Privacy Policy for MappRides
Last updated: 21 August 2025
MappRides is a ride-hailing platform operated by Mapp Technologies & Services (“MappRides,” “we,” “our,” or “us”). This Privacy Policy explains what information we collect, how we use it, who we share it with, how we protect it, and the choices you have. It applies to riders, drivers, app visitors, and anyone who interacts with our services (collectively, “Users”).
We are committed to complying with applicable privacy laws, including the Trinidad & Tobago Data Protection Act, and—where relevant—foreign regulations such as the GDPR/UK GDPR and CCPA/CPRA.If you have questions, contact us at privacy@mapprides.com or WhatsApp +1 (868) 715-9094.
1) Who we are (Data Controller)Mapp Technologies & Services
Barataria, Trinidad & Tobago
Email: privacy@mapprides.com
WhatsApp (Support): +1 (868) 715-9094
We may act as Data Controller for the personal data we collect and determine how it is processed. Some third-party providers act as Data Processors on our behalf (see Section 7).
2) Information we collect
We collect information directly from you, automatically through your device/app usage, and from third parties.
A. Information you provide
Account details: full name, username, password (hashed), email, phone number, profile photo.
Identity & verification: government ID (front/back), selfie for ID match, proof of address, and background check consent.
Safety & compliance: confirmations/attestations (e.g., lawful use acknowledgments), PIN for ride validation.
Payment & wallet: card tokenization (via payment partners), wallet balance, top-ups, transaction history (we do not store full card numbers).
Communication content: messages to support, feedback, ratings, dispute details.
Driver-specific: driver’s license, vehicle details (make/model/plate), insurance and inspection documents, and subscription status.
B. Information collected automatically
Location data: precise GPS during app use (for pickups, navigation, and safety), approximate location when the app is open if you permit it.
Device & usage: device model, OS, app version, unique IDs, IP address, crash logs, diagnostics, and interaction events (buttons, screens, errors).
Cookies/SDKs: analytics and functionality cookies/SDKs used in app and web (see Section 9).C. Information from third parties
Payment processors (e.g., Stripe) provide payment status, tokens, and fraud signals.
Mapping & communications providers furnish geocoding, routing, push/SMS/email delivery status.
Law enforcement (e.g., TTPS) or public databases may confirm identity or records only where lawful and necessary.
3) How we use your information (purposes)We process personal data to:
Provide and operate the service: create accounts, match riders and drivers, navigate routes, calculate fares, and complete rides.
Verify identity & eligibility: review IDs, selfies, proof of address, and—where consented—perform background checks.
Safety & fraud prevention: enforce ride PINs, detect suspicious activity, prevent spam/abuse, and protect users and the platform.
Payments & wallet: process card/wallet payments, top-ups, and refunds; keep transaction records.
Communicate with you: confirmations, receipts, ride status updates, support responses, service announcements, and optional marketing (opt-out available).
Improve & analyze: monitor performance, debug issues, and develop new features.
Legal & compliance: respond to lawful requests; cooperate with investigations; meet regulatory and tax obligations.
Legal bases (where applicable): performance of a contract, legitimate interests (safety, fraud prevention, service improvement), consent (e.g., background checks, marketing), and legal obligations.
4) Background checks & lawful cooperation
Where required or permitted by law and with your consent, we may confirm aspects of your background with the Trinidad & Tobago Police Service (TTPS) or relevant authorities.We may preserve or disclose data when we believe it is reasonably necessary to comply with laws, protect any person’s safety, detect/prevent fraud or abuse, or protect our rights.
5) Information visible to others
Riders ↔ Drivers: during a trip, riders see driver name, vehicle details, rating, and live approach; drivers see rider first name/initials, pickup/dropoff, and contact proxy where supported.After a trip, receipts and minimal trip details may remain visible to each party in history.We do not publish your private documents (IDs, proof of address) to other users.
6) Data retention
We keep data only as long as necessary for the purposes above, and as required by law. Typical practices:
Account data: for the life of the account and a reasonable period after deletion for dispute handling and legal compliance.
Trip data & GPS logs: retained for safety, auditing, and billing (e.g., 24 months), or longer if required by law or in case of an active dispute.
Identity/verification docs: retained while verification is active and for compliance/auditing (e.g., 12–24 months after account closure), then securely deleted.
Payment records: according to financial regulations and our processor’s requirements.(These periods are indicative; exact periods may vary by legal requirement. We will minimize and securely dispose of data when no longer needed.)
7) How we share information
We share data with the following categories, under contracts and safeguards:
Service providers / processors: cloud hosting & storage, authentication, databases, analytics, push notifications, email/SMS, support tooling, and mapping.
Examples used by our stack include: Amazon Web Services (Amplify, Cognito, AppSync, S3, SES), Stripe (payments), Google Maps Platform (maps/geocoding/routing), and Expo/Apple/Google for push notifications.
Payment partners: to process payments, prevent fraud, and handle chargebacks.
