Privacy Policy
Last updated: May 15, 2025
Ember Rise Wellness LLC ("we", "our", or "us") is committed to protecting your privacy and safeguarding your personal data. This Privacy Policy explains what information we collect, why we collect it, how it is used, and how you can control it. It applies to all services and offerings provided by Ember Rise Wellness, including but not limited to:
- Short on Spoons
- Echo Flow
- The Alignment Equation
- Our websites, mobile apps, and online content
By using any of our services, you agree to the practices described in this policy.
1. What Information We Collect
We collect two categories of information: personal data you provide directly and data collected automatically.
Information you provide directly:
- Full name
- Date of birth
- Email address
- Account login credentials
- Responses to journal prompts, mood entries, coping skills, or course reflections
- Information entered into custom fields (such as symptoms, meals, or notes)
- Messages or inquiries submitted via contact forms or email
- Optional profile data (such as your short description)
- Preferences for communications or app features
We do not collect sensitive health, biometric, or financial data directly. All input related to wellness or symptoms is voluntary and user-submitted.
Information we collect automatically:
- Device type, browser type, and operating system
- IP address and general geographic location
- Usage data (pages visited, time spent, clicks, features accessed)
- Referral URLs and outbound links
- App crash logs and diagnostics
- Subscription status (via RevenueCat)
We do not use cookies for advertising or sell your data to advertisers.
2. How We Use Your Information
We collect and process your data for the following purposes:
- To create and manage your user account
- To provide access to our wellness tools and resources
- To personalize your experience across our platforms
- To analyze performance and improve our apps and website
- To deliver updates, announcements, or educational content
- To provide technical support or respond to inquiries
- To detect and prevent unauthorized access or abuse of services
- To fulfill legal, regulatory, or contractual obligations
We only process data where there is a valid legal reason to do so.
3. Legal Bases for Processing (GDPR)
If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction governed by the General Data Protection Regulation (GDPR), we are required to explain the legal grounds under which we process your personal data.
We only process your personal information when we have a lawful basis to do so. These include the following:
a. Consent
We may process your information when you have clearly given us permission. This applies when:
- You create an account and provide your name, date of birth, and email address
- You subscribe to receive newsletters or updates
- You fill out wellness-related entries, symptom logs, or mood journals, etc.
- You participate in a course, challenge, or other opt-in content
- You consent to the use of analytics or cookies (where applicable)
You can withdraw your consent at any time by updating your preferences or contacting us.
b. Contractual Necessity
We may process your data to fulfill a contract or provide services you requested. This includes:
- Creating and maintaining your account
- Giving you access to paid subscriptions, courses, or applications
- Responding to support requests
- Providing features that rely on stored user input (such as personalized dashboards)
Without this data, we would be unable to deliver the services you expect.
c. Legal Obligation
We may process your data if we are required to do so by law. This includes:
- Complying with tax or financial reporting laws
- Responding to legal requests or court orders
- Maintaining records for compliance with regional data regulations
d. Legitimate Interests
We may process limited personal data where it is in our legitimate interest and does not override your rights or freedoms. For example:
- Improving user experience by analyzing feature usage
- Monitoring for security threats, abuse, or suspicious activity
- Sending administrative updates about our terms or platform status
- Aggregating non-identifiable data to understand trends and preferences
We always balance our legitimate interests with your privacy expectations and take measures to minimize impact.
5. Third-Party Services We Use
Below are the third-party providers we use, how we use them, and where to read their privacy policies:
Firebase by Google
We use Firebase for authentication, secure cloud storage, crash reporting, and user-specific data management.
Privacy Policy →RevenueCat
RevenueCat manages subscription status and access permissions across Apple App Store and Google Play. We do not process or store purchase data directly.
Privacy Policy →Stripe
Stripe processes payments for web-based purchases. Ember Rise Wellness never sees or stores your card number. Stripe handles all PCI compliance and payment security.
Privacy Policy →Google Analytics
Google Analytics tracks aggregated usage data to help us improve performance and understand how people interact with our site. We do not use this data for advertising.
Privacy Policy →MailerLite
MailerLite is used to manage email communications such as onboarding messages, updates, and community support. You may opt out at any time.
Privacy Policy →Vercel
Vercel hosts and deploys our website, enabling fast and secure delivery of web content globally.
Privacy Policy →These services process your data on our behalf under strict privacy obligations.
7. Your Rights Under GDPR and Other Privacy Laws
Depending on your location, you have the right to:
Access
Request a copy of your personal data
Correction
Update inaccurate or incomplete data
Deletion
Request removal of your personal data
Restriction
Limit how we use your data
Portability
Request transfer of your data to another organization
Object
Object to the processing of your data
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless required by law to retain it longer.
When we no longer need your data, we will securely delete it or anonymize it so that it can no longer be associated with you.
9. Data Security
We implement a variety of security measures to protect your personal data from unauthorized access, use, disclosure, alteration, or destruction.
These measures include encryption, secure servers, and regular security audits to ensure the integrity and confidentiality of your data.
10. International Data Transfers
Your data may be transferred to and processed in countries outside of your home country, including the United States.
We ensure that any transfer of your data complies with applicable data protection laws and regulations.
11. Children's Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect personal data from children.
If we become aware that we have collected personal data from a child under the age of 13, we will take steps to delete that data.
12. Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other legal, regulatory, or operational reasons.
Any changes to this policy will be posted on this page with a new last updated date. We encourage you to review this policy periodically to stay informed about how we are protecting your data.
13. Contact Us
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:
You can also reach out to us via our Contact Form.
© 2025 Ember Rise Wellness