Privacy Policy

Effective: January 20, 2026

Data Collection

We collect only what is necessary: email address for account access, encrypted journal entries, and usage data for functionality. Your journal content is encrypted and inaccessible to us.

Data Use

We use data to provide service functionality, improve security, and respond to support requests. We do not sell data. We do not build advertising profiles.

Data Storage

All data is encrypted at rest and in transit. Journal entries are end-to-end encrypted. Only you can read your reflections.

Your Rights

You have the right to access, correct, or delete your data. Contact legal@rifid.co to exercise these rights.

Changes

We may update this policy. Changes will be posted with an updated date.