Privacy Policy

1. Introduction

We (“Company,” “we,” “our,” or “us”) provide an online service (“Service”) that allows you to sign in via Google using OAuth 2.0 (“Google Sign-In”). This Privacy Policy explains what personal information we collect when you use Google Sign-In, how we use it, with whom we share it, and your rights.

2. Information We Collect

2.1. Information from Google

When you use Google Sign-In, we receive certain information from Google based on the scopes you approve. Typical data includes:

• Name
• Email address
• Profile picture URL
• Google user ID

2.2. Information We Store

We may store:

• Your Google user ID (for account linkage)
• Your name
• Email
• Profile picture UR
• Login timestamps and IP addresses (for security and audit)
• Any preferences or settings you choose within our Service

3. How We Use Your Information

We use the information obtained via Google Sign-In to:

• Create and authenticate your user account
• Send you transactional communications (announcement, issues,...)
• Monitor and prevent fraud, spam, or other abusive behavior
• Improve, maintain, and troubleshoot our Service

4. Legal Basis for Processing

If you are in the EU or UK, our legal bases include:

• Consent: You grant permission by signing in with your Google account.
• Legitimate interests: We process login and security logs to protect our platform and users.

5. Sharing and Disclosure

5.1. Service Providers

We may share your data with third-party vendors that help us deliver the Service (hosting, analytics, email delivery). These vendors are contractually restricted to use your data only to perform services for us.

5.2. Legal Compliance

We may disclose your information if required by law, to comply with a legal process, or to protect our rights, property, or safety, or that of others.

5.3. Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction—subject to confidentiality obligations.

6. Data Retention

We retain your personal data for as long as you maintain an active account with us, plus a reasonable period afterward for backup, audit, and fraud-prevention purposes.

7. Security

We implement administrative, technical, and physical safeguards to protect your personal information, including:

• Encryption of data in transit (HTTPS)
• Access controls and role-based permissions
• Regular security assessments and patch management

8. Your Rights and Choices

Depending on your jurisdiction, you may have the right to:

• Access and obtain a copy of your personal data
• Rectify inaccurate or incomplete information
• Erase your data (“right to be forgotten”)
• Restrict or object to processing
• Port your data to another provider
• Withdraw consent for future processing To exercise these rights, please contact us at the email address below. We may ask for identity verification.

12. Contact Us

If you have questions, requests, or concerns about this Privacy Policy or our practices, please contact:

• Email: contact@roadyroader.com