Privacy Policy

Last updated: February 14, 2026

1. Introduction

Ripped ("we", "our", or "us") operates two connected services under the ripped.club platform:

  • Ripped (ripped.club) — a social media platform for fitness enthusiasts to share progress, connect with others, and discover gyms. Available on web and as the "Ripped" mobile app.
  • X by Ripped (ripped.club/x) — a gym management application for gym owners, managers, and staff to manage members, track leads, schedule follow-ups, and view business analytics. Available on web and as the "X by Ripped" mobile app.

Together, these are referred to as the "Service" in this Privacy Policy. This policy explains how we collect, use, disclose, and safeguard your information across both products, including their respective websites and mobile applications.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Ripped Social Platform — User Information

When you create a Ripped account, we collect:

  • Name, username, email address, and phone number
  • Profile information (bio, profile photo, fitness interests)
  • Posts, comments, and social interactions you make on the platform
  • Login credentials (passwords are stored encrypted and never in plain text)

2.2 X by Ripped — Gym Owner/Staff Information

When gym owners or staff register on X by Ripped, we collect:

  • Name, email address, and phone number
  • Gym/business name and branch information
  • Login credentials (passwords are stored encrypted and never in plain text)
  • Role and permission level within the gym account

2.3 X by Ripped — Member and Lead Data

Gym owners and staff enter information about their gym members and prospective leads. This data is entered voluntarily by the gym and may include:

  • Member/lead name, phone number, and email address
  • Membership status, plans, and payment history
  • Member photographs (uploaded by gym staff for identification purposes)
  • Follow-up notes and interaction history
  • Lead source and conversion status

Gym owners are responsible for obtaining appropriate consent from their members before entering personal data into the app. We act as a data processor on behalf of the gym (data controller) for this information.

2.4 Camera and Photo Library Access

The "X by Ripped" app requests access to your device's photo library to allow gym staff to upload photographs of gym members for identification and record-keeping purposes. Specifically:

  • What we access: Photo library (to select and upload member photos)
  • Why we access it: To attach a profile photo to a gym member's record, helping gym staff identify members
  • When we access it: Only when you explicitly tap the "Choose Photo" button while adding or editing a member
  • What we store: Only the selected photo is uploaded to our servers and associated with the member record. We do not access, scan, or store any other photos from your library

You can deny photo library access at any time through your device settings. The app will continue to function normally without this permission — you simply won't be able to attach photos to member profiles.

2.5 Automatically Collected Information

When you use our Service, we may automatically collect:

  • Device information (device type, operating system version, unique device identifiers)
  • App usage data (screens visited, features used, session duration)
  • IP address and approximate location (country/region level only)
  • Crash reports and performance data

3. How We Use Your Information

3.1 Ripped Social Platform

We use your information to:

  • Provide, operate, and maintain the social platform
  • Display your profile and posts to other users
  • Enable social features such as following, commenting, and sharing
  • Personalize your feed and content recommendations
  • Send notifications about social activity relevant to you

3.2 X by Ripped

We use your information to:

  • Provide, operate, and maintain the gym management Service
  • Authenticate your identity and manage access to your gym account
  • Store and display gym member and lead records as entered by you
  • Generate dashboard analytics and reports for your gym

3.3 Both Services

Across both products, we use information to:

  • Send transactional notifications related to your account
  • Respond to your support requests and inquiries
  • Monitor and improve app performance and reliability
  • Detect, investigate, and prevent unauthorized access or fraud

4. Data Isolation (X by Ripped)

On the X by Ripped gym management platform, each gym operates within its own isolated account. This means:

  • Member and lead data entered by one gym is never visible to another gym
  • Staff members can only access data for the gym(s) they are authorized to manage
  • Dashboard analytics are scoped to your gym's data only
  • Deleting your gym account removes all associated member and lead data

5. Information Sharing and Disclosure

We may share your information only in the following circumstances:

  • Service Providers: We use trusted third-party services for hosting, storage, and analytics that may process data on our behalf, subject to confidentiality obligations
  • Legal Requirements: When required by law, regulation, legal process, or enforceable governmental request
  • Safety: To protect the rights, property, or safety of Ripped, our users, or the public
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, in which case you would be notified

On the Ripped social platform, your profile, posts, and social activity are visible to other users as part of the platform's functionality. Private account settings are respected where applicable.

We do not sell, rent, or trade your personal information or your gym members' data to any third party.

6. Data Storage and Security

We implement appropriate technical and organizational measures to protect your data:

  • All data is transmitted over HTTPS/TLS encryption
  • Passwords are hashed using industry-standard algorithms and never stored in plain text
  • Authentication tokens are stored securely on your device using encrypted storage
  • Database access is restricted and protected by authentication
  • Server infrastructure is hosted on secure, access-controlled servers

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to following best practices.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide our Service. Specifically:

  • Account data is retained while your account is active
  • Posts and social content on Ripped are retained while your account is active
  • Gym member and lead data (X by Ripped) is retained as long as the gym account exists
  • Uploaded photos are retained as long as the associated record exists
  • You may request deletion of your account and all associated data at any time
  • Upon account deletion, all data is permanently removed within 30 days

8. Your Rights

You have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data and account
  • Export: Request a portable copy of your data
  • Restriction: Request restriction of processing in certain circumstances
  • Withdraw Consent: Withdraw previously given consent at any time

To exercise any of these rights, contact us at privacy@ripped.club. We will respond to your request within 30 days.

Gym members whose data has been entered into the app by a gym should contact the respective gym directly to exercise their data rights. The gym, as the data controller, is responsible for responding to such requests.

9. Device Permissions (Mobile Apps)

Our mobile apps may request the following device permissions:

PermissionPurposeAppRequired
Photo LibrarySelect photos for gym member profilesX by RippedOptional
InternetCommunicate with servers to sync dataBothRequired
Secure StorageSecurely store authentication tokensBothRequired

All optional permissions can be revoked at any time through your device's settings. The app will continue to function without optional permissions, with the related features being unavailable.

10. Cookies and Web Tracking

On our website (ripped.club), we use cookies and similar technologies to:

  • Maintain your login session
  • Remember your preferences
  • Analyze site usage to improve our Service

The mobile app does not use cookies. It uses secure on-device storage for authentication tokens only.

11. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately at privacy@ripped.club and we will promptly delete such information.

12. Third-Party Services

Our Service may use the following categories of third-party services:

  • Cloud Hosting: For storing application data and uploaded files
  • Analytics: For understanding app usage patterns (aggregated, non-personal data)
  • Expo Updates: For delivering over-the-air app updates

These third-party services have their own privacy policies. We encourage you to review them.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page, updating the "Last updated" date, and where appropriate, notifying you via the app or email. We encourage you to review this policy periodically. Continued use of the Service after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy, your data, or our practices, please contact us:

Apps: Ripped, X by Ripped

Developer: Ripped

Email: privacy@ripped.club

Website: https://ripped.club