Law enforcement / legal requests: where legally required or allowed (see Section 4).Business transfers: in a merger, acquisition, or asset sale, subject to this Policy’s protections.
We do not sell your personal data to advertisers.
8) International data transfers
Your information may be stored and processed outside Trinidad & Tobago (for example, in the United States or other countries where our providers operate). We use reasonable safeguards (contractual clauses, encryption in transit and at rest, minimal access) to protect your information during such transfers.
9) Cookies, SDKs, and tracking
App SDKs: used for analytics, crash reporting, performance, and messaging.
Web cookies: used on our website for session management, security, and analytics.
Your choices: disable analytics/marketing in device settings where supported, use browser controls, or contact us to learn more about tools we use.
10) Your choices & rights
Depending on your location, you may have the right to:
Access the personal data we hold about you.
Correct inaccurate or incomplete data.
Delete your data (subject to legal/contractual limits).Restrict/OBJECT to certain processing (e.g., marketing).Portability (receive a copy in a usable format).Withdraw consent where processing is based on consent (e.g., marketing; background checks before they are run).Request these by emailing privacy@mapprides.com. We may need to verify your identity.
Push notifications & location:
Control push in your device OS settings.
Control location permissions in your device settings; note the app may not function without location access.
11) SecurityWe implement administrative, technical, and physical safeguards, including:Authentication and access controls (role-based, least privilege).Encryption in transit (TLS) and at rest for hosted data.
Secure credential handling (hashed passwords, tokenized payments).Monitoring, logging, and periodic reviews.
No method is 100% secure; report issues to security@mapprides.com.
12) Children’s privacy
MappRides is not intended for individuals under 18. We do not knowingly collect data from minors. If we discover such data, we will delete it.
13) Data retention on account lock/closure
Temporary locks (e.g., for safety) do not automatically delete data.
After permanent deletion, we will remove or anonymize personal data not needed for legal, tax, fraud prevention, or dispute purposes.
14) Automated decisions & profilingWe may use limited automated checks for fraud/safety (e.g., unusual patterns, device signals). These support—not replace—human review. You can contact us to request human intervention where required by law.
15) Changes to this PolicyWe may update this Policy to reflect changes in laws, services, or practices. We’ll post updates here and modify the “Last updated” date. In case of material changes, we will provide a prominent notice in the app or by email.
16) Contact us
Privacy & Data Requests: privacy@mapprides.com
Security Reports: security@mapprides.com
General Support (WhatsApp): +1 (868) 715-9094
Postal: Mapp Technologies & Services, Barataria, Trinidad & Tobago
Last updated: 21 August 2025
MappRides is a ride-hailing platform operated by Mapp Technologies & Services (“MappRides,” “we,” “our,” or “us”). This Privacy Policy explains what information we collect, how we use it, who we share it with, how we protect it, and the choices you have. It applies to riders, drivers, app visitors, and anyone who interacts with our services (collectively, “Users”).
We are committed to complying with applicable privacy laws, including the Trinidad & Tobago Data Protection Act, and—where relevant—foreign regulations such as the GDPR/UK GDPR and CCPA/CPRA.If you have questions, contact us at privacy@mapprides.com or WhatsApp +1 (868) 715-9094.
1) Who we are (Data Controller)Mapp Technologies & Services
Barataria, Trinidad & Tobago
Email: privacy@mapprides.com
WhatsApp (Support): +1 (868) 715-9094
We may act as Data Controller for the personal data we collect and determine how it is processed. Some third-party providers act as Data Processors on our behalf (see Section 7).
2) Information we collect
We collect information directly from you, automatically through your device/app usage, and from third parties.
A. Information you provide
Account details: full name, username, password (hashed), email, phone number, profile photo.
Identity & verification: government ID (front/back), selfie for ID match, proof of address, and background check consent.
Safety & compliance: confirmations/attestations (e.g., lawful use acknowledgments), PIN for ride validation.
Payment & wallet: card tokenization (via payment partners), wallet balance, top-ups, transaction history (we do not store full card numbers).
Communication content: messages to support, feedback, ratings, dispute details.
Driver-specific: driver’s license, vehicle details (make/model/plate), insurance and inspection documents, and subscription status.
B. Information collected automatically
Location data: precise GPS during app use (for pickups, navigation, and safety), approximate location when the app is open if you permit it.
Device & usage: device model, OS, app version, unique IDs, IP address, crash logs, diagnostics, and interaction events (buttons, screens, errors).
Cookies/SDKs: analytics and functionality cookies/SDKs used in app and web (see Section 9).C. Information from third parties
Payment processors (e.g., Stripe) provide payment status, tokens, and fraud signals.
Mapping & communications providers furnish geocoding, routing, push/SMS/email delivery status.
Law enforcement (e.g., TTPS) or public databases may confirm identity or records only where lawful and necessary.
3) How we use your information (purposes)We process personal data to:
Provide and operate the service: create accounts, match riders and drivers, navigate routes, calculate fares, and complete rides.
Verify identity & eligibility: review IDs, selfies, proof of address, and—where consented—perform background checks.
