Rituals

Privacy Policy

Last updated: January 14, 2026

This Privacy Policy describes how Rituals Inc. ("Company," "we," "us," or "our") collects, uses, and shares information about you when you use our mobile application "Rituals" and our website at rituals.club (collectively, the "Services").

Please read this Privacy Policy carefully. By using the Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree, please do not access or use the Services.

1. Information We Collect

Information You Provide to Us

We collect information you provide directly when you create an account, use the Services, or communicate with us:

  • Account Information: Name, email address, username, phone number, profile photo, and password
  • Profile Information: Bio, interests, goals, and other optional details you add to your profile
  • User Content: Photos, videos, comments, messages, and other content you create, upload, or share
  • Communications: Information you provide when you contact us for support, provide feedback, or communicate with other users
  • Activity Data: Information about your participation in rituals, check-ins, progress, and engagement
  • Payment Information: If you make purchases, our payment processors collect payment card details (we do not store full card numbers)

Information Collected Automatically

When you access or use the Services, we automatically collect certain information:

  • Device Information: Device type, operating system and version, unique device identifiers, mobile network information
  • Usage Information: Features you use, actions you take, time and duration of your activities
  • Log Data: IP address, browser type and version, access times, pages viewed, app crashes
  • Location Information: General location based on IP address or, with your permission, more precise location
  • Push Notification Tokens: If you enable push notifications, we collect tokens to send you notifications

Information from Third Parties

  • Sign-In Services: If you sign in using Apple, Google, or other third-party services, we receive your name, email, and profile information as authorized by you
  • Health Integrations: If you connect Apple Health, Google Fit, or similar services, we receive health and activity data you explicitly authorize
  • Social Platforms: If you connect social media accounts, we may receive profile information as authorized

Sensitive Information

We do not intentionally collect sensitive personal information such as racial or ethnic origin, political opinions, religious beliefs, genetic data, or biometric data. Health data you choose to share through integrations is handled with care and used only for the purposes you authorize.

2. How We Use Your Information

We use the information we collect for purposes described in this Privacy Policy or as otherwise disclosed to you:

  • Provide and Maintain the Services: Create and manage your account, enable features, process transactions, and provide customer support
  • Personalize Your Experience: Customize content, recommendations, and features based on your preferences
  • Enable Social Features: Connect you with other users, display your profile and activity to others based on your settings
  • Send Communications: Send notifications about your rituals and activity, respond to your inquiries
  • Improve the Services: Analyze usage patterns, conduct research, debug and fix issues, and develop new features
  • Ensure Safety and Security: Detect, investigate, and prevent fraud, abuse, and security incidents
  • Comply with Legal Obligations: Respond to legal requests, enforce our terms, and protect our rights

3. How We Share Your Information

We do not sell your personal information to third parties. We have not sold personal information in the preceding twelve months. We may share your information in the following circumstances:

  • With Other Users: Your profile information, posts, and activity may be visible to other users based on your privacy settings
  • Service Providers: We share information with vendors who perform services on our behalf, such as hosting, analytics, payment processing, and customer support
  • Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred
  • Legal Requirements: We may disclose information if required by law, subpoena, court order, or government request
  • Protection of Rights: We may disclose information to protect the rights, property, or safety of Rituals, our users, or the public
  • With Your Consent: We may share information for other purposes with your explicit consent

4. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to collect information, improve the Services, and personalize your experience:

  • Essential Cookies: Required for the Services to function properly, such as authentication and security
  • Analytics Cookies: Help us understand how users interact with the Services and measure performance
  • Preference Cookies: Remember your settings, preferences, and choices

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Services.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Services. We also retain information as necessary to:

  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Prevent fraud and abuse
  • Maintain security and business records

When you delete your account, we delete or anonymize your personal information within 90 days, except where retention is required by law or for legitimate business purposes.

6. Data Security

We implement appropriate technical and organizational security measures designed to protect your personal information, including:

  • Encryption of data in transit using TLS/SSL
  • Encryption of sensitive data at rest
  • Regular security assessments and vulnerability testing
  • Access controls and authentication requirements
  • Employee training on data protection

However, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security, and you use the Services at your own risk.

7. Your Rights and Choices

All Users

  • Access and Update: You can access and update your account information through the app settings at any time
  • Delete Your Account: You can delete your account through the app settings, which will initiate deletion of your personal information
  • Notification Preferences: You can manage push notification and email preferences in the app
  • Marketing Opt-Out: You can opt out of promotional emails by clicking "unsubscribe" or contacting us
  • Withdraw Consent: Where we rely on consent, you may withdraw it at any time

California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and California Privacy Rights Act:

  • Right to Know: Request information about what personal information we collect, use, and disclose
  • Right to Delete: Request deletion of your personal information, subject to certain exceptions
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt out of the sale or sharing of personal information (we do not sell your data)
  • Right to Non-Discrimination: Exercise your rights without discriminatory treatment

California's "Shine the Light" law permits California residents to request information regarding disclosure of personal information to third parties for direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

To exercise your rights, contact us at team@rituals.club. We will verify your identity before processing your request.

Virginia Residents (VCDPA)

If you are a Virginia resident, you have rights under the Virginia Consumer Data Protection Act:

  • Right to access your personal data
  • Right to correct inaccuracies
  • Right to delete your personal data
  • Right to obtain a portable copy of your data
  • Right to opt out of targeted advertising, sale of personal data, or profiling

To exercise your rights or appeal a decision, contact us at team@rituals.club.

European Residents (GDPR)

If you are in the European Economic Area, United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation:

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data
  • Restriction: Request restriction of processing
  • Portability: Receive your data in a portable format
  • Object: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time
  • Complaint: Lodge a complaint with a supervisory authority

Our legal bases for processing include: your consent, performance of a contract, compliance with legal obligations, and our legitimate business interests.

8. Children's Privacy

The Services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at team@rituals.club. If we learn we have collected personal information from a child under 13, we will promptly delete it.

California residents under 18 who have registered for the Services may request removal of content they have posted by contacting us. Note that removal may not ensure complete deletion if the content has been shared or reposted by others.

9. International Data Transfers

Your information may be transferred to, stored, and processed in the United States or other countries where we or our service providers operate. These countries may have data protection laws that differ from your country of residence.

By using the Services, you consent to the transfer of your information to the United States and other jurisdictions. When we transfer data internationally, we implement appropriate safeguards such as Standard Contractual Clauses approved by relevant authorities.

10. Third-Party Links and Services

The Services may contain links to third-party websites, apps, or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any information. Your interactions with third-party services are governed by their terms and policies.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of material changes by posting the updated policy in the app, sending you a notification, or as otherwise required by law. The "Last updated" date at the top indicates when the policy was last revised.

Your continued use of the Services after changes become effective constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: team@rituals.club

Mail: Rituals Inc., 651 N Broad St, Suite 201, Middletown, DE 19709, United States

For data subject access requests or to exercise your privacy rights, please email us with the subject line "Privacy Rights Request." We will respond within the timeframe required by applicable law.