Privacy Policy

Your privacy matters. Rhythm is built to help you track your habits, not to track you. Here is exactly what we collect, why, and how we protect it.

What We Collect

What We Do Not Collect

• ✓No location tracking
• ✓No contact list access
• ✓No advertising identifiers
• ✓No third-party analytics trackers

How We Use Your Data

Your data is used for one purpose: making Rhythm work for you. We use it to display your activities, calculate goal progress, and show your patterns over time. That is it.

How We Protect Your Data

• •All data is encrypted in transit using HTTPS
• •Database access is protected by row-level security, so you can only access your own data
• •Authentication is handled by Supabase, a trusted infrastructure provider
• •Passwords are hashed and never stored in plain text

Data Sharing

We do not sell your data. We do not share it with advertisers. We do not use it for marketing. Your activity data stays between you and Rhythm.

The only third party involved is Supabase, which provides our database and authentication infrastructure. They process data on our behalf and are bound by strict data protection agreements.

Data Retention

Your data is kept as long as you have an account. If you delete your account, we will delete your data. If you want specific data removed, just ask.

Your Rights

You have the right to:

• •Access all the data we have about you
• •Request correction of inaccurate data
• •Request deletion of your data
• •Export your data in a portable format

Cookies

We use essential cookies only for authentication, so you stay logged in. No tracking cookies. No third-party cookies.

Changes to This Policy

If we make meaningful changes to how we handle your data, we will update this policy and let you know. The date at the top shows when it was last updated.