Privacy Policy

GRVL-Explore — Last updated: June 2026

This privacy policy describes how the GRVL-Explore mobile application collects, uses, and protects your personal data. By using the application, you agree to the practices described below.

1. Data collected

We collect only the data necessary for the application to function:

Category	Data collected	Purpose
Account	Email address, username, profile picture (optional)	Authentication and identification
GPS activities	GPS tracks, distance, elevation, duration, ride photos (optional)	Recording and sharing sporting activities
Location	Real-time GPS position (during an activity), approximate location	Ride tracking, displaying nearby routes
Social	Follows, Bravos, comments	Community features
Notifications	Push notification token (device token)	Sending notifications (Bravos, new followers, etc.)
Technical	Error logs, application version	Stability and improvement of the application

2. App permissions

We request only the permissions strictly necessary for the features offered. You can revoke any permission at any time from your device settings.

Android

ACCESS_FINE_LOCATION

Precise location (GPS) Used to record your GPS tracks in real time during a sporting activity.

ACCESS_COARSE_LOCATION

Approximate location Used to display routes and activities near your position, without full GPS precision.

ACCESS_BACKGROUND_LOCATION

Background location Allows GPS recording to continue when the screen is off or the app is in the background during an active ride.

FOREGROUND_SERVICE

FOREGROUND_SERVICE_LOCATION

Foreground service Keeps GPS tracking active and displays a persistent notification during activity recording, as required by Android for continuous location access.

READ_EXTERNAL_STORAGE

Read external storage Allows importing GPX or FIT files from your device into the application.

WRITE_EXTERNAL_STORAGE

Write external storage Allows exporting your routes and activities in GPX or FIT format to your device.

VIBRATE

Vibration Used for haptic feedback (notifications, application alerts).

INTERNET

Internet access Required for data synchronisation with our servers, map loading, and online features.

iOS (Apple)

Location when in use Used to record your GPS activities and display nearby routes while the application is open on screen.

Always-on location (background) Allows GPS recording to continue when the screen is off during an activity. This permission is only active when a recording is in progress.

Photo library Used to select photos from your gallery to add to your activities or to set your profile picture.

Push notifications Used to notify you of new Bravos, followers, and other interactions on the application. You can manage your notification preferences in the app settings and in your iPhone settings.

3. Use of data

Your data is used to:

Record, display, and share your sporting activities (according to your privacy settings).
Provide social features (follow other users, Bravos, comments).
Send you notifications related to your activity on the platform.
Improve the stability and performance of the application.

Your data is never used for advertising purposes and is never sold to third parties.

4. Strava integration

GRVL-Explore lets you connect your Strava account to import your activities. In accordance with the Strava API usage policy, data from Strava is subject to the following rules:

Activities imported from Strava are identified as such and are not shared publicly by default.
If a Strava-imported activity requires public sharing, you must give your explicit consent for that activity. This consent can be withdrawn at any time.
Activities imported from Strava are not displayed publicly on the exploration map. Only planned activities (routes) and activities recorded directly in GRVL-Explore are visible on the exploration map, and only if you have made them public.
Your Strava data is never resold or transmitted to third parties beyond the strict operation of the service.

5. Data sharing

We do not sell your personal data. Your data may be transmitted to third-party technical providers solely for the operation of the service (hosting, file storage). These providers are contractually bound to protect your data.

6. Storage and security

Your data is stored on secure servers. Profile pictures and ride photos are hosted on Amazon S3. We use HTTPS for all communications between the application and our servers.

7. Group chat

GRVL-Explore offers a chat feature that lets members of a group exchange messages. These conversations are end-to-end encrypted: your messages are encrypted directly on your device and can only be decrypted by the other recipient members of the group.

Encryption keys are generated and kept exclusively on your devices; they are never transmitted to our servers. Neither GRVL-Explore nor any third party is able to read the content of your group messages.

8. Live location sharing (Live Sharing)

GRVL-Explore offers a real-time location sharing feature within a group ("Live Sharing"), allowing members of an active session to see the GPS position of other participants on a map.

Unlike group chat messages, positions shared via Live Sharing are not end-to-end encrypted. They are transmitted to our servers to be relayed in real time to other members of the session, and the last known position of each participant is stored on our servers.

Location sharing is only active for the duration of a session you voluntarily start or join.
You can stop sharing your location at any time.
Only group members participating in the active session can see your location while you are sharing it.
The last known position of each participant at the end of a session is kept in the group's session history.

9. Tracking

GRVL-Explore does not track you for advertising purposes. The iOS application is declared as non-tracking (NSPrivacyTracking: false) in accordance with Apple's requirements. We do not use third-party advertising SDKs.

10. Data retention

Your data is retained for as long as your account is active. You may request deletion of your account and all associated data at any time by contacting us.

11. Your rights

Under the GDPR, you have the following rights:

Right of access to your personal data.
Right to rectification of inaccurate information.
Right to erasure ("right to be forgotten").
Right to data portability.
Right to object to the processing of your data.

12. Minors

The application is intended for persons aged 13 and over. We do not knowingly collect personal data from children under the age of 13.

13. Contact

For any questions regarding this policy or to exercise your rights, contact us at: mail@grvl-explore.com

14. Changes

We may update this privacy policy. In the event of a material change, we will notify you via the application or by email. The date of the last update is shown at the top of this document.