Privacy Policy

1. Introduction

Welcome to Trippy Delivery ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service").

By using Trippy Delivery, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information

When you create an account or use our Service, we may collect:

• Account Information: Full name, email address, phone number, password (encrypted)
• Profile Information: Profile photo, user preferences, account settings
• Delivery Addresses: Street address, suburb, city, province, postal code, delivery instructions
• Payment Information: Payment card details (processed securely through Paystack), billing address, transaction history
• Order Information: Items purchased, order history, delivery preferences, special instructions
• Communications: Customer service inquiries, feedback, reviews, ratings

2.2 Location Information

With your permission, we collect and process location data to:

• Determine your delivery address and provide accurate delivery estimates
• Enable real-time order tracking and driver location updates
• Show nearby restaurants and stores
• Calculate delivery fees based on distance
• Optimize delivery routes for our drivers

You can enable or disable location services through your device settings at any time. However, disabling location services may limit certain features of the Service.

2.3 Driver-Specific Information

If you register as a delivery driver, we additionally collect:

• Identification Documents: ID card, driver's license, proof of residence
• Vehicle Information: Vehicle make, model, registration details, insurance information
• Background Check Data: Criminal background checks, driving record (as permitted by law)
• Banking Information: Bank account details for payment processing
• Real-time Location: Continuous location tracking while on duty to facilitate deliveries

2.4 Automatically Collected Information

• Device Information: Device type, operating system, unique device identifiers, mobile network information
• Usage Data: App interactions, pages viewed, features used, time spent on pages, click patterns
• Log Data: IP address, browser type, access times, pages visited, referring URLs
• Cookies and Similar Technologies: We use cookies, web beacons, and similar technologies to enhance user experience and analyze Service usage

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Delivery

• Process and fulfill your orders
• Facilitate communication between customers, drivers, and merchants
• Provide real-time order tracking and delivery updates
• Calculate delivery fees and estimated arrival times
• Process payments and send transaction receipts

3.2 Account Management

• Create and maintain your account
• Authenticate your identity and prevent fraud
• Provide customer support and respond to inquiries
• Send important account notifications and service updates

3.3 Improvement and Personalization

• Analyze usage patterns to improve our Service
• Personalize your experience based on preferences and order history
• Recommend products and services that may interest you
• Develop new features and functionality

3.4 Marketing and Communications

• Send promotional offers, discounts, and special deals (with your consent)
• Conduct surveys and gather feedback
• Send newsletters and updates about our Service

You can opt out of marketing communications at any time by clicking the unsubscribe link in our emails or adjusting your notification preferences in the app.

3.5 Safety and Security

• Verify driver identities and conduct background checks
• Detect, prevent, and address fraud, security breaches, or illegal activities
• Ensure compliance with our Terms of Service
• Protect the rights and safety of our users and the public

3.6 Legal Compliance

• Comply with applicable laws, regulations, and legal processes
• Respond to government requests and law enforcement inquiries
• Enforce our Terms of Service and other agreements
• Resolve disputes and defend legal claims

4. How We Share Your Information

We may share your information in the following circumstances:

4.1 With Other Users

• Customers and Drivers: We share necessary delivery information (name, delivery address, phone number) between customers and assigned drivers to facilitate deliveries
• Merchants: Order details are shared with restaurants and stores to fulfill your orders
• Public Reviews: Reviews and ratings you submit may be publicly visible with your name or username

4.2 With Service Providers

We work with third-party service providers who perform services on our behalf:

• Payment Processing: Paystack (payment gateway for secure transaction processing)
• Mapping and Location Services: Google Maps API (for navigation, geocoding, and location services)
• Cloud Hosting: Vercel, Neon Database (for hosting and data storage)
• Email Services: Email delivery providers (for transactional and marketing emails)
• Analytics: Service usage analytics and performance monitoring tools
• Customer Support: Third-party customer service platforms

These service providers have access to your personal information only to perform specific tasks on our behalf and are obligated to protect your information and not use it for other purposes.

4.3 For Legal Reasons

We may disclose your information if required to do so by law or in response to:

• Legal proceedings, court orders, or government requests
• Law enforcement or regulatory authorities
• Protection of our rights, property, or safety, or that of our users or the public
• Detection, prevention, or investigation of fraud, security issues, or illegal activities

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice in our Service of any change in ownership or use of your personal information.

4.5 With Your Consent

We may share your information for other purposes with your explicit consent or at your direction.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption: Data transmission is encrypted using SSL/TLS protocols
• Password Protection: Passwords are hashed and salted using industry-standard algorithms
• Access Controls: Strict access controls limit who can access your personal information
• Secure Storage: Data is stored on secure servers with regular backups
• Regular Security Audits: We conduct regular security assessments and updates
• PCI DSS Compliance: Payment card data is processed in compliance with PCI DSS standards through Paystack

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. You are responsible for maintaining the confidentiality of your account credentials and for all activities under your account.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Retention periods vary depending on the type of information and the purpose for which it is used:

