Back to Home
Privacy Policy
1. Introduction
UniUze operates a mobile application helping college students discover and connect for carpooling within campus settings. This policy explains our data collection, storage, usage, and protection practices. As an individual developer operation, all data handling serves solely operational purposes.
2. Eligibility Requirements
The app restricts access to enrolled college students in India, verified through college email domain via OTP-based verification.
3. Information We Collect
3.1 Personal Information
- Full Name
- College Email ID (OTP verification)
- Gender
- College Name
- Academic Programme
- Year of Study
- Password (stored in hashed format)
3.2 Carpooling/Ride Data
- Ride creation dates and times
- Origin/destination coordinates (via Google Places API)
- Seat availability information
- User participation lists
- Ride status and history
3.3 Chat Data
In-app communications are stored in our database. Please note that chats are not end-to-end encrypted.
3.4 Device & Technical Data
- Device type and OS version
- IP address
- Push notification tokens (Firebase)
- Request logs for security purposes
3.5 OTP & Verification Logs
- Email delivery logs
- Attempt timestamps
- Verification status
4. How We Use Your Data
- Identity verification
- Ride listing creation and display
- Facilitating communication between students
- Sending essential notifications
- Internal analytics (aggregated, self-managed)
- Security and misuse prevention
5. Data Storage & Location
All data is stored on self-hosted MongoDB on AWS servers based in India.
External integrations include:
- Google SMTP (for email delivery)
- Firebase Cloud Messaging (for push notifications)
- Google Places API (for location services)
We do not use any third-party analytics tools.
6. Data Sharing Policy
We do NOT share personal data with:
- Advertisers
- Government authorities (except upon valid legal request from Indian authorities)
- Third-party analytics tools
- Data brokers
- Marketing partners
7. Data Retention
- Currently, there is no automatic deletion schedule
- Personal information is stored indefinitely unless user requests deletion
- Ride listings and chat messages are retained for operational/analytics purposes
- Verification logs are maintained for security
8. Your Rights
8.1 Available Rights
- Access your personal information via email request
- Delete your account once supported (removes personal details only; ride history and chats are retained)
- Delete your own ride listings when they are inactive
8.2 Currently Unavailable
- Profile data correction (planned for future)
- Analytics opt-out (operationally essential)
9. Security Measures
We implement the following security measures:
- HTTPS for all data transfers
- Hashed passwords
- JWT-based authentication
- Server and database access controls
- AWS host-level encryption
Note: No system can be 100% secure. We continuously work to improve our security practices.
10. Policy Changes
We may update this policy from time to time. Continued use of the app after changes indicates acceptance of the modified terms. We encourage you to review this policy periodically.
11. Contact Us
If you have any questions about this Privacy Policy, please contact us at:
Email: support@uniuze.com