Privacy Policy for Convoys

Last updated: March 13, 2026

Overview

Convoys ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application and related services.

Information We Collect

Information You Provide

Profile Information: Nickname/display name and optional profile picture (avatar).
Room Inputs: Room names, optional room passwords, invite/rejoin tokens, and room-level settings (for example invite permissions).
Purchase Information (if premium features are used): Purchase proof and transaction-related data from app stores, including product identifier, platform (iOS/Android), transaction ID or purchase token, order identifier (if provided), purchase/verification timestamps, and store verification payload data needed for fraud prevention, validation, and support.

Real-Time and Device Data

Location Data: Your real-time location while you are in an active room and have granted location permission. If you grant background location permission, your location may continue to be shared with room participants while the room is active when the app is in the background.
Voice Data: Real-time voice communications during active rooms. Convoys does not record or store voice communications.
Camera/QR Data: Camera access can be used to scan room QR codes. The app reads QR content to join rooms (for example room identifiers and invite tokens in the QR payload).
Photo Library Data: Optional photo library access used only when you choose a profile image.
Device Information: Device type, operating system, app version, and technical identifiers used for security and room rejoin flows.

Automatically Collected Operational Data

Diagnostics: Crash reports and performance diagnostics (if enabled in Settings).
Usage Analytics: App interaction events (if enabled in Settings).
Service Metering: Operational usage records for service limits and monetization (for example session heartbeats, daily usage counters, active session state, and room creation counters).
Webhook and Event Logs: Events from payment providers (for example purchase, cancellation, refund/revocation notifications) and associated technical payloads for reconciliation and audit.

How We Use Your Information

We use the collected information to:

Provide and maintain the Convoys service.
Enable real-time communication and location sharing within convoys.
Power room access/security features, including password checks, invites, rejoin flows, and abuse prevention.
Provide premium upgrades and validate in-app purchases.
Improve app performance and user experience.
Detect, investigate, and prevent technical issues, fraud, and abuse.

Data Sharing

We do not sell your personal information. We may share data with:

Service Providers: Third-party services that help us operate the app, such as:
- Supabase: authentication (anonymous profiles), database storage, and avatar storage.
- LiveKit: real-time voice communication and session infrastructure.
- Google: maps/navigation and places search features (where enabled).
- Firebase: crash reporting and usage analytics (where enabled).
- Apple App Store / Google Play: in-app purchase processing, verification, and billing events.
- Hosting/Infrastructure: services used to host our APIs and supporting infrastructure.
Other Users: Your location and profile information are visible to members of rooms you join.
Legal Requirements: When required by law or to protect our rights and safety.

Data Security

We implement reasonable security measures to protect your information, including:

Encrypted transport for voice and data in transit.
Secure HTTPS connections for data transmission.
Access controls and database protections designed to prevent unauthorized access.

Data Retention

Voice Communications: Not recorded or stored by Convoys.
Location Data: Shared in real time during active sessions and not retained as trip history after a session ends.
Profile Information: Retained until you update or delete your profile/account.
Room Security Data: Invite/rejoin and abuse-prevention records are retained as needed for room access security, moderation, and operational continuity.
Purchase and Billing Records: Retained for verification, fraud prevention, customer support, accounting, and legal compliance needs.
Diagnostics/Analytics/Operational Logs: Retained according to provider retention policies and our operational needs.

Your Choices and Rights

You can:

Access and review your personal information in the app.
Request correction of inaccurate profile data.
Delete your profile/account via in-app Settings.
Control permissions (location, microphone, camera, photo library) through device settings.
Disable usage analytics and crash reporting in Settings.
Manage in-app subscriptions/purchases via your Apple App Store or Google Play account settings.

Account Deletion

You can request account deletion either in-app or through our web page:

In app: Settings → Delete Account.
Web request page: https://convoys.app/account-deletion

The account deletion page describes the deletion flow, what data is deleted, and what data may be retained for legal, fraud-prevention, security, billing, and compliance purposes.

Children's Privacy

Convoys is not intended for users under the age of 13. We do not knowingly collect information from children under 13. If you believe a child has provided us with personal information, please contact us.

International Users

Your information may be transferred to and processed in countries other than your own. By using Convoys, you consent to such transfers.

Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date will reflect when changes were made. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy, please contact us at:

Email: privacy@convoys.app
Website: https://convoys.app