Privacy Policy

Last updated: February 26, 2026

Introduction

Give Me A Route operates a running route planning service available as a web application, iOS app, and Android app. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your personal information.

The service is operated by [Operator Name / Business Name] (to be confirmed before publication), based in Australia. By using Give Me A Route, you agree to the collection and use of information as described in this policy.

Information We Collect

Account Data

When you sign in via Google OAuth, we collect your email address. Authentication is managed by our self-hosted SuperTokens instance — your credentials are never shared with third parties beyond the initial OAuth provider.

Route Data

When you generate a route, you provide starting coordinates and distance preferences. Generated route data (path, distance, elevation) is stored only for users who explicitly save routes (Pro subscribers). Guest and free-tier users have no route data persisted beyond the immediate request.

Location Data

GPS coordinates are used solely to set your route starting point. Location data is not stored unless you explicitly save a route or bookmark a location as a Pro subscriber.

Payment Data

Payments are processed by Stripe (web) and Apple App Store or Google Play (mobile). We store only a customer identifier to manage your subscription. We never store or have access to your card details.

Usage Analytics

We collect app usage analytics via Highlight.io to improve the service. This may include page views, feature usage, and session recordings. See our Cookie Policy for details.

Mobile Advertising Data

Free mobile users see ads served by Google AdMob. AdMob may collect device identifiers for ad personalisation. We do not store advertising data ourselves. You can opt out of personalised ads via your device privacy settings (iOS: Settings > Privacy > Tracking; Android: Settings > Privacy > Ads).

How We Use Your Information

We use your information for the following purposes:

  • Route generation — Using your location and preferences to create running routes
  • Route history — Storing saved routes for Pro subscribers
  • Account management — Managing authentication and subscriptions
  • Service improvement — Analysing usage patterns via analytics to improve the product

We do not use your data for advertising purposes beyond AdMob ad serving on the free mobile tier.

Cookies and Tracking

We use session cookies for authentication (managed by SuperTokens) and localStorage for user preferences such as distance unit and surface settings. These are essential for the service to function.

For full details on all cookies and client-side storage, see our Cookie Policy.

Third-Party Services

We use the following third-party services:

  • Google OAuth — Authentication sign-in
  • Stripe — Web payment processing
  • Apple App Store / Google Play — Mobile payment processing
  • Google AdMob — Mobile ads for free-tier users
  • Highlight.io — Usage analytics (planned)

Important: Route generation, authentication, and application monitoring are all self-hosted on our own servers in Germany. These core services are not operated by third parties.

Data Storage and Security

Our primary server is located in Germany (EU). Cloudflare CDN caches static content globally but does not store personal data. All data is encrypted in transit via HTTPS. Access to production systems is restricted to authorised personnel only.

Your Privacy Rights

If You Are in the EU/UK (GDPR)

Under the General Data Protection Regulation, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing of your data
  • Data portability — receive your data in a structured format
  • Object to processing of your data

Our server is located in the EU, which simplifies data residency requirements. The data controller is [Operator Name — to be confirmed before publication].

If You Are in Australia (Privacy Act 1988)

Under the Australian Privacy Principles, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information

If you believe we have breached the Australian Privacy Principles, you may direct your complaint to us first. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

Data Retention and Deletion

Route history is stored while your account is active. Guest users (unauthenticated) have no data stored beyond the immediate route generation request.

You can delete your account at any time via the account menu in the app. Account deletion soft-deletes your data immediately and permanently removes it within 30 days.

Children's Privacy

Give Me A Route is intended for users aged 16 and older. We do not knowingly collect personal information from anyone under 16. If we become aware that we have collected data from a user under 16, we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected in the "Last updated" date at the top of this page. We encourage you to review this policy periodically.

Contact Us

For privacy inquiries, contact us.