Skip to main content

The one-paragraph summary

Ripple does not sell your data, does not run ads, and does not read your direct messages. We collect the minimum needed to operate the app — your account details, the content you choose to share inside a circle, and basic technical logs. Everything below explains that in more detail.

What we collect

Account information (email or phone, chosen name), the posts and messages you share inside a circle, technical logs (device type, app version, IP address), and diagnostic data if you opt in to crash reporting. That's the whole list.

What we never collect

Your contacts (unless you tap Invite and pick a specific person), your location beyond the country level, your ad ID, or any data from third-party trackers. There are no third-party analytics SDKs in the app.

How your messages are protected

Direct messages are end-to-end encrypted by default using the Signal protocol. Ripple's servers store only ciphertext for DMs — we cannot read them, and neither can anyone we hand a server to.

How long we keep it

Posts and messages live in the app until you delete them or your account. Server-side technical logs are kept 30 days for security, then discarded. Account deletion is immediate and irreversible.

Your rights

You can export everything you've ever posted with one tap, and delete everything with one tap. GDPR, CCPA, and UK-GDPR data subject requests are handled in-app under Settings → Privacy, or by writing to privacy@ripple.example.com.

Changes to this policy

If we ever materially change what we collect or how we use it, we'll tell you inside the app and give you at least 30 days' notice before the change takes effect.

Questions? Email privacy@ripple.example.com.