Privacy Policy

Last Updated: April 10, 2026

Welcome to Aphrodites Rings. At Hephastos LLC, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, share, and protect your data when you use the Aphrodites Rings mobile application and our website at hephastos.io.

By using Aphrodites Rings, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.

1. Information We Collect

Authentication Data

When you create an account with Aphrodites Rings, we collect:

  • Name
  • Email address
  • Password (encrypted and securely stored via Firebase Authentication)
  • Authentication method (email/password)

Health Data

Aphrodites Rings collects real-time heart rate data to enable the Heart Ring sharing features. We collect this data from various sources:

  • Bluetooth LE Heartrate Monitors: Real-time heart rate data from various heartrate monitors such as smart rings connected via Bluetooth Low Energy

Heart rate data is collected in real-time and shared only within your Heart Rings (groups you create or join). This data is used solely for the purpose of sharing your wellness status with invited members.

Usage Analytics

We use Google Analytics to collect information about how you use our app and website:

  • Pages and screens viewed
  • Features used and frequency of use
  • Session duration and frequency
  • App crashes and performance metrics
  • General usage patterns

Device Information

We automatically collect certain device information, including:

  • Device type and model
  • Operating system and version
  • App version
  • Unique device identifiers
  • Mobile network information

What We Do NOT Collect

We want to be transparent about what we do not collect:

  • Location data (GPS coordinates or precise location)
  • Contacts from your device
  • Photos, videos, or other media files
  • Browsing history outside our app
  • Other health data beyond heart rate

2. How We Use Your Information

We use the collected information for the following purposes:

  • Authentication and Account Management: To create and manage your account, verify your identity, and provide secure access to our services
  • Heart Ring Feature: To enable real-time heart rate sharing with invited members of your Heart Rings
  • App Functionality: To provide, maintain, and improve the features and functionality of Aphrodites Rings
  • Performance and Analytics: To analyze usage patterns, identify bugs, and improve user experience
  • Communication: To send you important updates about our services, including changes to this Privacy Policy or Terms of Service
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes

3. Heart Ring Data Sharing

Important: How Your Heart Rate Data is Shared

The Heart Ring feature is the core of Aphrodites Rings. It’s essential to understand how your heart rate data is shared.

Invitation-Based Group Sharing

Heart Rings operate on an invitation-based model:

  • You Control Who Sees Your Data: Your real-time heart rate data is shared ONLY with people you explicitly invite to your Heart Ring
  • Explicit Opt-In Required: Invited users must accept your invitation before they can see your heart rate data
  • NOT Public: Your heart rate data is never publicly visible or searchable by other Aphrodites Rings users
  • NOT Fully Private: When you create or join a Heart Ring, multiple people in that ring can see your real-time heart rate simultaneously
  • You Can Leave Anytime: You can leave a Heart Ring or remove members at any time through the app settings

How It Works

When you’re part of a Heart Ring:

  • Your current heart rate is visible to all members of that Heart Ring in real-time
  • Members can see when your heart rate increases or decreases
  • This enables shared meditation, mindfulness practices, and emotional connection
  • Historical heart rate data is not stored or shared; only real-time data is visible

By using the Heart Ring feature, you acknowledge and consent to this controlled sharing of your heart rate data with invited members.

4. Third-Party Services and Data Processors

Aphrodites Rings integrates with the following third-party services to provide our functionality:

Firebase (Google Cloud Platform)

We use Firebase for authentication, database, and hosting services:

  • Purpose: User authentication, data storage, real-time database, cloud hosting
  • Data Location: US servers
  • Data Shared: Email, username, encrypted password, heart rate data, user preferences
  • Privacy Policy: Firebase Privacy Policy

Google Analytics

We use Google Analytics to understand how users interact with our app and website:

  • Purpose: Usage tracking, analytics, and app improvement
  • Data Shared: Device information, usage patterns, session data (anonymized)
  • Opt-Out: You can opt out of Google Analytics tracking by adjusting your device settings or using browser extensions
  • Privacy Policy: Google Privacy Policy

