Ruh FindsRuhFinds
Ruh Finds

Privacy.

We're honest about data. We don't sell it. We don't optimize for it. We don't use it to make you feel like you need something.

What We Collect

User Accounts
If you create an account, we store your email and a secure hash of your password. We never see your actual password — it's encrypted on our end. We use this only to let you log in.
Check-ins
When you check in to a spot, we save your name, your note, and optionally your photo. If you're logged in, we associate the check-in with your account so you can see your history. Check-ins are public — they appear on our site so others can see what you've been up to.
Saved Spots
When you're logged in, we sync your saved spots across devices. When you're not logged in, we use your browser's local storage (stays on your device only).
Created Lists
Lists you create are stored in your account. You can make them private or share them publicly.
Submissions & Applications
When you submit a spot or apply to be an editor, we collect your name, email, and details. We use this to evaluate and possibly contact you.
Contact & Feedback
If you email us or fill out a contact form, we keep your message so we can respond.
Profile Info
If you fill out a profile (bio, avatar, preferences), we store it with your account.
Analytics (minimal)
We track basic page views and what features people use — not to build a profile of you, but to understand if the site is working.

How We Use Your Data

  • To make your experience work: Your email logs you in. Your saves sync across devices. Your check-ins show up on your profile.
  • To run the site: We use analytics to see what's broken or confusing. We read submissions to add new spots. We review editor applications to find people to work with.
  • To contact you: Only if you've submitted a spot, applied to be an editor, or signed up for notifications. We never email without reason.

That's it. We don't use your data to build behavioral profiles, train AI models, or sell to anyone.

What We Don't Do

  • We don't sell your data. No advertisers, no data brokers, no one.
  • We don't use it to manipulate you. We're not tracking your behavior to show you targeted content or make you feel like you need something.
  • We don't share it with third parties. Your data stays with us (except where noted below).
  • We don't optimize for engagement metrics. We're not trying to keep you scrolling. If you find what you need and leave, that's success.
  • We don't use cookies to track you across the web. We use cookies to keep you logged in — that's it.

Your Control

Manage your account

  • Update your email, password, bio, and preferences anytime
  • Make your profile private if you don't want others to see your saves or check-ins
  • Download all your data: check-ins, saves, lists, profile info

Delete your account

You can delete your account and all associated data anytime. Check-ins you posted will be removed. Saves and lists will be deleted. Your account will be gone.

Delete individual items

  • Remove a check-in from your profile
  • Unsave a spot
  • Delete a list you created

Control what's public

  • Choose whether your profile is public or private
  • Choose whether specific lists are public or private
  • Check-ins are public by default (but you control the name you use)

Don't want notifications? Turn them off in your preferences or unsubscribe from any email.

Third Parties

Authentication
We use Supabase Auth for login. Their privacy policy applies to authentication data.
Maps
We use MapBox or Google Maps to show spot locations. Their privacy policies apply to map data.
Hosting & Database
We host on Vercel and use Supabase for the database. Their respective privacy policies apply to infrastructure-level data.
Image Storage
User-uploaded photos (check-ins, profiles) are stored on a secure server. We don't share them with anyone.
Email
We send emails through a standard service. We don't share your email with anyone else.

Security

  • Your password is hashed: We never store or see your actual password. If our database were hacked, attackers would get useless encrypted strings.
  • HTTPS everywhere: All data in transit is encrypted.
  • We don't log passwords: We can't reset your password for you — only you can change it. If you forget, you'll get a secure reset link.
  • Regular backups: We back up your data so we don't lose it. Old backups are kept for a limited time in case something goes wrong.

Data Retention

Your account data
Stays as long as your account exists.
After deletion
We delete your data within 30 days. Backups are purged within 90 days.
Check-ins
Even after you delete a check-in, it may appear in our analytics or backups for a short time. We purge it completely after 30 days.
Server logs
We keep basic access logs for 30 days for security purposes.

Your Rights

You can request:

  • A copy of all your data (we'll send it as a file)
  • Deletion of your account and everything associated with it
  • Correction of your information
  • To know what data we have about you

Email us: privacy@ruhfinds.com

Our Commitment

We're building Ruh Finds for community, not for profit extraction. We believe you deserve to know what we're doing with your information.

If our practices change, we'll tell you clearly — no hidden updates in dense legal language. If we're acquired or shut down, we'll notify you and give you time to download your data.

Questions?

Email us: hello@ruhfinds.com

We'll respond honestly.

Last updated: Spring 2026← Back to Ruh Finds