Privacy Policy Speed-Tracker

PRIVACY POLICY
Effective Date: March 1, 2025
Last Revised: February 1, 2026
This Privacy Policy („Policy“) outlines how Moonshot Apps UG (haftungsbeschränkt) („Company,“ „we,“ „us,“ or „our“) collects, uses, and protects your personal information through the use of the Speed Tracker mobile application (the „App“). By using the App, you consent to the practices described in this Policy.
1. DATA COLLECTION AND USE
1.1 Local Data (no account required)

  • Location Data: We collect precise location data for the purpose of providing the core functionality of the App, such as tracking driving statistics. Location data is processed solely to provide trip tracking and is not used to infer personal habits, behavior patterns, or sensitive characteristics. Location data is not accessed when the App is not in active use, unless explicitly enabled by the user. This data is stored locally on your device and is not transmitted to our servers unless you choose to share trips (see Section 1.2).
  • Game Center Statistics: If you choose to enable Game Center, anonymized driving statistics may be shared with Apple to allow comparison of your performance with other users.
1.2 Social Features (account required)
If you create an account and use the App’s social features, the following additional data is collected and stored on our servers:
  • Account Information: Your display name, email address (for email sign-up), and authentication identifiers. If you sign in with Apple, we receive only the information you choose to share (name, email) as permitted by Apple’s Sign in with Apple service.
  • Profile Data: Your display name, account creation date, country or region (detected from your App Store account or device locale), and aggregated driving statistics derived from your publicly shared trips (such as total distance, total duration, peak speed, average speed, and ETA comparison metrics).
  • Shared Trip Data: When you choose to share a trip, the following trip data is uploaded to our servers: distance, duration, average speed, maximum speed, estimated travel time, start and end coordinates, route coordinates with associated speeds, and a map thumbnail image. You control which trips are shared and can remove shared trips at any time.
  • Friend Connections: If you use the friends feature, we store your connections (friend list) and friend request history (sender, recipient, status).
  • Subscription Information: If you subscribe, we store your subscription status, product identifier, purchase date, and expiration date to manage access to social features.
1.3 How We Use Your Data
We use the data collected for the following purposes:

  • To provide and maintain the App’s core driving tracking functionality.
  • To enable social features including trip sharing, user profiles, leaderboards, friend connections, and rankings.
  • To process and manage your subscription.
  • To detect your country or region for leaderboard classification.
  • To improve the App and fix technical issues.
We do not use your personal data for advertising purposes. We do not sell, rent, or trade your personal information to third parties.
2. DATA STORAGE, TRANSFERS, AND RETENTION
2.1 Local Storage
Driving data for trips that are not shared is stored locally on your device. You control the retention and deletion of this data.
2.2 Cloud Storage
Social feature data (account information, shared trips, profiles, friend connections, and subscription status) is stored using Google Firebase services, with servers located in the United States and/or the European Union.
2.3 International Data Transfers
If you are located outside the United States, please be aware that your data may be transferred to and processed in the United States where our cloud infrastructure is hosted. Google Firebase complies with applicable data protection frameworks, including EU Standard Contractual Clauses, to ensure adequate protection of your data during international transfers. Where required by local law, we obtain your consent for the overseas transfer of personal data. Such transfers are protected through contractual safeguards, including standard contractual clauses or equivalent mechanisms.
2.4 Data Retention

  • Local data: Retained on your device until you delete it.
  • Account information: Retained while the account is active and permanently deleted within 30 days of account deletion.
  • Shared trip data: Retained until deleted by the user or upon account deletion.
  • Friend connections and social interactions: Deleted upon account deletion.
  • Subscription records: Retained for up to 10 years as required by German tax and accounting laws (Abgabenordnung, §147 AO).
  • Game Center data: Retained according to Apple’s Game Center policies.
  • Backup data: Securely deleted within 90 days of account deletion.
3. LEGAL BASIS FOR PROCESSING (EU/EEA/UK RESIDENTS)
Under the General Data Protection Regulation (GDPR) and UK GDPR, we process your personal data on the following legal bases:
  • Contract Performance (Art. 6(1)(b) GDPR): Processing your account information, shared trip data, and subscription status is necessary to provide the social features you signed up for.
  • Legitimate Interest (Art. 6(1)(f) GDPR): Processing aggregated statistics and country data for leaderboards and rankings, and processing data to improve the App and fix issues.
  • Consent (Art. 6(1)(a) GDPR): Where required, such as for location data access, which you can grant or revoke at any time through your device settings.
4. USER RIGHTS AND CONTROL
4.1 All Users
As a user, you have the right to:

