ripple

Privacy Policy

Effective date: April 23, 2026

1. Who we are

Ripple (“we”, “our”, “us”) is a cross-posting tool that lets content creators publish to multiple social platforms from a single composer. We are operated by Lior Nisimov. Questions about this policy can be sent to rippleit.io@gmail.com.

2. What we collect

We collect only what is necessary to run the service:

  • Account data: your email address, used for authentication via magic link.
  • Connected platform credentials: OAuth access tokens and refresh tokens for platforms you choose to connect (Twitter/X, LinkedIn, Bluesky, etc.). These are stored securely in our database and used solely to publish content on your behalf.
  • Post content: text and media you enter into the composer, stored so you can view your post history.
  • Usage data: anonymous analytics (page views, feature usage) via PostHog to improve the product. No personally identifiable information is included.
  • Billing data: handled entirely by Stripe. We do not store card numbers or payment details.

3. How we use your data

  • To authenticate you and maintain your session.
  • To publish posts to the social platforms you have connected, at your direction.
  • To process subscription payments via Stripe.
  • To send transactional emails (account, billing, product updates).
  • To improve the product using aggregated, anonymised usage analytics.

We do not sell your data. We do not use your content to train AI models.

4. Social platform data

When you connect a social account, we store the access and refresh tokens that platform provides. We use these tokens only to publish content you explicitly submit. We do not read your social feeds, followers, messages, or any data beyond what is needed to post on your behalf. You can disconnect any platform at any time from your account settings, which deletes the stored tokens immediately.

5. Data retention

We retain your data for as long as your account is active. If you delete your account, all personal data — including connected account tokens, post history, and profile information — is permanently deleted within 30 days. To request deletion, email rippleit.io@gmail.com.

6. Third-party services

We use the following third-party services:

  • Supabase — database and authentication (EU/US infrastructure).
  • Vercel — application hosting.
  • Stripe — payment processing.
  • PostHog — anonymous product analytics.
Each service operates under its own privacy policy and data processing agreements.

7. Cookies

We use strictly necessary cookies for session management and OAuth state validation (short-lived, cleared after authentication). We do not use advertising or tracking cookies.

8. Your rights

You have the right to access, correct, or delete your personal data at any time. To exercise any of these rights, email rippleit.io@gmail.com. We will respond within 30 days.

9. Changes to this policy

We may update this policy from time to time. When we do, we will update the effective date above. Continued use of the service after changes constitutes acceptance of the updated policy.

10. Contact

For any privacy-related questions or requests: rippleit.io@gmail.com