The one-paragraph summary
Ripple does not sell your data, does not run ads, and does not read your direct messages. We collect the minimum needed to operate the app — your account details, the content you choose to share inside a circle, and basic technical logs. Everything below explains that in more detail.
What we collect
Account information (email or phone, chosen name), the posts and messages you share inside a circle, technical logs (device type, app version, IP address), and diagnostic data if you opt in to crash reporting. That's the whole list.
What we never collect
Your contacts (unless you tap Invite and pick a specific person), your location beyond the country level, your ad ID, or any data from third-party trackers. There are no third-party analytics SDKs in the app.
How your messages are protected
Direct messages are end-to-end encrypted by default using the Signal protocol. Ripple's servers store only ciphertext for DMs — we cannot read them, and neither can anyone we hand a server to.
How long we keep it
Posts and messages live in the app until you delete them or your account. Server-side technical logs are kept 30 days for security, then discarded. Account deletion is immediate and irreversible.
Your rights
You can export everything you've ever posted with one tap, and delete everything with one tap. GDPR, CCPA, and UK-GDPR data subject requests are handled in-app under Settings → Privacy, or by writing to privacy@ripple.example.com.
Changes to this policy
If we ever materially change what we collect or how we use it, we'll tell you inside the app and give you at least 30 days' notice before the change takes effect.
Questions? Email privacy@ripple.example.com.