Last updated: July 7, 2026
Draft. This policy will be finalized before the App Store submission.
Riff is a messenger where you and your friends create things together with an AI participant. That shapes what we process and why.
Riff's AI is a participant in your chats. To respond, recent messages in a chat (roughly the last 30) are sent to our AI model providers when the AI is invoked — and, in chats where you turn on ambient mode, each message is evaluated so the AI knows when to chime in. Because of this, Riff chats are not end-to-end encrypted; our servers can read them in order to make the product work.
Chat excerpts and photos you ask Riff to remix are processed by third-party AI providers (Anthropic for language, image-generation providers for media). Anthropic retains API data for up to 30 days and does not use it to train models. We send only what a request needs — the trailing context window, not your full history.
Photos you send, and everything Riff generates, are stored so your chats work across devices. When you share a creation outside Riff, we render a public preview page at riff.space and count views and invite claims on it.
If you allow contacts access, phone numbers are hashed (SHA-256 of the normalized number) on your device before being sent, only to show which friends are already on Riff. Your raw contact book never leaves your phone and is never stored by us.
You sign in with your phone number (SMS code, via Firebase Authentication). We store your number's hash, display name, and avatar.
Prompts and generated content are screened automatically for prohibited content (e.g., sexual content involving real people's photos, content involving minors, harassment). Anything you report in-app or on a share page may be reviewed by us.
You can delete your account in the app; this removes your profile and revokes your access. Contact support for deletion requests or questions.
Questions: see the support page.