• Account Information: Retained while your account is active and for a reasonable period after account closure for legal and business purposes
• Transaction Records: Retained for 7 years to comply with tax and accounting regulations
• Driver Verification Documents: Retained for regulatory compliance and as long as the driver is active, plus applicable legal retention periods
• Marketing Data: Retained until you opt out or request deletion
• Customer Support Records: Retained for up to 3 years for quality assurance and dispute resolution

When information is no longer needed, we securely delete or anonymize it. Some information may be retained in backup systems for a limited additional period.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

7.1 Access and Portability

• Request access to the personal information we hold about you
• Request a copy of your data in a structured, commonly used format
• View and download your order history, saved addresses, and payment methods in the app

7.2 Correction and Update

• Update your account information, delivery addresses, and preferences directly in the app
• Request correction of inaccurate or incomplete information

7.3 Deletion

• Request deletion of your account and associated personal information
• Delete saved addresses and payment methods in the app settings
• Note: Some information may be retained as required by law or for legitimate business purposes

7.4 Opt-Out Rights

• Marketing Communications: Unsubscribe from promotional emails using the unsubscribe link or app settings
• Push Notifications: Disable notifications in your device or app settings
• Location Services: Disable location access in your device settings (may limit functionality)
• Cookies: Manage cookie preferences through your browser settings

7.5 Object and Restrict Processing

• Object to processing of your personal information for certain purposes
• Request restriction of processing in certain circumstances

7.6 Withdraw Consent

Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please contact us at privacy@trippydelivery.com or use the account settings in the app. We will respond to your request within 30 days.

8. Location Services

Our Service uses location services to provide core functionality. Here's how we use location data:

8.1 For Customers

• Determine your delivery location and suggest nearby addresses
• Show restaurants and stores available in your area
• Provide accurate delivery time estimates
• Track your order in real-time and show driver location
• Calculate delivery fees based on distance

Permission Required: We request your location permission when you first use the app. Location data is only collected when the app is in use (foreground location). You can revoke this permission in your device settings at any time.

8.2 For Drivers

• Match drivers with nearby delivery requests
• Provide turn-by-turn navigation to pickup and delivery locations
• Share driver location with customers for order tracking
• Optimize delivery routes and reduce travel time
• Verify completion of deliveries at the correct location

Background Location: Drivers must grant background location permission to continue receiving and fulfilling delivery requests while the app is not actively open. This ensures customers can track deliveries and drivers can navigate efficiently. Driver location is only tracked and shared while on active deliveries.

8.3 Location Data Privacy

• Precise location coordinates are used only for delivery purposes and are not sold to third parties
• Location history is retained only as long as necessary for service delivery and support
• You can disable location services, but this may prevent you from using core features
• Location data is encrypted in transit and at rest

9. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@trippydelivery.com.

If we become aware that we have collected personal information from a child under 18 without verification of parental consent, we will take steps to delete that information from our servers promptly.

10. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than South Africa, including the United States and European Union, where our service providers are located. These countries may have data protection laws that differ from those in your country.

When we transfer personal information internationally, we ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by regulatory authorities
• Service providers certified under recognized data protection frameworks
• Encryption and security measures during data transmission

By using our Service, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules.

11. Third-Party Services and Links

Our Service integrates with and may contain links to third-party services:

11.1 Integrated Third-Party Services

• Paystack: Payment processing (see Paystack Privacy Policy at paystack.com/privacy)
• Google Maps: Mapping and location services (see Google Privacy Policy at policies.google.com/privacy)

When you interact with these services, their privacy policies apply to the collection and use of your information.

11.2 External Links

Our Service may contain links to third-party websites or services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policies of any third-party sites you visit.

12. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, analyze usage, and support our Service functionality.

12.1 Types of Cookies We Use

• Essential Cookies: Required for the Service to function (authentication, security, session management)
• Performance Cookies: Help us understand how users interact with our Service (analytics, error tracking)
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Track your activity to deliver personalized advertisements (with consent)

12.2 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. However, disabling essential cookies may prevent you from using certain features of our Service.

For mobile app tracking, you can use device settings:

• iOS: Settings → Privacy → Tracking → Disable "Allow Apps to Request to Track"
• Android: Settings → Google → Ads → Opt out of Ads Personalization

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email or through a prominent notice in our Service
• For significant changes, request your consent where required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Service after changes are posted constitutes your acceptance of the updated Privacy Policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiry within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

15. Region-Specific Privacy Rights

15.1 South African Users (POPIA)

Under the Protection of Personal Information Act (POPIA), South African residents have specific rights regarding their personal information:

• Right to know what personal information we hold
• Right to request correction of inaccurate information
• Right to object to processing of personal information
• Right to request deletion of personal information
• Right to lodge a complaint with the Information Regulator

15.2 European Users (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including:

• Right to data portability
• Right to restriction of processing
• Right not to be subject to automated decision-making
• Right to lodge a complaint with a supervisory authority

15.3 California Users (CCPA/CPRA)

California residents have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information
• Right to opt-out of the sale or sharing of personal information
• Right to correct inaccurate personal information
• Right to limit use and disclosure of sensitive personal information
• Right to non-discrimination for exercising privacy rights

Note: Trippy Delivery does not sell personal information to third parties.