Privacy Policy

Last updated: February 3, 2026

The Read ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains in detail what information we collect, how we store and use it, and your rights regarding your data when you use our mobile application.

Our Commitment: We do not sell your personal data. We do not share your data with third parties for their marketing purposes. Your game responses are your own.

1. Information We Collect

We collect different types of information to provide and improve our service. Here is a complete breakdown:

1.1 Account Information

1.2 Game Response Data

1.3 Device and Technical Data

1.4 Usage and Analytics Data

1.5 Payment Information

2. How We Store Your Data

2.1 Database Storage

Your data is stored in a PostgreSQL database hosted on secure cloud infrastructure. We use:

2.2 Password Security

If you create an account with email/password, your password is hashed using scrypt (a secure one-way hashing algorithm). We never store or have access to your plain-text password.

2.3 Session Security

Authentication sessions use secure, HTTP-only cookies with 30-day expiration. Sessions are stored server-side and can be invalidated at any time.

3. Do We Sell or Share Your Data?

NO. We do not sell your personal information. We do not share your data with third parties for their own marketing or advertising purposes.

We only share data in these limited circumstances:

3.1 With Your Game Partner

When you play a game with someone, limited information is shared between you:

Important: You both must mutually agree to play together. Your partner only sees the results and insights, not your raw timing data or internal scores.

3.2 With Service Providers

We use trusted third-party services to operate The Read. These providers only receive the minimum data necessary to perform their function:

Provider Purpose Data Shared
Apple App Store / Google Play (via RevenueCat) Payment processing Email, payment info (handled directly by the app stores)
PostHog Product analytics Device ID, usage events, screen views (anonymized)
Sentry Error tracking & monitoring Device info, error logs, stack traces
SendGrid Transactional emails Email address, notification content
Expo Push Push notifications Push token, notification content
OpenAI Content moderation User-generated text (for safety screening only)

3.3 For Legal Reasons

We may disclose information if required by law, court order, or government request, or to protect the rights, safety, or property of The Read or others.

4. Analytics and Tracking

4.1 PostHog Analytics

We use PostHog for product analytics to understand how users interact with the app and improve the experience. PostHog collects:

PostHog data is used solely to improve The Read and is not shared with advertisers.

4.2 Sentry Error Tracking

We use Sentry to monitor app stability and fix bugs. Sentry collects error logs, crash reports, and technical diagnostic information. This data helps us identify and resolve issues quickly.

4.3 No Advertising Trackers

We do not use Google Analytics, Facebook Pixel, or any advertising tracking tools. We do not serve ads or participate in ad networks.

5. Data Retention

We retain your data for different periods depending on the type:

Data Type Retention Period
Account Information Until you delete your account
Game Responses & Results 2 years from game completion, or until account deletion
Payment Records 7 years (required for tax/legal compliance)
Analytics Data 2 years (anonymized after 90 days)
Error Logs 90 days
Legal Consent Records 7 years (for compliance documentation)
Audit Logs 3 years (security and compliance)

After the retention period, data is permanently deleted or anonymized so it can no longer be linked to you.

6. How to Delete Your Data

You have the right to delete your data at any time. Here's how:

6.1 Delete Your Account (In-App)

  1. Open The Read app
  2. Go to Settings (gear icon)
  3. Scroll to "Delete Account"
  4. Confirm deletion

This permanently deletes your account, profile, and all associated game data.

6.2 Request Data Deletion (Email)

You can also email us at admin@thereadgame.com with the subject "Data Deletion Request" and include:

We will process deletion requests within 30 days and confirm when complete.

6.3 Request Data Export

Before deleting, you can request a copy of all your data. Go to Settings → "Request My Data" or email us at admin@thereadgame.com. We will provide a downloadable JSON file containing:

6.4 What Happens After Deletion

7. Your Privacy Rights

Depending on your location, you may have additional rights:

7.1 For All Users

7.2 For California Residents (CCPA)

You have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information.

7.3 For EU/UK Residents (GDPR)

You have the right to access, rectify, erase, restrict processing, data portability, and object to processing. You may also lodge a complaint with your local data protection authority.

8. Data Security

We implement appropriate technical and organizational measures to protect your information:

9. Children's Privacy

The Read is intended for users 18 years of age and older. We do not knowingly collect information from anyone under 18. If you believe we have collected information from a minor, please contact us immediately at admin@thereadgame.com and we will delete it.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place when transferring data internationally, including standard contractual clauses where required.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Continued use of the app after changes constitutes acceptance of the updated policy.

12. Contact Us

For privacy inquiries, data requests, or questions about this policy:

Email: admin@thereadgame.com

Data Requests: Use the Settings screen in the app or email us directly

Response Time: We respond to all privacy requests within 30 days