Trackerio
1. Introduction and Data Controller
Trackerio (“we”, “us”, “our”, “the App”) is a mobile application for tracking earnings, expenses, and statistics for couriers and delivery drivers. This Privacy Policy explains what personal data we collect, how we process it, the legal bases for processing, and your rights under the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Data Controller: Trackerio
Contact: [email protected]
2. What Data We Collect
2.1 Data stored locally on your device
Most data is stored exclusively locally in an encrypted database on your phone:
- Shift records (start/end times, duration, distance, odometer readings)
- Platform income (amounts, platform names, tips, bonuses)
- Expenses (parking, fuel, maintenance, tolls, etc.)
- Vehicle information (name, fuel consumption, depreciation rates)
- Fixed costs (insurance, leasing, subscriptions, etc.)
- App settings and user preferences
We have no access to this data. It is stored only on your phone.
2.2 Location data (GPS)
- GPS coordinates are collected only during active shift tracking and only when you have explicitly enabled GPS tracking mode and granted location permissions on your device.
- GPS data is stored locally on your device.
- GPS data is never transmitted to our servers.
- If you enable cloud backup, GPS data is encrypted with your passphrase and stored on your own Google Drive.
- You can disable GPS tracking at any time in the App or by revoking location permissions in your device settings.
2.3 Google account data (optional)
- If you sign in via Google Sign-In (for the backup feature), we receive your email address and basic Google profile information (name, profile picture).
- We use this data exclusively for authentication and backup management.
- Backups are stored on your own Google Drive, not on our servers.
Legal basis: Consent (GDPR Art. 6(1)(a)) — you choose to sign in.
2.4 Subscription and purchase data
- Premium subscriptions are processed through Google Play Billing and managed by RevenueCat.
- We do not collect or store your payment card details, billing address, or other financial information. All payment processing is handled by Google Play.
- RevenueCat receives an anonymized app user identifier to manage your subscription status. RevenueCat Privacy Policy.
Legal basis: Performance of a contract (GDPR Art. 6(1)(b)).
2.5 Analytics data
- The App uses Firebase Analytics to collect anonymous, aggregated usage statistics (e.g., app launches, screen views, feature usage frequency).
- This data is anonymized and cannot be used to identify you personally.
- No personally identifiable information is included in analytics data.
- You can limit analytics data collection through your device’s privacy settings.
Legal basis: Legitimate interest (GDPR Art. 6(1)(f)) — to improve the App.
2.6 Crash reports
- The App may use Firebase Crashlytics to collect anonymous crash reports and diagnostic information.
- This data includes device type, operating system version, and stack traces, but does not include your personal data or App content.
Legal basis: Legitimate interest (GDPR Art. 6(1)(f)) — to maintain App stability.
3. How We Use Your Data
We process your data for the following purposes:
- Providing App functionality – shift tracking, profit calculations, statistics, reports, and exports.
- Cloud backup and restore – securely backing up your data to your Google Drive (when you enable this feature).
- Subscription management – verifying your Premium subscription status.
- App improvement – anonymous analytics to understand usage patterns and improve the App.
- Bug fixing – anonymous crash reports to identify and fix technical issues.
We never sell your personal data to third parties. We do not use your data for advertising or profiling.
4. Data Sharing with Third Parties
We share data only with the following service providers, strictly as necessary for the App to function:
| Service Provider | Purpose | Data Shared |
|---|---|---|
| Google (Firebase Auth) | Account authentication | Email, basic profile |
| Google Drive API | Cloud backup (to your Drive) | Encrypted backup data |
| RevenueCat | Subscription management | Anonymous user ID |
| Google Play Billing | Payment processing | Handled by Google |
| Firebase Analytics | Usage statistics | Anonymous, aggregated data |
| Firebase Crashlytics | Crash reporting | Anonymous diagnostic data |
| OpenStreetMap | Map tile display | No personal data sent |
All third-party providers are bound by their own privacy policies and applicable data protection regulations.
5. International Data Transfers
Some third-party services (Google, RevenueCat) may process data outside the European Economic Area (EEA). These transfers are protected by:
- EU Standard Contractual Clauses (SCCs)
- Google’s compliance with applicable data protection frameworks
- Adequacy decisions where available
We ensure that any international data transfer provides an adequate level of protection as required by the GDPR.
6. Data Security
We implement appropriate technical and organizational measures to protect your data:
- Local data is stored in an encrypted SQLite database on your device.
- Cloud backups are encrypted with a passphrase that only you know.
- All network communication uses HTTPS/TLS encryption.
- The App supports biometric authentication (fingerprint) and PIN lock.
- We follow security best practices in App development and deployment.
7. Data Retention
- Local data: Retained on your device as long as you have the App installed. Uninstalling permanently deletes all local data.
- Google Drive backups: Retained on your Google Drive until you delete them manually or through the App.
- Firebase authentication record: Retained until you request account deletion.
- Analytics data: Retained in anonymized, aggregated form as per Firebase Analytics retention policies (typically 14 months, not linked to individual users).
- RevenueCat subscription data: Retained as long as your subscription is active or as required for billing records, in accordance with RevenueCat’s data retention policies.
8. Your Rights Under GDPR
Under the General Data Protection Regulation, you have the following rights:
- Right of Access (Art. 15): You can view all your data directly within the App. You may also request confirmation of what personal data we process about you.
- Right to Rectification (Art. 16): You can edit and correct your data at any time directly within the App.
- Right to Erasure (Art. 17): You can delete your data by deleting individual records within the App, uninstalling the App (deletes all local data), or requesting deletion of your account and associated cloud data. See also the account deletion page.
- Right to Data Portability (Art. 20): You can export your data in PDF and CSV formats at any time from within the App.
- Right to Restrict Processing (Art. 18): You may request that we restrict the processing of your personal data under certain circumstances.
- Right to Object (Art. 21): You may object to the processing of your data based on legitimate interests (e.g., analytics). You can disable analytics through your device settings.
- Right to Withdraw Consent (Art. 7(3)): Where processing is based on your consent (e.g., Google Sign-In), you may withdraw consent at any time by signing out in the App settings. Withdrawal does not affect the lawfulness of processing before withdrawal.
- Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority. In the Czech Republic, this is the Office for Personal Data Protection (ÚOOÚ).
To exercise any of these rights, contact us at: [email protected]
9. Children’s Privacy
The App is not intended for use by persons under 18 years of age. We do not knowingly collect personal data from children. If you believe that a child has provided us with personal data, please contact us immediately so we can take appropriate action.
10. Cookies and Tracking Technologies
The App does not use cookies. Firebase Analytics may use device identifiers for anonymous usage tracking. You can reset your advertising ID or limit ad tracking through your device settings.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes through a notice in the App. The “Last updated” date at the top of this policy indicates when it was last revised. Your continued use of the App after changes take effect constitutes your acceptance of the revised policy.
12. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us at: