Privacy Policy
This policy describes what data riabody collects, how it is used, and your rights over it. We aim to collect only what is needed to run the service.
Account information
When you sign in with Google, riabody receives your email address, name, and profile picture from Google. We use these to create your account and identify you when you sign in. We do not receive your Google password.
Data you enter
Anything you log in riabody — meals, drinks, heart readings, workouts, body measurements, settings — is stored on our servers and associated with your account. This data belongs to you.
Technical data
riabody keeps short-lived request logs (IP address, request path, timestamp) for security and debugging. Application errors are reported to Sentry; reports may include user IDs and request paths but exclude the contents of the data you have logged.
Cookies
riabody sets a single cookie, rb_auth, after you sign in.
It is HttpOnly, expires after seven days, and is used solely to keep you
signed in. We do not use tracking or advertising cookies.
Sharing
We do not sell your data, and we do not share it with advertisers or analytics providers. The only third parties who see any of it are:
- Google — to authenticate you when you sign in.
- Sentry — for application error reports, as described above.
Storage and security
Your data is stored in a PostgreSQL database on servers we operate. All connections to riabody use HTTPS.
Your rights
You can request a copy of your data, or deletion of your account and all associated data, by emailing the address below. We respond within a reasonable timeframe.
Changes
We may update this policy as the service evolves. Material changes will be reflected here with a new "Last updated" date.
Contact
Questions about this policy or requests about your data: contact@riabody.com.