← Back to Home

Privacy Policy

Last updated: October 17, 2025

Privacy First. Period.

Your driving data lives on YOUR phone—not our servers. We only store the last 2 minutes of your trips on your device, then everything else is automatically deleted. We can't track where you've been, even if we wanted to.

Guardian alerts? Only sent when YOU choose guardians and only when you exceed speed limits. No constant monitoring. No location tracking. No surprises.

Your data is yours. We built it that way on purpose.

Technical Note: Our app physically can't track your movements. The data doesn't exist in any database—ours or anyone else's. This is privacy by architecture, not policy.

Information We Collect

Location and Speed Data

SpeedMark collects GPS location data and speed information only when you're using the app and have granted location permissions. This includes:

GPS coordinates (latitude and longitude) from Apple CoreLocation
Speed measurements from your device's GPS
Speed limit data from HERE Technologies API
Timestamps for each data point
Location accuracy measurements

Important: All of this data is processed and stored locally on your device. We retain only the last 2 minutes of any driving session, automatically deleting everything else.

Account Information (Guardian Alerts)

If you use Guardian Alerts, we collect:

Your Apple ID email and display name (via Sign in with Apple)
Guardian relationships you create
Notification preferences and FCM tokens

Device Information

We may collect basic device information to ensure the app functions properly:

Device model and operating system version
App version and settings preferences
Crash logs and performance data (anonymized)

How We Use Your Information

Speed Tracking (Local Only)

Your location and speed data is used exclusively to track your speed while driving and generate tamper-proof evidence for potential traffic disputes. This processing happens entirely on your device—we never see it.

Guardian Alerts (Opt-In Only)

If you enable Guardian Alerts, we use your information to send notifications when you exceed speed limits by 20% or more. These alerts include only: your maximum speed, the speed limit, street name, and timestamp. We do not share your complete driving history or real-time location.

Service Improvement

We use anonymized crash logs and performance data to improve app stability and fix bugs.

What We DON'T Do

We don't store your complete driving history. We don't track your real-time location. We don't send your data to the cloud unless you export it. We don't sell your information to anyone. We couldn't reconstruct your routes even under legal order—the data simply doesn't exist.

Data Storage and Retention

Local Storage (On Your Device)

All speed and location data is stored locally on your device using SwiftData (Apple's local database). We automatically delete everything except the most recent 2-minute session to protect your privacy. You can manually delete this data at any time through the app.

Cloud Storage (Guardian Alerts Only)

If you use Guardian Alerts, we store in Firebase Firestore:

Your user profile (name, email, FCM token)
Guardian relationships (who watches whom)
Alert logs (speed, limit, street, timestamp—not complete routes)
Guardian invitations (pending, accepted, or rejected)

We do NOT store your complete driving data, routes, or continuous location history in the cloud.

Automatic Deletion

Speed tracking data is automatically deleted from your device except for the most recent 2-minute session. Guardian invitations expire after 7 days. You can delete all data by uninstalling the app or through in-app settings.

Data Sharing

We Don't Sell Your Data

We never sell, rent, or trade your personal information to third parties. Your location and speed data belongs to you.

Guardian Alerts (Your Choice)

If you add guardians, they receive notifications when you exceed speed limits. These alerts contain only: speed, speed limit, street name, and timestamp. They cannot see your real-time location, complete routes, or driving history.

Service Partners

We share minimal information with service partners to provide core functionality:

Firebase/Google Cloud: Guardian Alerts infrastructure (user profiles, relationships, alert logs)
Apple: Sign in with Apple authentication, push notifications
HERE Technologies: Speed limit data (GPS coordinates only—no user identification)
MailerSend: Guardian invitation emails

Your Rights and Controls

Location Permissions

You control location access through iOS settings. Without location access, SpeedMark cannot track speed, but you maintain complete control. You can revoke permissions at any time.

Data Export and Deletion

You can export your speed data in multiple formats (PDF, CSV, JSON, GPX) at any time. You can delete all stored session data through the app or by uninstalling. For Guardian Alert data stored in Firebase, contact us to request deletion.

Guardian Alert Controls

You can add or remove guardians at any time. You can accept or decline guardian invitations. You can sign out to stop all Guardian Alert functionality.

Security Measures

On-Device Encryption

All speed and location data on your device is protected by iOS's built-in encryption. We use ECDSA signatures stored in your device's Secure Enclave to ensure data integrity and prevent tampering of exports.

Cloud Security

Guardian Alert data stored in Firebase is protected by Google Cloud's security infrastructure, including encryption in transit and at rest. Access is restricted by Firebase Authentication rules.

Sign in with Apple

We use Apple's secure authentication, which allows you to hide your email if desired. We only receive the minimum information necessary (user ID, optional email, optional name).

Third-Party Services

HERE Technologies

We use HERE's API to retrieve speed limit data based on your GPS coordinates. HERE receives only location coordinates—no user identification or driving history.

Firebase (Google Cloud)

Guardian Alerts use Firebase for user authentication, cloud storage, and push notifications. Firebase processes only the data necessary for these features (user profiles, guardian relationships, alert logs).

Children's Privacy

SpeedMark is not intended for use by children under 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us immediately.

International Data Transfers

SpeedMark is operated from the United States. If you use Guardian Alerts from outside the U.S., your data may be transferred to and processed in the United States where Firebase/Google Cloud servers are located.

California Privacy Rights (CCPA)

If you are a California resident, you have the right to request information about personal data we collect, delete your data, and opt-out of data sales. We do not sell personal data. To exercise your rights, contact us at the email below.

Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated through the app or via email (for Guardian Alert users). Continued use after changes constitutes acceptance.

Questions About Privacy?

If you have questions about this privacy policy or how we handle your information, please contact us:

Email: support@speedmark.app

Website: speedmark.app

Privacy by Design

Remember: SpeedMark is architected with privacy by default. The less data we have, the less we can be compelled to share. Your driving data belongs to you, and we've built our system to keep it that way.