Privacy Policy

Last updated: 9 April 2026

info This is a first-pass draft pending legal review. It describes our intended data practices.

1. Who We Are

Roadtrip Legends (the “Service”) is operated by Roadtrip Legends Ltd. (“we”, “us”, “our”). You can reach our privacy team at privacy@roadtriplegends.com. We are the data controller for personal data processed through the Service.

2. The Short Version

  • We collect the minimum data needed to run the app.
  • We never sell your data.
  • We never show third-party advertising.
  • We never collect data from children directly — family accounts are parent-managed.
  • You can delete your account and all associated data at any time.

3. What We Collect and Why

3.1 Account information

Email address, a chosen display name, and a password stored only as a modern hash. If you sign in via Apple or Google, we receive your email and display name from that provider.
Legal basis (GDPR Art. 6): performance of a contract (Art. 6(1)(b)).

3.2 Family group data

Names, avatars, and coarse age groups for family members you add. Children’s exact birth dates are not stored — only a coarse age group retained to serve age-appropriate content.
Legal basis: performance of a contract (Art. 6(1)(b)).

3.3 Gameplay data

Game sessions, scores, round history, achievements, and XP. Used to power leaderboards within your private family group and track progress over time.
Legal basis: performance of a contract (Art. 6(1)(b)).

3.4 Subscription and purchase metadata

Subscription tier, billing period, the platform (Apple, Google, Stripe), and the opaque transaction ID issued by that store. We do not store card numbers or payment credentials — payment processing is handled by Stripe, Apple, and Google under their own privacy notices.
Legal basis: contract performance (Art. 6(1)(b)) and legal obligations (Art. 6(1)(c)) for tax records.

3.5 Push notification tokens

If you opt in, we store the device token issued by APNS or FCM so we can deliver notifications you have asked for.
Legal basis: consent (Art. 6(1)(a)). You can withdraw consent from your OS settings at any time.

3.6 Device and technical information

App version, platform, OS version, a device-scoped random identifier (not the hardware advertising ID), IP address on API requests, and a request correlation ID.
Legal basis: legitimate interests (Art. 6(1)(f)) — operating a secure, reliable service.

3.7 Crash and error telemetry

Error type, stack trace, correlation ID, endpoint, and anonymised user/session identifier. Payloads that could contain personal data are scrubbed.
Legal basis: legitimate interests (Art. 6(1)(f)) — diagnosing defects.

4. What We Don’t Collect

  • Precise location data. Road-trip tracking uses waypoints you add manually — we do not read background GPS.
  • Contacts, calendar, photos, or camera.
  • Advertising identifiers (IDFA / AAID).
  • Microphone audio. Verbal games are scored manually by the family — we never record audio.
  • Cross-site tracking cookies.

5. Children’s Privacy (COPPA / GDPR-K)

Roadtrip Legends is designed for parent-managed family use. We do not knowingly collect personal information directly from children under 13 (COPPA) or 16 (GDPR, where applicable).

  • Account structure. Only adults (18+) can create accounts. Children participate as non-credentialed profiles inside a parent’s family group — no email, no password, no independent sign-in.
  • Parent-entered only. The only information we hold about a child is what a parent enters: display name, avatar, and coarse age group. No real names, schools, locations, or contact details.
  • No direct communication. We never send emails or push notifications to children. All communication is addressed to the parent account holder.
  • Deletion. A parent can remove a family member at any time from the family management screen — this deletes the child’s display name, avatar, age group, gameplay history, and leaderboard entries within 30 days. To request manual deletion, email privacy@roadtriplegends.com from the parent account.

6. How We Share Data

We do not sell personal data. We share data only with sub-processors needed to run the Service:

  • Apple App Store / Google Play — IAP receipt validation. Data shared: store-issued transaction ID, product SKU, purchase timestamp.
  • Stripe — web checkout for subscriptions. Data shared: email, customer ID, subscription ID, payment metadata (card data never touches our servers).
  • Nominatim / OpenStreetMap — geocoding places you enter as waypoints. Data shared: the place name or coordinates you submit; no user identifier.
  • Transactional email provider — password reset and receipt emails. Data shared: email address and email content.
  • Crash reporting provider — crash and error telemetry. Data shared: anonymised user ID, stack trace, correlation ID.

We may disclose personal data to law enforcement or courts when required by law, or to protect the rights, property, or safety of our users or the public.

7. International Transfers

Where a sub-processor operates outside the EEA or UK, transfers rely on Standard Contractual Clauses (SCCs), the UK International Data Transfer Addendum, or an adequacy decision.

8. Retention

  • Account & authentication records: until deletion + 30-day grace period.
  • Subscription & purchase records: 7 years after the subscription ends (tax / accounting obligations).
  • Family profiles & gameplay data: until you delete them, or account deletion + 30 days.
  • Push notification tokens: until you revoke consent or uninstall.
  • Request logs & telemetry: 90 days.
  • Crash reports: 90 days.

9. Your Rights

Under GDPR, UK GDPR, and equivalent regimes you have the right to:

  • Access the data we hold about you (Art. 15).
  • Rectify inaccurate data (Art. 16).
  • Erase your data — “right to be forgotten” (Art. 17).
  • Restrict processing in specific circumstances (Art. 18).
  • Data portability — export in a machine-readable format (Art. 20).
  • Object to processing based on legitimate interests (Art. 21).
  • Withdraw consent at any time where we rely on consent (Art. 7(3)).
  • Lodge a complaint with your national data protection authority (UK: ICO at ico.org.uk; EEA: your country’s supervisory authority).

To exercise any of these rights, email privacy@roadtriplegends.com from the address registered on the account. We will respond within 30 days.

10. Data Security

  • TLS 1.2+ for all API traffic; HSTS on the marketing site.
  • At-rest encryption on managed database storage.
  • Passwords hashed with a modern password hashing function (ASP.NET Core Identity).
  • Production access restricted to authorised personnel with audited access.
  • 72-hour breach notification to the relevant supervisory authority where required.

If you believe your account has been compromised, contact privacy@roadtriplegends.com immediately.

11. Changes to This Policy

We’ll notify you of material changes via email or in-app notification at least 30 days before they take effect. The effective date at the top of this page always reflects the current version.

12. Contact

Privacy questions, rights requests, complaints: privacy@roadtriplegends.com.
General support: hello@roadtriplegends.com.