Privacy policy

When you sign up: your email address and a hashed password (when using email sign-in), or your Apple ID or Google ID (when using Sign in with Apple or Google). We assign you an internal user ID (a random UUID) which links to everything else in your account. We do not ask for your name, phone number, or address.

Your interface language, theme, units (km / miles), timezone, voice-input language, GPS opt-in, currently selected car, and your auto-split schedule (if you set one). We also store your subscription state: tier, expiry date, provider (Apple or Polar), product ID, the Apple original transaction ID, and your trial end date.

Cars you have added (the nicknames you give them), trips (start and end times, total / work / private kilometres, and any free-text notes you write), and individual odometer readings (the value, the input method — manual, camera, or voice — any notes, and the timestamp).

When you start a GPS trip, we collect latitude, longitude, speed, accuracy, and timestamps for each point along the route. Raw points are kept for 60 days and then automatically deleted. A small static map thumbnail of the route is kept indefinitely so you can see your trip history. GPS tracking only runs while you have it switched on in-app and the app is foreground or has background-location permission.

When you take a photo of an odometer for the camera input method, the image is sent to OpenAI's vision API for the sole purpose of reading the number in it. The photo itself is not stored — only the numeric value is saved as a reading.

We receive a receipt confirming your subscription (product, expiry date, original transaction ID) from Apple or Polar. We do not see, store, or process your card or bank details. Apple and Polar handle the payment itself.

When the app crashes or hits an unhandled error, we receive a stack trace tagged with your account ID. No content from your trips, photos, or location history is sent. This is operational data — it tells us what broke — and cannot be disabled.

A fixed list of events: sign-up completed, sign-in completed, opening the upgrade modal, purchase attempted / succeeded / failed, subscription canceled / reactivated / plan switched, and GPS trip started. Each event is tagged with an anonymous device ID — no email, no contact info, no cross-app tracking. Hosted in the EU. You can turn this off any time in Settings → Legals → Help improve Rienly.

When our backend rejects a request that looks abusive (invalid Apple receipt signature, invalid Polar webhook signature, repeated subscription claim attempts), we record the kind of rejection together with the requesting IP address and user-agent string. Used solely to detect and prevent fraud against our subscription system.

Your name, phone number, or address. Payment-card or bank details. Your contacts, calendar, or microphone audio (voice odometer entry uses Apple or Google's on-device speech recognition; the audio is not sent to our servers). Photos beyond a single image you choose for an OCR reading. Advertising identifiers (no IDFA). Cross-app or cross-website tracking.

You have the right to access your data, to rectify inaccuracies, to erasure, to restriction of processing, to data portability, to object to processing, and to withdraw any consent you have given (without affecting prior processing). You also have the right to lodge a complaint with your local supervisory authority. In Sweden this is Integritetsskyddsmyndigheten (IMY) at https://www.imy.se.

You have the right to know what personal information we collect, to delete it, to correct it, to opt out of sale or sharing (we do not sell or share your personal information), to limit the use of sensitive personal information, and to non-discrimination for exercising any of these rights. We do not engage in targeted advertising and do not respond to Global Privacy Control signals because we do not undertake any of the activities those signals are designed to opt out of.

If you are a resident of Virginia, Colorado, Connecticut, Utah, Texas, or another US state with comprehensive privacy legislation, substantially similar rights apply. Use the same contact channel to exercise them.

Under the federal PIPEDA you have the right to access and correct your personal information, to withdraw consent, and to lodge a complaint with the Office of the Privacy Commissioner of Canada. Quebec residents have additional rights under Law 25, including data portability (since September 2024) and the right to be informed of any automated decision-making — we do not perform automated decision-making.

Most rights can be exercised directly in the app. Settings → Account → Delete account performs a full erasure. For anything else — access, correction, portability, withdrawal of consent, complaints — email us at privacy@rienly.com from the email address on the account, or include another means to verify ownership. We respond within 30 days.