Privacy: Your Health Data Kept Safe

When you log your period, track your symptoms, or share your most intimate health details with a cycle-tracking app, you are trusting that app with some of the most personal data imaginable. In a world where data breaches make headlines and certain health information has become politically sensitive, that trust must be earned — not assumed. At Rythia, we believe that privacy is not a feature. It is a fundamental right. And we have built every layer of our technology with that belief at the core.

Why Health Data Privacy Matters More Than Ever

Menstrual cycle data is uniquely sensitive. It reveals information about your reproductive health, fertility status, sexual activity, pregnancy attempts, and more. In the wrong hands, this data could be used in ways that harm you — whether by employers, insurers, data brokers, or even law enforcement in certain jurisdictions.

In recent years, several high-profile investigations have revealed that some period-tracking apps share user data with third-party advertisers, analytics companies, and social media platforms — often without users' clear understanding or meaningful consent. Some apps have been found sending menstrual data to Facebook, Google, and other advertising networks.

This is precisely the kind of practice we reject at Rythia. Your health data exists to serve you — to help you understand your body, make informed decisions, and live in harmony with your cycle. It should never be used to target you with ads, sold to the highest bidder, or shared without your explicit consent.

"Your body, your data, your rules. We built Rythia on the principle that you should never have to choose between understanding your health and protecting your privacy."

How Rythia Protects Your Data

Privacy is not an afterthought at Rythia — it is embedded in our architecture, our processes, and our business model. Here is how we keep your data safe.

Encryption at Every Level

All data transmitted between your device and our servers is protected with TLS (Transport Layer Security) encryption. This means that even if someone intercepted the data in transit, it would be completely unreadable. On our servers, your data is encrypted at rest using AES-256 encryption — the same standard used by banks and government agencies worldwide. This ensures that even in the highly unlikely event of a server breach, your data remains protected.

No Data Selling — Ever

This is our most important promise: Rythia never sells, shares, or monetizes your personal health data. We do not work with data brokers. We do not share your information with advertisers. We do not allow third-party trackers in our app. Our revenue comes from premium subscriptions — not from exploiting your data. This business model alignment is crucial: when a company profits from your data, there is always a conflict of interest. At Rythia, your data benefits only you.

Minimal Data Collection

We follow the principle of data minimization — we only collect the data that is strictly necessary to provide you with the service. We don't ask for information we don't need. Every piece of data we collect serves a specific purpose in helping you understand your cycle and receive personalized insights. We regularly review our data practices to ensure we are not collecting anything beyond what is necessary.

GDPR Compliance

Rythia is fully compliant with the General Data Protection Regulation (GDPR), the European Union's comprehensive data protection law — widely considered the gold standard in data privacy regulation. Under GDPR, you have powerful rights over your data:

• Right to access: You can request a complete copy of all data we hold about you at any time
• Right to rectification: You can correct any inaccurate data
• Right to erasure: You can request permanent deletion of all your data
• Right to data portability: You can export your data in a standard format
• Right to restrict processing: You can limit how we use your data
• Right to withdraw consent: You can revoke consent for data processing at any time

We honor all of these rights fully and have made them accessible directly within the app, so exercising your rights is as simple as tapping a few buttons.

Data Export: Your Data, Your Way

We firmly believe that your data belongs to you. That's why Rythia includes a built-in data export feature that lets you download all your cycle data in multiple formats (JSON, CSV, and plain text). Whether you want to share your data with your doctor, keep a personal backup, or simply verify what we store, you can do so at any time. You are never locked in, and your data is never held hostage.

Secure Authentication

Rythia uses Firebase Authentication, a trusted authentication service by Google, to secure your account. We support secure sign-in methods including email with password, Apple Sign-In, and Google OAuth — all of which use industry-standard security protocols. We never store your password in plain text, and all authentication tokens are securely managed.

AI and Your Privacy

Rythia uses artificial intelligence to provide personalized daily briefings and insights. Naturally, you might wonder: what happens to my data when AI is involved?

Here is how we handle AI processing with privacy in mind:

• Your data is processed to serve you: The AI analyzes your cycle data, symptoms, and preferences solely to generate personalized insights for you
• No training on your data: Your personal information is not used to train general AI models. Your data serves your experience only
• Secure API communication: All communication between our servers and AI services uses encrypted, authenticated connections
• Data is not retained by AI providers: We configure our AI integrations to not retain your personal data beyond what is needed for immediate processing

What to Look for in Any Health App

Whether you use Rythia or any other health app, here are the key privacy factors you should evaluate:

• Read the privacy policy: Look for clear, specific language about what data is collected, how it is used, and whether it is shared with third parties
• Check the business model: If an app is free and has no premium tier, ask yourself: how do they make money? If the answer involves advertising, your data may be the product
• Look for encryption: Both in-transit and at-rest encryption should be standard
• Verify data deletion rights: Can you actually delete your data? Is the process straightforward?
• Check for third-party trackers: Tools like Exodus Privacy (for Android) can reveal what trackers are embedded in an app
• Evaluate data export: A trustworthy app lets you take your data with you
• Consider jurisdiction: Where are the company's servers located? What data protection laws apply?

Our Commitment to Transparency

Trust is built through transparency. That's why we maintain a clear, readable privacy policy — not a wall of legal jargon designed to obscure what we actually do with your data. We want you to understand exactly how your information is handled, and we welcome questions. If anything about our privacy practices is unclear, our team is always available at contact@rythia.app to provide answers.

We also commit to notifying users promptly in the unlikely event of any security incident, and to continually improving our security practices as technology and threats evolve.

The Bigger Picture: Data Rights Are Human Rights

The conversation around health data privacy is part of a larger movement toward digital rights and bodily autonomy. When you choose an app that respects your data, you are making a statement about the kind of digital world you want to live in — one where technology empowers people rather than exploiting them.

At Rythia, we stand firmly on the side of empowerment. We built this app because we believe every woman deserves to understand her body deeply, and we believe she should be able to do so without sacrificing her privacy. These two goals are not in conflict. With the right approach, they reinforce each other.

Frequently Asked Questions

Does Rythia sell my health data to third parties?

No, absolutely not. Rythia never sells, shares, or monetizes your personal health data. Your cycle data, symptoms, and health information are used solely to provide you with personalized insights within the app. Our business model is based on premium subscriptions, not data monetization. We believe your health data is deeply personal and should never be treated as a commodity.

Is my data encrypted?

Yes. All data transmitted between your device and our servers is protected with TLS (Transport Layer Security) encryption in transit. Data stored on our servers is encrypted at rest using industry-standard AES-256 encryption. This means that even in the unlikely event of a security breach, your data would remain unreadable without the encryption keys.

Can I delete all my data from Rythia?

Yes. You can request complete deletion of your account and all associated data at any time directly from the app settings. Under GDPR, you have the right to erasure, and we honor this right fully. When you request deletion, all your personal data — including cycle history, logs, chat messages, and profile information — is permanently removed from our servers within 30 days.