Privacy Policy
Adulting Academy by RLL — Last updated: March 2026
Overview
Adulting Academy is an educational application developed by RLL. We are committed to protecting your privacy and being transparent about how we handle your information.
Data We Collect
When you create an account, we collect:
- Email address — for authentication and account recovery
- Display name — shown in your profile
- Password — stored as a bcrypt hash (we never store plaintext passwords)
- Life stage selection — your chosen age range for personalized content
When you use the app, we store:
- Module completion status and quiz scores
- Life Points balance, streak history, and achievement progress
- Daily challenge completions
- Shop purchases and checklist progress
- Theme preference (light/dark)
How Data Is Stored
Local storage: Your progress data is stored locally on your device using browser localStorage. This data works offline and syncs to your account when connected.
Cloud storage: If you create an account, your progress is also synced to our secure database (Neon PostgreSQL hosted on AWS) to enable cross-device access. We use a server-wins merge strategy — your highest scores and most complete data are preserved.
AI Coach (ARIA)
Adulting Academy includes ARIA, an AI-powered coaching feature. When you interact with ARIA:
- Your messages are sent to OpenAI's API for processing
- We do not store conversation history on our servers
- OpenAI processes your messages per their API data usage policy — API inputs are not used to train their models
- ARIA is rate-limited to 30 requests per hour for free users
Payment Processing
Premium subscriptions are processed through Stripe. When you subscribe:
- Payment details are collected and stored by Stripe — we never see or store your full card number
- We store your Stripe customer ID and subscription status to manage your plan
See our payment processor's privacy policy for details on how they handle payment data.
Premium subscriptions are processed through in-app purchase. When you subscribe:
- Payments are managed through your Apple ID and subject to Apple's privacy practices
- We receive a transaction receipt to verify your subscription status — we never see your payment details
- We store your subscription status to manage your plan
Analytics
We collect anonymous usage analytics only with your explicit consent (GDPR opt-in). Analytics include:
- Session duration and heartbeat data
- Feature usage events (anonymized)
- No personally identifiable information is included in analytics
You can opt out of analytics at any time through the app settings.
What We Do NOT Collect
- Your location or precise geolocation data
- Device identifiers (IDFA, IDFV) for advertising
- Cross-site tracking or advertising cookies
- Contacts, photos, or other device data
- Health or biometric data
Third-Party Services
- Self-hosted fonts — Inter and Nunito typography are bundled with the app (no external requests to Google).
- OpenAI — ARIA AI coach processing. Subject to OpenAI's API data usage policy.
- Stripe — payment processing for premium subscriptions (web only).
- In-App Purchase — payment processing for premium subscriptions.
- Netlify — application hosting and serverless functions.
- Neon — PostgreSQL database hosting (AWS us-east-2).
Your Rights
You have full control over your data:
- Access: View all your stored data through the app
- Export: Use Settings → Export Data to download a JSON backup
- Delete: Use Settings → Delete Account to permanently erase all your data from our servers and your device
- Opt out: Disable analytics consent at any time
- Portability: Your exported data is in standard JSON format
For GDPR (EU), CCPA (California), and similar privacy law requests, contact us at the information below.
Data Retention
We retain your account data for as long as your account is active. If you delete your account, all associated data is permanently removed from our servers immediately. Local browser data is also cleared upon account deletion.
Security
We protect your data with:
- Bcrypt password hashing
- JWT authentication with 7-day token expiry
- HTTPS encryption for all data in transit
- Database connection encryption (SSL/TLS)
- CORS restrictions to authorized domains only
Children's Privacy (COPPA)
Adulting Academy is designed for adults aged 18 and older. We do not knowingly collect information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly.
Changes to This Policy
We may update this privacy policy periodically. The "Last updated" date at the top will reflect any changes. Continued use of the app after changes constitutes acceptance of the updated policy.
Contact
For privacy questions or data requests, contact:
RLL
Email: privacy@reaveslabs.ai
Phone: 1-818-722-6126
Website: adulting-academy.netlify.app