Privacy Policy
Effective: Version 1.0
RingTime LLC ("RingTime," "we," "us," or "our") operates the RingTime equestrian applications and websites. This Privacy Policy explains what personal information we collect, why we collect it, the categories of third parties we share it with, how long we retain it, and the choices and rights available to you. It applies to the products listed in Section 1. It is incorporated by reference into our Terms of Service and our Data-Use and Consent Agreement.
By using our products you acknowledge the practices described here. Where we rely on your consent, we collect it through the mechanisms described in Section 4 and the Data-Use and Consent Agreement.
1. Products this policy covers
- RingTime (iOS/Android) and its server, providing equestrian results, horse and rider tracking, and venue-presence features.
- RingTime Web, the web application for account holders.
- RingTime marketing website, the informational and sign-up site.
Show-management and tenant-specific products operated by RingTime for a particular venue or partner may be governed by an additional, product-specific addendum or agreement, which controls over this policy to the extent of any conflict for data originating in that product.
2. Information we collect
Account and identity. Name, email address, phone number, date of birth (used for age-gating only), USEF number and related equestrian-entity identifiers, your role, and a server-issued account identifier. We may derive a single canonical person identifier to recognize you across our products where you have enabled that linking, as described in Section 5.
Product analytics events. For each in-product event we record the event name, your per-product user identifier, the product surface, applicable venue context, timestamps, a standard property set (application version, platform, release channel, role), and the consent choices in force at the time of the event, as described in Section 4. Event property values are scrubbed of personal and sensitive data before storage: email addresses, phone numbers, raw monetary amounts, and other sensitive fields are removed or coarsened. Monetary values, where retained for analytics, are stored only as a coarse band and never as a raw amount.
Location information. With your permission, we collect GPS and venue-presence information to provide location and venue features. The full-resolution location is used by the app to deliver those features, and only a coarsened copy may be used for analytics. Location is governed by its own permissions (device-level location permission and any in-app venue or background-presence opt-in), separate from analytics consent. You can withdraw location permission at any time through your device settings.
Transaction and financial information. Where you transact through our products, for example entries, charges, payouts, or tickets, we process transaction records as server-authoritative values in integer cents and retain an immutable financial audit trail as required for accounting and tax purposes. Payment card processing is performed by our payment processors, and we do not store full payment card numbers.
Device and technical information. Device model and operating system, locale, time zone, screen geometry, and, where available, cellular carrier, attached as analytics properties; a hashed IP address and a trimmed user-agent string stored on consent records; and crash and error diagnostics.
Session replay and product interaction capture. On the RingTime application and the marketing website we use sampled session replay and automatic interaction capture to understand product usage and diagnose problems. Replay may capture on-screen content; text inputs and images are masked. Declining Analytics consent stops session replay and interaction capture.
3. Categories of service providers and partners
We use the following categories of providers, each engaged under terms that restrict their use of the information to providing services to us:
| Provider | Purpose |
|---|---|
| Product-analytics provider | Product analytics, interaction capture, session replay, and error events |
| Website analytics and performance provider | Website page views and performance metrics |
| Error-monitoring provider | Application error monitoring (personal data scrubbed) |
| Payment and subscription processors | Payment and subscription processing (system of record for transactions) |
| Mapping providers | Maps and location display (not analytics) |
| Transactional email provider | Account and contact-form email |
| Edge data-store provider | Rate-limiting and a short-lived consent audit buffer |
| Cloud infrastructure provider | Identity, storage, and our first-party data platform (our own infrastructure) |
| Bot-defense provider | Automated-abuse defense (no personal data) |
First-party data is stored in our own cloud infrastructure account. We do not sell your identity. Our analytics and any monetization are based on aggregated and de-identified insight and hashed audience segments only.
4. Your consent choices
You control the following optional uses. Each is recorded as an immutable, versioned consent record (the value set, the policy version in force, the source of the choice, a hashed IP, and a timestamp). You can change any of these at any time in the app or site settings.
| Choice | Meaning | Default |
|---|---|---|
| Analytics | Core service operation and product analytics | Required to use the product (declining routes you to minimal mode) |
| Unified profile | Link your RingTime accounts into one profile | Optional; opt-in where law requires |
| Ad targeting | Personalized advertising | Optional; off for minors; off under Global Privacy Control |
| Data sharing | Include your de-identified activity in industry insights | Optional |
| Third-party sharing | Share your data with outside partners | Off by default; never enabled by a single tap |
5. Cross-product linking (unified profile)
If you enable unified profile, we link your identities across our products into one canonical profile, joined on shared signals such as USEF number, hashed email, and hashed phone. Identity-join keys are stored hashed, never as raw email or phone. Where your accounts are linked, the consent applied to your data is the most restrictive setting across all linked products: turning a use off on any one product turns it off for the linked profile.
6. How long we keep information
- Consent records are retained on an immutable, write-once basis for a defined audit period.
- Behavioral and audit events: generic event rows in the operational store expire on a short rolling window, and de-identified and aggregated data in our analytics store is retained longer for analytics.
- Financial records are retained as required by accounting and tax obligations.
- Analytics store data is retained for analytics and is subject to deletion or compaction upon a verified deletion request.
7. Your rights and choices
Depending on your jurisdiction, you may have some or all of the following rights. We honor them regardless of jurisdiction where practicable.
- Access, export, and deletion. Request a copy or deletion of your personal information; we propagate the request across our stores and record it in a request ledger.
- Opt out of sale, sharing, and targeted advertising. We honor Global Privacy Control signals automatically (advertising and third-party sharing off). An opt-out propagates to your linked profile.
- Granular consent. Change any of the choices in Section 4 at any time.
- Non-discrimination. We will not deny you the core service for exercising these rights.
- Appeal. Where required by law, you may appeal a denied request using the contact in Section 9.
To exercise any right, use the contact in Section 9 or the in-app controls. We may need to verify your identity before acting.
8. Children
The product is not directed to children under 13, and we do not knowingly collect personal information from children under 13. We age-gate at signup and block registration by anyone under 13. Users between 13 and the age of majority are routed to a minimal experience: optional data uses are off, and they are never shown ad-targeting consent. If we learn we have collected information from a child under 13 without verifiable parental consent, we will delete it.
9. Contact
RingTime LLC
210 Sandy Ridge, Mt. Airy Rd, Stockton, NJ 08559
Privacy contact: help.ringtime@gmail.com
10. Changes to this policy
We may update this policy. Material changes will be reflected in a new policy version, and where the change affects your consent we will re-prompt you. The effective date and version above identify the current version.