Safety & fraud prevention: enforce ride PINs, detect suspicious activity, prevent spam/abuse, and protect users and the platform.
Payments & wallet: process card/wallet payments, top-ups, and refunds; keep transaction records.
Communicate with you: confirmations, receipts, ride status updates, support responses, service announcements, and optional marketing (opt-out available).
Improve & analyze: monitor performance, debug issues, and develop new features.
Legal & compliance: respond to lawful requests; cooperate with investigations; meet regulatory and tax obligations.
Legal bases (where applicable): performance of a contract, legitimate interests (safety, fraud prevention, service improvement), consent (e.g., background checks, marketing), and legal obligations.
4) Background checks & lawful cooperation
Where required or permitted by law and with your consent, we may confirm aspects of your background with the Trinidad & Tobago Police Service (TTPS) or relevant authorities.We may preserve or disclose data when we believe it is reasonably necessary to comply with laws, protect any person’s safety, detect/prevent fraud or abuse, or protect our rights.
5) Information visible to others
Riders ↔ Drivers: during a trip, riders see driver name, vehicle details, rating, and live approach; drivers see rider first name/initials, pickup/dropoff, and contact proxy where supported.After a trip, receipts and minimal trip details may remain visible to each party in history.We do not publish your private documents (IDs, proof of address) to other users.
6) Data retention
We keep data only as long as necessary for the purposes above, and as required by law. Typical practices:
Account data: for the life of the account and a reasonable period after deletion for dispute handling and legal compliance.
Trip data & GPS logs: retained for safety, auditing, and billing (e.g., 24 months), or longer if required by law or in case of an active dispute.
Identity/verification docs: retained while verification is active and for compliance/auditing (e.g., 12–24 months after account closure), then securely deleted.
Payment records: according to financial regulations and our processor’s requirements.(These periods are indicative; exact periods may vary by legal requirement. We will minimize and securely dispose of data when no longer needed.)
7) How we share information
We share data with the following categories, under contracts and safeguards:
Service providers / processors: cloud hosting & storage, authentication, databases, analytics, push notifications, email/SMS, support tooling, and mapping.
Examples used by our stack include: Amazon Web Services (Amplify, Cognito, AppSync, S3, SES), Stripe (payments), Google Maps Platform (maps/geocoding/routing), and Expo/Apple/Google for push notifications.
Payment partners: to process payments, prevent fraud, and handle chargebacks.
Law enforcement / legal requests: where legally required or allowed (see Section 4).Business transfers: in a merger, acquisition, or asset sale, subject to this Policy’s protections.
We do not sell your personal data to advertisers.
8) International data transfers
Your information may be stored and processed outside Trinidad & Tobago (for example, in the United States or other countries where our providers operate). We use reasonable safeguards (contractual clauses, encryption in transit and at rest, minimal access) to protect your information during such transfers.
9) Cookies, SDKs, and tracking
App SDKs: used for analytics, crash reporting, performance, and messaging.
Web cookies: used on our website for session management, security, and analytics.
Your choices: disable analytics/marketing in device settings where supported, use browser controls, or contact us to learn more about tools we use.
10) Your choices & rights
Depending on your location, you may have the right to:
Access the personal data we hold about you.
Correct inaccurate or incomplete data.
Delete your data (subject to legal/contractual limits).Restrict/OBJECT to certain processing (e.g., marketing).Portability (receive a copy in a usable format).Withdraw consent where processing is based on consent (e.g., marketing; background checks before they are run).Request these by emailing privacy@mapprides.com. We may need to verify your identity.
Push notifications & location:
Control push in your device OS settings.
Control location permissions in your device settings; note the app may not function without location access.
11) SecurityWe implement administrative, technical, and physical safeguards, including:Authentication and access controls (role-based, least privilege).Encryption in transit (TLS) and at rest for hosted data.
Secure credential handling (hashed passwords, tokenized payments).Monitoring, logging, and periodic reviews.
No method is 100% secure; report issues to security@mapprides.com.
12) Children’s privacy
MappRides is not intended for individuals under 18. We do not knowingly collect data from minors. If we discover such data, we will delete it.
13) Data retention on account lock/closure
Temporary locks (e.g., for safety) do not automatically delete data.
After permanent deletion, we will remove or anonymize personal data not needed for legal, tax, fraud prevention, or dispute purposes.
14) Automated decisions & profilingWe may use limited automated checks for fraud/safety (e.g., unusual patterns, device signals). These support—not replace—human review. You can contact us to request human intervention where required by law.
15) Changes to this PolicyWe may update this Policy to reflect changes in laws, services, or practices. We’ll post updates here and modify the “Last updated” date. In case of material changes, we will provide a prominent notice in the app or by email.
16) Contact us
Privacy & Data Requests: privacy@mapprides.com
Security Reports: security@mapprides.com
General Support (WhatsApp): +1 (868) 715-9094
Postal: Mapp Technologies & Services, Barataria, Trinidad & Tobago
