Privacy Policy

We collect only what is necessary to provide the Service. This includes:

Account Information

• Full name, email address, and phone number.
• Profile photo (optional).
• Password — stored as a salted hash; never in plain text.

Bike & Maintenance Data

• Bike details: registration number, nickname, purchase date, color, and images.
• Odometer readings, fuel levels, and fuel costs.
• Ride logs: distance, fuel filled, cost, date, and optional notes.
• Maintenance part records: part name, service intervals, last service odometer, and costs.
• Vehicle expenses: category, amount, and date.
• Documents: insurance, PUC, registration, and service records — including expiry dates and uploaded files.

Preferences

• Email notification settings (maintenance alerts, document expiry reminders).

Your data is used exclusively to operate and improve the Service:

• Deliver maintenance alerts and document expiry reminders via email and in-app notifications.
• Calculate and display mileage analysis, fuel efficiency, and service schedules.
• Authenticate your account and manage active sessions securely.
• Send transactional emails such as email verification and password reset links.
• Analyse aggregate, anonymised usage patterns to improve app performance and features.

We do not use your data for advertising or build behavioural profiles.

We take reasonable technical and organisational measures to protect your information:

• Passwords are stored using a salted hash — they cannot be recovered or read.
• All data is transmitted over HTTPS/TLS.
• Sessions are managed with HttpOnly, Secure cookies that expire after 30 days.
• Access tokens are short-lived JWTs with limited scope (user ID, email, role).
• Password reset tokens are single-use and time-limited.

No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

You have the following rights regarding your data:

• Access & Update: View and edit your profile, bike data, and preferences at any time from within the app.
• Delete: You may request permanent deletion of your account and all associated data by contacting us at support.bikecare@gmail.com.
• Opt-out of Emails: Email notifications can be disabled at any time from your notification preferences in the app.

We will respond to data requests within a reasonable time. Deletion requests are processed within 30 days.

BikeCare uses minimal cookies strictly for operational purposes:

• Session cookie — keeps you logged in across page visits. Expires after 30 days or when you sign out.

We use Umami Analytics, which does not use cookies or collect personally identifiable information. It tracks anonymised metrics (page views, sign-up/sign-in events) to help us understand how the app is used.

We do not use advertising cookies, third-party tracking pixels, or cross-site behavioural tracking.

We retain your data for as long as your account is active. Specifically:

• Account and bike data is kept until you request account deletion.
• Expired sessions are automatically purged from our database.
• Password reset tokens are invalidated immediately after use or upon expiry.
• Uploaded files (images, documents) hosted on third-party services are removed on a best-effort basis upon account deletion.

After account deletion, we do not retain any personally identifiable information.

We may update this Privacy Policy from time to time. When we do, we will revise the “Effective Date” at the top of this page. For significant changes, we will notify you via email or an in-app notification.

Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.