Privacy Policy

Overview

Rudder helps people examine beliefs and patterns through conversational reflection, leading-question reminders, and personal insights—not by prescribing what to think or do.

This policy describes how Rudder collects, uses, stores, and protects information when you visit our website, join the waitlist, or use the Rudder app. It also explains the choices and controls you have over your information.

Rudder is a chat-based app, and the conversations you have with it can be deeply personal. We treat that content as sensitive by default, and we have written this policy to be specific about what we collect and why—so you can decide what you are comfortable sharing.

Information we collect

Account information: when you create an account, we collect identifiers such as your name (if provided), email address, and authentication credentials needed to sign you in and secure your account.

Conversation content: the messages, reflections, check-ins, and other content you submit in the app. Because Rudder is a chat-based reflection tool, this content may include personal thoughts, feelings, and details about your life. We store this content on our servers so the app can show your history, generate insights, and continue conversations across sessions.

Audio (voice input): if you choose to use voice features, audio you record is transcribed to text so Rudder can respond. We do not store the audio recording itself—only the resulting text becomes part of your conversation. See the Audio and voice input section below for details.

Notification data: if you enable notifications, we store a device push token and your notification and reminder preferences so we can deliver the reminders and updates you ask for.

Time zone and clock data: we collect your time zone (and, where relevant, locale) so time- and clock-based features—such as daily reminders, check-in timing, and streaks—reflect your local day. We use this only for scheduling and time-based features, not to track your physical location.

Device and diagnostic data: basic information needed to operate and troubleshoot the service, such as app version, device type, operating system, and crash or error logs.

Website and waitlist data: when you visit our site or request access, we collect the email address you provide and any optional context you choose to share, such as your role, interests, or preferred beta platform.

Website analytics: standard analytics such as page views, referral source, browser type, and approximate location derived from IP address. We do not sell this information.

Audio and voice input

Audio is only captured when you actively choose to use a voice feature. Rudder does not record in the background or listen when you have not asked it to.

When you record audio, it is sent to our transcription provider, converted to text, and returned to the app. We do not store the audio recording itself—the recording is processed to produce the transcript and is not retained on our servers. Only the resulting text is saved, as a normal message in your conversation.

Because the transcript is stored as part of your conversation, you can delete it the same way you delete any message or conversation, as described in the Retention and deletion section.

You can grant or revoke microphone access at any time through your device's operating system settings. Revoking access disables voice features but does not affect text you have already sent.

Notifications

If you enable notifications, Rudder sends reminders, leading questions, check-in prompts, and product updates you have opted into.

To deliver them, we store a push notification token issued by your device's platform (such as Apple or Google) along with your reminder schedule and preferences.

You can turn notifications off at any time in the app's settings or in your device's operating system settings. Disabling notifications stops delivery; some account- or security-related messages may still be sent by email where necessary.

Time zone and clock-based features

Rudder uses your time zone and local clock to power time-based features such as daily reminders, check-in windows, and streak tracking, so that your "day" matches where you are.

We use this information only for scheduling and time-based functionality. We do not use your time zone to determine or track your precise physical location, and we do not build a location history from it.

How we use information

We use information to operate Rudder, maintain your account and conversation history, generate questions, reminders, summaries, and insights, deliver notifications you enable, respond to waitlist requests, improve product quality and reliability, prevent abuse, and comply with legal obligations.

We design Rudder to use your context only to provide the service you request. We do not sell your personal information, and we do not use your private conversation content to build advertising profiles.

AI processing

Rudder uses automated systems, including large language models, to interpret what you share, surface patterns, and generate conversational responses, questions, and reminders.

To do this, the content you submit—including messages and transcribed audio—may be sent to third-party AI model providers that process it on our behalf under contractual terms. These providers process your content to return a response to Rudder; they are not permitted to use it for their own purposes.

We do not use your private conversation content to train public foundation models, and we do not permit our providers to train their general models on it, unless we clearly disclose that practice and you opt in.

AI output can be imperfect or wrong. Rudder is a personal development tool, not a licensed therapist, clinician, or emergency service. If you are in crisis, contact local emergency services or a qualified professional.

Where your data is stored

Rudder stores your account information and conversation content—including messages, voice transcripts, check-ins, and preferences—on secure servers operated by our cloud and database providers so the service can function across your devices and sessions. As noted above, we do not store the underlying audio recordings.

Data is encrypted in transit, and we store it using providers that encrypt data at rest. Access to stored content is limited to the systems and authorized personnel who need it to operate, support, and secure the service.

Sharing and subprocessors

We share information with service providers that help us host the website and app, store data, deliver email and notifications, monitor reliability, and process AI requests.

Current categories of providers may include cloud hosting, database and file storage, email and push notification delivery, analytics, and AI model inference vendors. The providers we currently use are listed on our Subprocessors page at /subprocessors.

We require these subprocessors to protect data under contractual terms appropriate to the sensitivity of the information they handle. We do not sell your personal information.

We may disclose information if required by law, to protect the rights, safety, and security of users or the public, or in connection with a merger, acquisition, or sale of assets, in which case we will continue to protect your information under this policy.

Retention and deletion

We retain your account data and conversation content—including messages and voice transcripts—while your account is active and for a limited period afterward so you can restore access or export your information. Audio recordings are not retained, as described above.

You can delete individual conversations within the app, and you can delete your entire account and its associated content from the app or by contacting us. When you delete content, we remove it from active systems and from backups on our standard backup rotation.

We retain waitlist information until you unsubscribe or ask us to delete it.

Some records may be retained where required for security, fraud prevention, billing, or legal compliance, and only for as long as necessary for those purposes.

Your choices and rights

Access and export: you can request a copy of the personal information we hold about you.

Correction and deletion: you can ask us to correct inaccurate information or delete your account and conversation content.

Device permissions: you control microphone access and notifications through your device's operating system settings, and you can disable them at any time.

Email: you can unsubscribe from non-essential email at any time, and you can choose not to provide optional waitlist fields.

Depending on where you live, you may have additional rights to access, correct, delete, port, or restrict certain processing of your personal information. To exercise any of these, contact us at privacy@rudder.app.

Sensitive and personal content

Rudder is built for honest reflection, and we know people may share sensitive personal details here. We treat your conversation content as private and use it only to provide the service to you.

We never sell this content, never use it for advertising, and never share it with other users.

You stay in control: you can use Rudder without voice features, delete individual conversations, and delete your account and its content entirely. If anything about how your data is handled is unclear, reach out and we will explain it.

Security

We use administrative, technical, and organizational measures designed to protect information against unauthorized access, loss, or misuse, including encryption in transit, encryption at rest with our storage providers, and access controls that limit who can reach stored content.

No online service can guarantee absolute security. Please use a strong, unique password and contact us promptly if you suspect unauthorized access to your account.

Children

Rudder is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us personal information, contact us and we will delete it.

Changes and contact

We may update this policy as Rudder evolves. Material changes will be posted on this page with a revised date, and we will provide additional notice where required.

Questions about privacy, or requests regarding your information, can be sent to privacy@rudder.app.