  • Access: View your data stored within the App and on our servers (via your profile).
  • Deletion: Delete your local data through the App’s settings. Delete your account and all server-side data through the account management screen.
  • Control Sharing: Choose which trips to share publicly or with friends, and revoke sharing at any time.
  • Opt-Out: Disable Game Center sharing to stop the sharing of your anonymized statistics with Apple. Manage location permissions through your device settings.
4.2 EU/EEA/UK Residents (GDPR)
In addition to the rights above, you have the following rights under GDPR:

  • Right to Rectification: Request the correction of any incorrect data.
  • Right to Restrict Processing: Request that we limit the processing of your data.
  • Right to Data Portability: Request a copy of your data in a structured, commonly used format.
  • Right to Object: Object to the processing of your data based on legitimate interest.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your EU/EEA member state or the UK Information Commissioner’s Office (ICO). The competent supervisory authority for Moonshot Apps UG is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany.
To exercise any of these rights, contact us at the email address provided in Section 9.
4.3 California Residents (CCPA/CPRA)
If you are a California resident, under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), you have the right to:

  • Know what personal information we collect, use, and disclose.
  • Delete your personal information.
  • Correct inaccurate personal information.
  • Opt-out of the sale or sharing of your personal information. We do not sell or share your personal information for cross-context behavioral advertising.
  • Non-Discrimination: We do not discriminate against users who exercise their privacy rights.
Categories of personal information collected (as defined by the CCPA): Identifiers (display name, email address), geolocation data (trip coordinates), and internet or network activity (usage of social features).
Sensitive Personal Information: We collect precise geolocation data solely to provide the App’s core trip tracking functionality. We do not use or disclose sensitive personal information for purposes other than those permitted under the CPRA. Users may limit the use of this data at any time through their device location permissions.
We honor Global Privacy Control (GPC) signals where applicable. As we do not sell or share personal information for advertising purposes, GPC signals do not materially affect data processing.
4.4 Residents of Japan, South Korea, and Other Asia-Pacific Jurisdictions
We comply with applicable data protection laws in your jurisdiction, including Japan’s Act on the Protection of Personal Information (APPI) and South Korea’s Personal Information Protection Act (PIPA). You have the right to access, correct, and delete your personal data. Where required by local law, we obtain your consent for the overseas transfer of personal data to countries outside your jurisdiction. Such transfers are protected through contractual safeguards, including standard contractual clauses or equivalent mechanisms recognized under applicable local law.
5. THIRD-PARTY SERVICES
The App integrates with the following third-party services:
  • Apple iOS Services: The App uses Apple’s Core Location, Game Center, Sign in with Apple, and StoreKit services. These services are governed by Apple’s Privacy Policy.
  • Google Firebase: We use Firebase Authentication, Cloud Firestore, and Firebase Storage to provide social features. Google Firebase processes personal data solely on our instructions and in accordance with applicable data protection laws. We have entered into data processing agreements with Google as required by GDPR Article 28. Firebase’s data processing is governed by Google’s Privacy Policy and Firebase Data Processing Terms.
We do not share your data with advertising networks, data brokers, or social media platforms.
6. AUTOMATED DECISION-MAKING AND PROFILING
We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on users. Leaderboards and rankings are based solely on data from trips that users have voluntarily shared and do not affect access to services or any other aspect of your use of the App.
7. CHILDREN’S PRIVACY
The App and its social features is not intended for children under the age of 13. Where local law requires a higher minimum age, we comply with that requirement. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without appropriate parental consent, we will take steps to delete that information promptly.
8. SECURITY MEASURES AND DATA BREACH NOTIFICATION
We implement reasonable technical and organizational measures to protect your data, including secure local storage, encrypted data transmission (TLS/SSL), and Firebase’s built-in security infrastructure. However, no method of electronic data transmission or storage is entirely secure, and we cannot guarantee the absolute security of your information.
In the event of a personal data breach that poses a risk to the rights and freedoms of users, we will notify affected users and relevant supervisory authorities in accordance with applicable legal requirements, including without undue delay and no later than 72 hours after becoming aware of the breach where required by GDPR.
9. POLICY UPDATES
We may update this Privacy Policy from time to time. Material changes will be communicated via in-app notifications or updates on our website. The „Last Revised“ date at the top of this Policy indicates when the latest changes were made. Continued use of the App after such changes constitutes acceptance of the updated Policy.
10. DATA CONTROLLER AND CONTACT INFORMATION
Data Controller:
Moonshot Apps UG (haftungsbeschränkt)
Gontardstr. 11
95445 Bayreuth
Germany
We have not appointed a Data Protection Officer, as we are not required to do so under Article 37 GDPR. Privacy-related inquiries may be directed to the contact details below.
Email: appstore@moonshotapps.de
Website: https://moonshotapps.de

Privacy Preference Center