Skip to main content
rou

Privacy Policy

Last updated: March 1, 2026

Rou (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share information about you when you use the Rou website (rouapp.com) and mobile application (collectively, the “Service”).

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

1. Information We Collect

Information you provide directly

  • Account information: Your name, email address, and password when you create an account.
  • Purchase information: Your name and email address when you purchase a program. Payment card details are collected and processed directly by our payment processor (Stripe or Apple/Google in-app purchases) — we never store full card numbers.
  • Workbook and journal entries: Text responses, ratings, and optional photos you submit in daily workbook prompts. This data is tied to your account and stored securely.
  • Communications: Any messages you send us via email or support channels.

Information collected automatically

  • Usage data: Pages visited, features used, program progress, and session duration.
  • Device information: Device type, operating system, browser type, and IP address.
  • Cookies and tracking technologies: See Section 3 below.

2. How We Use Your Information

We use the information we collect to:

  • Create and manage your account
  • Process and fulfill program purchases
  • Deliver program content, track your progress, and save your workbook entries
  • Send transactional emails (purchase confirmations, program reminders)
  • Respond to your support requests
  • Improve the Service through analytics and usage patterns
  • Comply with legal obligations

We do not sell your personal information to third parties. We do not use your workbook entries or health data for advertising purposes.

3. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and understand how the Service is used. Types of cookies we use:

  • Strictly necessary cookies: Required for authentication and security. These cannot be disabled without breaking core functionality.
  • Analytics cookies: Used to understand how visitors use the site (via privacy-friendly analytics). No personally identifiable information is collected in analytics.

You can control cookies through your browser settings. Disabling strictly necessary cookies may prevent you from accessing your account or purchased programs.

4. Third-Party Services

We use the following third-party services that may process your data:

  • Supabase — our database and authentication provider. Your account data and program content are stored on Supabase infrastructure. Data is stored in the EU/US depending on region settings. Supabase Privacy Policy.
  • Stripe — web payment processing. Stripe collects and processes payment card information directly. We do not store card numbers. Stripe Privacy Policy.
  • RevenueCat — in-app purchase management for iOS and Android. RevenueCat Privacy Policy.
  • Resend — transactional email delivery. Your email address is shared with Resend solely to deliver emails you have requested. Resend Privacy Policy.
  • Amazon (Affiliate Shop)— our shop links to Amazon products. When you click an affiliate link and visit Amazon, Amazon's own privacy policy applies. We may receive a commission on qualifying purchases at no cost to you.

5. Data Sharing

We share your information only in the following circumstances:

  • With third-party service providers listed above, to the extent necessary to operate the Service
  • When required by law, court order, or governmental authority
  • To protect the rights, property, or safety of Rou, our users, or others
  • In connection with a merger, acquisition, or sale of all or substantially all of our assets (you will be notified in advance)

We never sell or rent your personal data to marketing companies or data brokers.

6. Data Retention

We retain your account data for as long as your account is active. If you request account deletion, we will delete your personal data within 30 days, except where we are required to retain it for legal or financial compliance purposes (e.g., transaction records for tax purposes, retained for up to 7 years).

Anonymized or aggregated usage data (which cannot be linked to you) may be retained indefinitely for analytics purposes.

7. Your Rights (GDPR and Privacy Laws)

Depending on where you live, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure (“right to be forgotten”): Request deletion of your personal data, subject to legal retention requirements.
  • Portability: Request your data in a machine-readable format.
  • Restriction: Request that we restrict processing of your data in certain circumstances.
  • Objection: Object to processing of your data for direct marketing purposes.
  • Withdraw consent: Where we rely on consent for processing, you may withdraw consent at any time.

To exercise any of these rights, contact us at privacy@rouapp.com. We will respond within 30 days.

8. Children's Privacy

The Service is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

9. Data Security

We implement industry-standard security measures to protect your data, including:

  • Encrypted connections (HTTPS/TLS) for all data in transit
  • Row-level security on our database (users can only access their own data)
  • Secure, hashed password storage (via Supabase Auth)
  • Regular security reviews of our infrastructure

No system is completely secure. If you believe your account has been compromised, contact us immediately at privacy@rouapp.com.

10. International Transfers

Your data may be transferred to and processed in countries outside your country of residence. When we transfer data from the EU/EEA, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses) in accordance with applicable data protection law.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page with an updated “Last updated” date. For significant changes affecting your rights, we will also notify you by email.

Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@rouapp.com
Website: rouapp.com/about

We take privacy inquiries seriously and will respond within 30 days.