PedalOn Privacy Policy

Data Accessed

When you sign in with Google, PedalOn uses Firebase Authentication to access basic Google account identity data needed for sign-in: your Firebase user ID, Google account email address, display name, profile photo if provided by Google, and authentication metadata needed to keep you signed in and secure your account.

PedalOn does not request access to Gmail, Google Drive, Google Calendar, Google Contacts, or other Google account content.

PedalOn may also collect app data that you provide or generate while using the service, including profile settings, workout choices, ride history, training plans, leaderboard entries, feedback, device and session metadata, and analytics events.

Data Usage

PedalOn uses Google user data to create and secure your account, identify you as the signed-in rider, connect rides and workouts to your account, support invite-code access where applicable, provide app features, prevent abuse, troubleshoot issues, and respond to support and privacy requests.

App activity and analytics data helps PedalOn operate the service, understand product performance, improve rider workflows, diagnose reliability issues, and prioritize product improvements.

Data Sharing

PedalOn does not sell personal data or Google user data. PedalOn does not share Google user data with third parties for advertising.

PedalOn uses service providers to operate the product. Firebase and Google Cloud provide authentication, hosting, database, cloud functions, and storage services. Amplitude provides product analytics. Google Analytics provides marketing-site analytics.

PedalOn may disclose data if required by law, to protect PedalOn or its users, to investigate abuse or security issues, or when you direct PedalOn to share information.

Data Storage & Protection

PedalOn stores app data using Firebase and Google Cloud services. PedalOn protects data with HTTPS, authenticated access, Firebase security rules, backend validation, access controls, and operational limits on who can access production data.

No internet service can guarantee absolute security, but PedalOn works to protect user data against unauthorized access, misuse, loss, and alteration.

Data Retention & Deletion

PedalOn retains account, ride, workout, training, feedback, and analytics data while your account is active or as needed to provide the service, meet legal and security obligations, resolve disputes, and maintain normal backups and logs.

You can request access to, correction of, or deletion of your personal data by emailing privacy@pedalon.app. PedalOn will delete or de-identify personal data associated with your account unless retention is required for legal, security, fraud-prevention, or operational reasons.

Backup copies and security logs may remain for a limited period before they expire through normal retention processes.

Children

PedalOn is not intended for children under 13. If you believe a child has provided personal information to PedalOn, contact privacy@pedalon.app.

Changes

PedalOn may update this Privacy Policy from time to time. The latest version will be posted on this page with its effective date.

Contact

For privacy requests or questions, email privacy@pedalon.app.