BikeTrack – Privacy Policy

This Privacy Policy explains how the app BikeTrack handles information. BikeTrack is designed with a local‑first approach: your ride sessions and user data are stored on your device by default and the App works offline. Optional cloud features use Google Firebase.

Summary

• Local‑first: Core data (sessions, user info) is stored in a local SQLite database on your device.
• Optional cloud: If you enable sync or leaderboard features, data may be sent to Firebase (Firestore/Storage/Auth).
• No sale of data: We do not sell your personal information.
• Security: We use Firebase App Check and Firestore Security Rules to protect backend resources.
• Control: You can keep data local, remove the App to delete local data, and contact us to delete cloud data.

Information We Handle

On your device (offline by default)

• Ride sessions, statistics, and user profile data stored in SQLite.
• Preferences and UI settings stored via SharedPreferences.
• NFC card identifiers and related session data for your bike sessions.

Sent to Firebase (only if you use cloud features)

• Basic user identifiers (e.g., user ID, display name) to enable sync and leaderboard.
• Aggregated session data (e.g., totals, counts) necessary to show rankings or restore data across devices.
• Authentication tokens (e.g., anonymous sign‑in) to securely access your data.

Location: This version of the App does not collect precise location. Network status may be read to optimize connectivity (e.g., online/offline detection).

How We Use Information

• Provide and improve core features (session tracking, visualization).
• Enable optional sync and leaderboard functionality via Firebase.
• Maintain security (App Check) and prevent abuse.

Sharing and Disclosure

• We do not sell your personal information.
• We may share data with service providers (e.g., Google Firebase) solely to operate the App.
• We may disclose information if required by law or to protect our rights and users.

Data Retention

• Local data: Remains on your device until you delete it or uninstall the App. Some apps provide an in‑app reset; otherwise uninstalling removes local data.
• Cloud data: Retained while your account exists or until you request deletion.

Security

• Transport encryption (HTTPS) for data sent to Firebase.
• Firebase App Check (Play Integrity on Android, platform‑specific on iOS) to help block abusive traffic.
• Firebase Security Rules restrict access to authorized users.

Your Choices

• Use the App offline and keep data local.
• Request deletion of your cloud‑stored data by contacting us (see Contact).

Children’s Privacy

The App is not directed to children under 13. If you believe we have collected data from a child, contact us to request deletion.

International Transfers

Firebase may process data on servers outside your country. We rely on their safeguards as described in Google’s documentation.

Changes to This Policy

We may update this Policy. Material changes will be posted on this page with a new effective date.

Contact

Questions or requests (including data deletion)? Email us at tobyvanwaale@gmail.com.

Third‑party services used: Google Firebase (Authentication, Firestore, Storage, Analytics). See Google’s privacy documentation for details.