1. Introduction
Model Mint LLC. ("Roadie," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service available at goroadie.co and app.goroadie.co.
Key Principles:
- We collect only data necessary to provide and improve Roadie
- We do NOT sell your data to third parties
- We do NOT use your data for advertising or marketing to third parties
- We use your data solely for Roadie analytics and service improvement
- You have rights regarding your data
By using Roadie, you consent to the practices described in this Privacy Policy.
3. How We Use Your Information
We use collected information for the following purposes:
3.1 Service Delivery
- Provide real-time navigation and route guidance
- Discover and curate points of interest along your route
- Generate weather forecasts for trip locations
- Create location-aware games and trivia
- Enable conversational AI companion features
- Maintain trip session state and context
3.2 Service Improvement
- Analyze usage patterns to improve features
- Debug and fix technical issues
- Develop new features and functionality
- Improve AI agent performance and accuracy
- Optimize route algorithms and POI curation
3.3 Communication
- Send account-related notifications (password resets, account updates)
- Provide customer support
- Notify about Service changes or updates
3.4 Analytics and Research
- Track Service performance and uptime
- Aggregate anonymized usage statistics
- Research travel patterns for product development (aggregated, anonymized)
3.5 Legal and Security
- Comply with legal obligations
- Enforce our Terms of Service
- Detect and prevent fraud or abuse
- Protect user safety and Service integrity
4. How We Share Your Information
We do NOT sell or rent your data. We share data only in the following limited circumstances:
4.1 Service Providers (Third-Party Processors)
We share data with trusted third-party providers to operate Roadie:
| Service | Purpose | Data Shared |
|---|
| OpenAI | AI agents, voice processing | Voice input, chat transcripts, trip context |
| Google Maps | Navigation, routing, POI data | GPS coordinates, route queries |
| OpenWeatherMap | Weather forecasts | GPS coordinates, location queries |
| Supabase | Database, authentication | Account info, trip data, user sessions |
| Vercel / Railway | Hosting infrastructure | Session logs, API requests |
These providers are bound by privacy agreements and may only use data to provide services to Roadie. Each operates under their own privacy policy:
4.2 Legal Requirements
We may disclose your data if required by law or in response to:
- Court orders, subpoenas, or legal processes
- Law enforcement requests
- National security demands
- Investigations of fraud or abuse
4.3 Business Transfers
If Roadie is acquired, merged, or sells assets, your data may be transferred to the new entity. We will notify you before such a transfer.
4.4 With Your Consent
We may share your data with third parties if you explicitly consent (e.g., social sharing features).
5. Data Security
We implement industry-standard security measures to protect your data:
5.1 Technical Safeguards
- Encryption: TLS/SSL for data in transit, AES-256 for data at rest
- Authentication: Secure password hashing via Supabase Auth (bcrypt)
- Access controls: Role-based permissions, least-privilege principles
- Network security: Firewalls, intrusion detection, DDoS protection
5.2 Operational Safeguards
- Regular security audits and vulnerability assessments
- Employee training on data protection best practices
- Limited access to production systems (need-to-know basis)
- Incident response plan for data breaches
⚠️ No Absolute Security:
While we take security seriously, no system is 100% secure. You use Roadie at your own risk. We encourage you to use strong passwords and keep your credentials confidential.
6. Data Retention
We retain your data only as long as necessary:
6.1 Retention Periods
| Data Type | Retention Period | Reason |
|---|
| Account information | Until account deletion | Account management |
| Trip history | 2 years or until deletion | Service improvement, user access |
| Voice recordings | Not stored by Roadie | Real-time processing only |
| Chat transcripts | 1 year | AI improvement |
| Analytics/logs | 90 days (anonymized thereafter) | Debugging, performance monitoring |
6.2 Deletion Process
When you delete your account or request data deletion:
- Account credentials and profile are deleted within 30 days
- Trip data and usage history are deleted or anonymized
- Some data may be retained for legal/compliance reasons (e.g., transaction records)
- Anonymized analytics data may be retained indefinitely
7. Cookies and Tracking Technologies
7.1 Cookies We Use
- Essential cookies: Required for authentication and core functionality
- Functional cookies: Remember your preferences and settings
- Analytics cookies: Track usage patterns to improve the Service
7.2 Browser Storage
We use local storage and session storage for:
- Trip session state
- User preferences
- Authentication tokens
For more information, see our Cookie Policy.
8. Your Privacy Rights
Depending on your location, you may have the following rights:
8.1 Access and Portability
- Request a copy of your personal data
- Export trip history and account data in machine-readable format (JSON)
8.2 Correction
- Update inaccurate or incomplete account information
- Correct errors in your profile or preferences
8.3 Deletion
- Request deletion of your account and associated data
- Subject to legal retention obligations
8.4 California Residents (CCPA)
California users have additional rights:
- Right to know what data is collected and shared
- Right to delete personal information
- Right to opt-out of data "sales" (we do not sell data)
- Right to non-discrimination for exercising rights
8.5 European Residents (GDPR)
EU/EEA users have rights under GDPR:
- Legal basis for processing: Consent and legitimate interest
- Data controller: Model Mint LLC.
- Right to lodge complaints with supervisory authorities
9. Children's Privacy
Roadie is NOT intended for users under 18 years of age. We do not knowingly collect data from children. If we discover we have collected data from a child, we will delete it promptly.
Parents or guardians who believe we have collected data from a minor should contact us immediately at roadie@goroadie.co.
10. International Data Transfers
Roadie operates primarily in the United States. If you access the Service from outside the U.S., your data may be transferred to and processed in the U.S. or other countries.
We ensure adequate safeguards for international transfers through:
- Standard Contractual Clauses (SCCs) for GDPR compliance
- Third-party provider data processing agreements
- Security measures consistent with applicable laws
By using Roadie, you consent to international data transfers as described.
11. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Changes will be effective when posted with a new "Last Updated" date.
Material changes will be notified via:
- Email to your registered address
- In-app notification
- Prominent notice on goroadie.co
Continued use after changes constitutes acceptance of the updated Privacy Policy.
13. Summary of Key Points
- ✅ We collect: Location, voice input, trip data, account info
- ✅ We use data for: Service delivery and improvement only
- ❌ We do NOT: Sell data, use it for ads, or track across sites
- ✅ You can: Access, correct, delete, or export your data
- ✅ Third parties: OpenAI, Google, OpenWeather (per their policies)
- ✅ Security: Encryption, access controls, regular audits
- ✅ Retention: 1-2 years for most data, deletable on request
Your privacy matters to us. We're committed to transparency and responsible data handling.