Rooted

Privacy Policy

Last updated: December 6, 2025

Introduction

Rooted ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (collectively, the "Service"). Please read this policy carefully.

By using Rooted, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

Information We Collect

Personal Information

When you create an account, we collect:

  • Email address
  • Name (first name)
  • Password (encrypted and never stored in plain text)
  • Phone number (optional, only if you choose to enable SMS notifications)

Phone Numbers and SMS

If you choose to enable SMS text notifications, you may provide your phone number. Phone numbers are:

  • Verified through a secure verification code process
  • Used solely to send you notifications you explicitly requested
  • Never sold, shared, or used for marketing by third parties
  • Stored securely in our database with limited access
  • Can be removed at any time from your settings

SMS notifications are provided by Twilio, Inc. By enabling SMS notifications, you consent to receive text messages from Rooted via Twilio. Standard message and data rates from your mobile carrier may apply. You can opt out at any time by replying STOP to any text message or by removing your phone number in your account settings.

User-Generated Content

We store content you create while using the Service, including:

  • Journal entries
  • Shadow work reflections
  • Deconstruction reflections
  • Practice favorites and bookmarks
  • Course progress and completions

Your content is private. We do not share, sell, or use your personal journal entries or reflections for any purpose other than providing the Service to you. Your content is isolated to your account and not visible to other users or third parties.

Usage Data

We automatically collect certain information when you use the Service:

  • Device type and browser information
  • IP address
  • Pages visited and features used
  • Timestamps of activity
  • Referral source (how you found our site)

Cookies and Tracking

We use session cookies to maintain your login state and provide core functionality. We use Cloudflare for hosting, which may set cookies for performance and security purposes. We do not use third-party advertising cookies or invasive tracking technologies.

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Create and manage your account
  • Store and display your personal content (journals, reflections)
  • Send you important Service updates (password resets, policy changes)
  • Respond to your questions and support requests
  • Monitor and analyze usage patterns to improve features
  • Detect and prevent fraud, abuse, or security issues

We do not:

  • Sell your personal information to third parties
  • Use your journal entries or reflections for marketing or data analysis
  • Share your content with other users without your explicit consent
  • Send promotional emails without your permission

Data Storage and Security

Your data is stored on Cloudflare's secure infrastructure. We use industry-standard security measures including:

  • Encrypted connections (HTTPS/SSL)
  • Encrypted password storage (bcrypt hashing)
  • Access controls and authentication
  • Regular security updates and monitoring

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but take reasonable measures to protect your data.

Third-Party Services

We use the following third-party services:

  • Cloudflare - Hosting, CDN, and security services
  • Affiliate partners - We may include affiliate links to books, resources, or tools (Amazon, etc.). See our Affiliate Disclosure for details.

These third parties have their own privacy policies. We are not responsible for their practices.

Your Rights and Choices

Access and Control

You have the right to:

  • Access your personal information
  • Update or correct your information
  • Delete your journal entries or reflections at any time
  • Export your data (contact us for assistance)
  • Delete your account and all associated data

GDPR Rights (European Users)

If you are in the European Economic Area, you have additional rights including:

  • Right to data portability
  • Right to object to processing
  • Right to restrict processing
  • Right to withdraw consent

CCPA Rights (California Users)

California residents have the right to:

  • Know what personal information is collected
  • Know whether personal information is sold or disclosed
  • Request deletion of personal information
  • Opt-out of the sale of personal information (we do not sell data)

Children's Privacy

Our Service is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will delete that information.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

Email: privacy@berooted.me

Ready when you are

Reclaim curiosity at your own pace.

Create a free account Browse articles