Privacy Notice

Last updated: 2026

Who we are

RideGuard ("we", "us") is the data controller for personal data collected through this website and service.

Data we collect

  • Account data: email address, login credentials, display name.
  • Report data: hazard descriptions, locations, photos, and timestamps you submit.
  • Usage & device data: IP address, browser type, pages visited, and interaction telemetry.
  • Support communications: messages you send us.
  • Membership data: Supporter payments are handled by Paddle as Merchant of Record; we receive limited order information (amount, currency, transaction ID, your email) to attribute the membership to your account.

Why we use it

  • Provide and operate the RideGuard service (legal basis: contract performance).
  • Display community hazard reports on the map (legitimate interests).
  • Security, fraud prevention, and abuse investigation (legitimate interests, legal obligation).
  • Product improvement and analytics (legitimate interests).
  • Respond to support requests (contract performance / legitimate interests).
  • Comply with legal obligations (legal obligation).

Who we share it with

  • Service providers / subprocessors: hosting, database, analytics, and email delivery providers acting on our instructions.
  • Paddle — our Merchant of Record — handles Supporter membership payments, subscription management, tax compliance, and invoicing.
  • Professional advisers (legal, accounting) where necessary.
  • Authorities where required by law.

International transfers

Where personal data is transferred outside the UK/EEA, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

Retention

We keep personal data only for as long as needed for the purposes above, then delete or anonymise it. Account data is kept while your account is active; hazard reports may be retained in anonymised form as part of the historical map record.

Your rights

Under UK GDPR you have the right to access, rectify, erase, restrict or object to processing of your data, request portability, withdraw consent, and complain to the Information Commissioner's Office (ICO). We aim to respond within one month.

Security

We use appropriate technical and organisational measures — including encryption in transit, access controls, and regular review — to protect personal data.

Cookies

We use strictly necessary cookies to run the site and, where enabled, analytics cookies to understand aggregate usage. You can manage cookies in your browser settings.

Contact

To exercise any right or ask a privacy question, contact RideGuard via the details on our website.