Privacy Policy
This page is maintained by the Reti team to answer common privacy questions. Reti is a prototype recovery companion — not a medical device — and this policy is not a substitute for legal advice.
What we collect
- Account details: email, display name, sobriety start date.
- Self-reported logs: check-ins, cravings, mood, gratitude, journal, meetings, medication, goals, and prevention plans that you enter.
- Wearable telemetry when you pair a device: heart rate, HRV, sleep, activity, and (if enabled on the device) alcohol/drug metabolite estimates.
- Location data only if you explicitly opt in to GPS sharing. Used to flag entries into high-risk zones you defined.
- Care-share links you generate to grant read-only access to your care team.
How we use it
- Show you your progress, streak, insights, and reminders.
- Let you share a read-only summary with people you choose.
- Deliver AI reflections that summarize your own logs back to you.
- Trigger the SOS flow to contacts you've saved when you request help.
How we protect it
- Encrypted in transit (HTTPS) and at rest.
- Row-level security so only you (and people you explicitly share with) can read your rows.
- Leaked-password protection on sign up and password change.
- Optional consent required before any GPS data is stored.
Your rights
- Export. Download a full JSON copy of your data from Privacy & data.
- Delete. Permanently erase your account and all associated records from Privacy & data.
- Withdraw consent. Turn off GPS sharing or revoke care-share links at any time.
Third parties
Reti runs on Lovable Cloud (Supabase) for database, auth, and storage; Resend for transactional email; and Lovable AI Gateway for AI reflections. We do not sell or share your health data with advertisers.
Contact
Questions about this policy? Reach the Reti team through the support contact your care provider gave you.