Your privacy matters to us. This policy explains what data RingUp collects, why we collect it, and how we protect it. We do not sell your personal data to third parties.
1 Who we are
RingUp is a mobile application that connects people through real-time audio calls. The app is operated as an independent product ("we", "us", or "our"). The app is available on iOS.
If you have questions about this policy, please contact us at privacy@ringup-app.com.
2 Information we collect
Information you provide directly:
- Account information: When you sign in with Apple or Google, we receive a unique identifier and, where permitted, your name and email address.
- Profile information: Photos you upload, your display name, birth date, location (city or region), hobbies, a bio, and your love language preferences.
- Communications: Messages you send to other users inside the app.
- Age verification data (biometric): To confirm you are 18 or older, we ask you to take a selfie via the in-app camera. This image is sent to AWS Rekognition for facial age analysis. The image is transmitted over TLS, processed transiently, and is not stored on our servers or retained by AWS beyond the single verification request. This constitutes biometric data processing; by completing age verification you explicitly consent to this use.
Information collected automatically:
- Device tokens: Push notification tokens (APNs) and VoIP tokens used to ring your device when a match is found.
- Usage data: Basic logs including connection events, errors, and app session timestamps. We do not log call audio.
- IP address: Captured during API requests for security and fraud prevention purposes.
Information we do NOT collect:
- Call audio content — calls are peer-to-peer (WebRTC) and are not recorded or stored.
- Precise GPS coordinates — we collect approximate location (accuracy: ~100 metres) solely to enable distance-based matching. We do not store precise GPS coordinates.
- Financial data — payments are processed by Apple (in-app purchase) or RevenueCat; we never see your card details.
3 How we use your information
We use the information we collect to:
- Create and maintain your account and profile.
- Match you with other users based on availability and profile compatibility.
- Deliver incoming call notifications to your device via Apple Push Notification Service (APNs).
- Generate a short AI-voiced introduction to play before a call connects (using your profile bio and name only).
- Enable in-app messaging between matched users.
- Verify your age to comply with our Terms of Service.
- Enforce our community rules, investigate reports, and ban users who violate them.
- Improve app performance, diagnose bugs, and monitor service health via anonymised metrics.
- Respond to your support requests.
We process your data on the following legal bases: contractual necessity (to provide the service), legitimate interests (safety, fraud prevention, service improvement), and consent (optional features such as marketing communications).
4 How we share your information
We do not sell your personal data. We share data only in the following circumstances:
- With other users: Your profile information (name, photos, bio, love language, hobbies) is visible to users you are matched or connected with.
- Service providers: We use third-party processors to help us operate the service. These include:
- Apple (APNs): For push and VoIP call notifications.
- RevenueCat: For subscription and in-app purchase management.
- OpenAI / ElevenLabs: For generating AI call introductions. Only your first name and a brief description are sent; no other personal data is shared.
- AWS Rekognition: For facial age analysis during age verification. The selfie image is transmitted and processed transiently; neither RingUp nor AWS retains the image after the verification response is received. This is the only biometric processing we perform.
- Google Firebase (Analytics, Crashlytics, Performance): For app analytics, crash reporting, and performance monitoring. Device identifiers and anonymised usage events are collected. See Google's Privacy Policy.
- Sentry: For error tracking and diagnostics. Error logs may include device information and anonymised app state. See Sentry's Privacy Policy.
- Legal requirements: If required by law, court order, or to protect the rights and safety of users or the public.
- Business transfer: In the event of a merger or acquisition, your data may be transferred to the successor entity under the same privacy commitments.
5 Data retention
We retain your account and profile data for as long as your account is active. If you delete your account, your profile, photos, and messages are permanently deleted within 30 days, except where we are required by law to retain certain records for a longer period.
Anonymised usage metrics and aggregated statistics may be retained indefinitely as they cannot be linked back to you.
6 Your rights
Depending on where you live, you may have the following rights regarding your personal data:
- Access: Request a copy of the data we hold about you.
- Correction: Ask us to correct inaccurate data.
- Deletion: Request that we delete your account and associated data.
- Portability: Receive your data in a structured, machine-readable format.
- Restriction: Ask us to limit how we process your data in certain circumstances.
- Objection: Object to processing based on legitimate interests.
- Withdraw consent: Where processing is based on consent, you may withdraw it at any time.
To exercise any of these rights, contact us at privacy@ringup-app.com. We will respond within 30 days.
You can delete your account directly from the app Settings screen at any time.
7 Children's privacy
RingUp is intended for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under 18. If we discover that a user is under 18, we will immediately suspend the account and delete the associated data. If you believe a minor has created an account, please contact us at privacy@ringup-app.com.
8 Security
We take the security of your data seriously. Our measures include:
- All data in transit is encrypted using TLS 1.2 or higher.
- Database connections use TLS with certificate validation.
- API access requires authenticated app tokens; all protected endpoints require user authentication.
- User photos are stored in a private, access-controlled file store.
- Call audio travels peer-to-peer via encrypted WebRTC and is never routed through our servers.
No system is 100% secure. If you believe your account has been compromised, contact us immediately.
9 Third-party services
RingUp integrates with the following third-party services. Each has its own privacy policy:
10 Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For significant changes, we will notify you through the app or by email.
Continued use of RingUp after changes take effect constitutes your acceptance of the updated policy.