Privacy Policy
Last Updated: May 6, 2026
Sorto is built with privacy as a core principle. We believe you should always know exactly what data we collect, why we collect it, and what we do — and don't do — with it. This policy is written in plain English because you deserve clarity, not legalese.
1. Who We Are
Sorto ("the App") is developed and operated by Ananta (developed by Ritom).
- Contact Email: hello@ritom.in
- Website: https://sorto.ritom.in
Throughout this policy, "we," "us," and "our" refer to Ananta, and "you" and "your" refer to you, the user.
2. Our Privacy Philosophy
We built Sorto on a simple principle: collect only what we need, protect everything we have, and never exploit your data for profit.
- We do not sell your personal data to anyone — ever.
- We do not build advertising profiles about you.
- We do not serve third-party ads.
- We do not use analytics or tracking SDKs that monitor your behavior.
- We do not access your contacts, location, or any data beyond what is explicitly listed below.
3. Information We Collect
3.1 Account Information (Provided by You)
When you create an account, we collect:
| Data | Purpose | Required? |
|---|---|---|
| Email address | Account authentication, password recovery, and critical account notifications | Yes |
| Password | Securing your account (stored as a salted hash) | Yes (email sign-up) |
| Username | Your unique public identity within the app | Yes |
| Display name | Shown on your public profile | Optional |
If you sign in with Google OAuth, we receive your Google account email, name, and profile photo URL. We do not receive or store your Google password.
3.2 Profile Information (Provided by You)
You may optionally provide a profile photo and bio text.
3.3 User-Generated Content
When you use the App, you create content that we store: Dares, Performer posts, and Proof submissions (video files).
3.4 Financial & Transaction Data
We collect wallet balances, transaction history, and UPI IDs for withdrawals. We do not store card numbers; payments are handled by RevenueCat (Mobile) or Razorpay (Web).
4. How We Use Your Information
- Providing the service — Managing your account and dares.
- Processing payments — Verifying purchases and crediting coins.
- Processing withdrawals — Sending earnings to your UPI ID.
- Delivering notifications — Informing you of dare activity.
- Content moderation — AI-powered moderation (Google Gemini) to detect harmful content.
- Account management — Resets and recovery.
5. Third-Party Services
We use Supabase (Backend), Firebase (Google Sign-In initialization), RevenueCat (Mobile Payments), Razorpay (Web Payments), Google Fonts, and Google Gemini (Server-side moderation).
6. Data Retention
Account data is retained while active and deleted 90 days after deletion request. Proof videos are auto-deleted 30 days after the dare is settled.
7. Your Rights
You have the right to access, correct, and delete your data. Contact us at hello@ritom.in to exercise these rights.
8. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
- Email: hello@ritom.in
- Developer: Ananta