Bluetooth LE Heart Rate Monitors

If you connect a heart rate monitor to Aphrodites Rings:

  • Purpose: Collect real-time heart rate data from proprietary/custom Bluetooth Low Energy heart rate monitors
  • Data Processing: Heart rate data is processed locally on your device and NOT transmitted to Firebase servers
  • No Manufacturer Sharing: Your heart rate data is NOT shared with the smart ring manufacturer
  • Local Connection: Bluetooth connections are established directly between your mobile device and the heart rate monitor

5. Data Storage and Security

We take the security of your personal information seriously and implement industry-standard measures to protect it:

Data Location

All user data is stored on Firebase servers located in the United States. Firebase complies with industry-standard security practices and regulations.

Security Measures

  • Encryption in Transit: All data transmitted between your device and our servers is encrypted using HTTPS/TLS protocols
  • Encryption at Rest: Sensitive data stored in our database is encrypted at rest
  • Password Security: Passwords are hashed and encrypted using Firebase Authentication’s secure methods
  • Access Controls: Strict access controls limit who can access user data within our organization
  • Regular Security Audits: We regularly review and update our security practices

While we implement strong security measures, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security but continuously work to protect your information.

6. Data Retention

Active Accounts

While your account is active, we retain your personal information to provide our services.

Account Deletion

Important: Immediate Data Deletion

When you delete your Aphrodites Rings account through the app settings, all of your personal data is IMMEDIATELY deleted from our servers. There is no grace period or data retention after account deletion.

Please note:

  • Account deletion is permanent and cannot be undone
  • Cached data may remain on your device until you uninstall the app
  • Aggregated, anonymized analytics data may be retained for statistical purposes, but this data cannot be linked back to you
  • Legal records required for compliance purposes may be retained in accordance with applicable laws

7. Your Rights

GDPR Rights (European Union Users)

If you are located in the European Union, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data (delete your account)
  • Right to Data Portability: Request a copy of your data in a machine-readable format
  • Right to Object: Object to processing of your personal data for certain purposes
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Withdraw Consent: Withdraw previously given consent at any time

CCPA Rights (California Users)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request information about the personal data we collect, use, and share
  • Right to Delete: Request deletion of your personal data
  • Right to Opt-Out: Opt out of the sale of your personal data (Note: We do NOT sell your personal data)
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

Exercising Your Rights

To exercise any of these rights:

  • Account Deletion: Delete your account directly through the app settings
  • Data Export or Other Requests: Contact us at legal@hephastos.io

We will respond to your request within 30 days as required by applicable law.

8. Children’s Privacy (COPPA Compliance)

Age Requirement: 16+

Aphrodites Rings is not intended for use by individuals under the age of 16. You must be at least 16 years old to create an account and use our services.

We do not knowingly collect personal information from children under 16 years of age. If we discover that we have inadvertently collected personal information from a child under 16, we will:

  • Immediately delete that child’s account and all associated data
  • Terminate access to our services
  • Not use or disclose the information

If you are a parent or guardian and believe your child under 16 has provided us with personal information, please contact us immediately at legal@hephastos.io.

9. International Data Transfers

Aphrodites Rings is based in the United States, and our servers are located in the United States. If you access our services from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States.

The United States may have different data protection laws than your country. However, we are committed to protecting your personal information in accordance with this Privacy Policy and applicable laws.

For users in the European Union and United Kingdom, we rely on standard contractual clauses approved by the European Commission to ensure adequate protection for your personal data during international transfers.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes to this Privacy Policy, we will:

  • Update the “Last Updated” date at the top of this page
  • Send you an email notification at the email address associated with your account
  • Display a prominent notice in the app

We conduct an annual review of this Privacy Policy to ensure compliance with the California Consumer Privacy Act (CCPA) and other applicable regulations.

Your continued use of Aphrodites Rings after any changes to this Privacy Policy constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Hephastos LLC PO Box 33 Pound Ridge, NY 10576 United States

Email: legal@hephastos.io

We will respond to your inquiry as promptly as possible, typically within 30 days.

By using Aphrodites Rings, you acknowledge that you have read and understood this Privacy Policy.