when you sign in via Google or Apple)
• Onboarding preferences: goals, interests, notification preferences you select during onboarding

2.2 Information Collected Automatically

• Session data: completed routines, session duration, timestamps (to power your personal statistics)
• Device information: device model, OS version, app version
• Push notification token: to deliver timer and reminder notifications (only if you grant notification permission)

2.3 Product Analytics

We use PostHog to understand how the App is used (which screens are visited, which routines are completed, where users encounter errors). PostHog receives an anonymous identifier tied to your Ritmo account along with a small set of product events. We do not send the content of your AI prompts, the titles of routines you create, your email address, or any other personal information to PostHog. PostHog stores this data on servers in the United States.

2.4 We Do NOT Collect

• We do not use third-party advertising SDKs
• We do not sell your data
• We do not track you across other apps or websites

3. How We Use Your Information

We use your information to:

• Operate and maintain the App
• Personalize your routines and AI-generated content
• Process your subscription (via Apple and RevenueCat)
• Send you notifications you've opted into
• Improve the App's features

4. Third-Party Services

We use the following services to operate the App:

• Google Firebase (Authentication, Firestore, Cloud Functions, Cloud Messaging / FCM for push notifications, and Crashlytics for crash reporting): firebase.google.com/support/privacy
• RevenueCat (subscription management): revenuecat.com/privacy
• Apple (payments, Sign in with Apple): governed by Apple's privacy policy
• OpenAI (AI routine generation): openai.com/policies/privacy-policy
• PostHog (product analytics — anonymous usage events): posthog.com/privacy
• Sentry (crash and error reporting): sentry.io/privacy

These services may collect usage and device data in accordance with their own privacy policies.

5. AI-Generated Content

If you use the AI routine generation feature, your input prompt is sent to our backend, which forwards it to a third-party AI provider (OpenAI). The generated routine is stored in your Ritmo account. Prompts are processed under OpenAI's API data usage policies and are not used to train OpenAI's models. See openai.com/policies/privacy-policy.

6. Data Retention

We retain your account data for as long as your account is active. You can delete your account at any time from Settings → Account → Delete Account. Deletion is permanent and removes all associated data from our servers within 30 days.

7. Data Security

We use industry-standard security practices (encryption in transit, Firebase authentication). No method of electronic storage is 100% secure.

8. Children's Privacy

Ritmo is not directed at children under 13. We do not knowingly collect information from children under 13.

9. International Users

The App is operated from Egypt. If you use the App from outside Egypt, your data may be transferred to and processed in countries where our servers are located.

10. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, or delete your personal data. Contact us at youssef.william997@gmail.com to exercise these rights.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top indicates when changes were made.

12. Contact

Questions? Email: youssef.william997@gmail.com