Data Safety

Last updated: March 2025

A clear summary of what data GC Ridepool collects, why it's collected, and how it's protected. We believe you have the right to know exactly what happens with your information.

Data We Collect

Mobile Number

Used for OTP login only. Never shown to other users.

Collected

Name

Displayed to co-riders and drivers during a shared ride.

Collected

Profile Photo

You can use the app without a photo.

Optional

Vehicle Details (drivers only)

Car name, colour, and registration number.

Collected

Email Address

Not required; only stored if you add it to your profile.

Optional

FCM Token

Required to deliver push notifications to your device.

Collected

Location / GPS

We never track your real-time location.

Not Collected

Payment Information

All payments are made in cash directly to drivers.

Not Collected

Contacts / Address Book

Not Collected

Device Identifiers

Not Collected

Data Sharing

We share limited data with the following third parties to operate the service:

MSG91Delivering OTP SMS messagesMobile number only

Firebase (Google)Push notificationsFCM device token

Daily.coIn-app internet voice callsDisplay name, room token

ConvexDatabase & file storageAll app data (encrypted)

We do not sell your data to advertisers or any other commercial third parties.

How We Protect Your Data

🔒

Encrypted in Transit

All data is sent over HTTPS / TLS. No plain-text communication.

🗄️

Encrypted at Rest

Data stored in Convex is encrypted at the storage layer.

📵

No Phone Number Exposure

Your mobile number is stripped before any data reaches other users.

🔑

OTP-Only Auth

No passwords are ever stored. Authentication uses one-time codes only.

Your Data Rights

You can, at any time:

Edit your profile name, photo, and vehicle details inside the app.
Disable push notifications from your device settings.
Request full deletion of your account and all associated data by contacting the administrator.