Privacy Policy

SpeedoExpress Pvt. Ltd.

Privacy Policy

Effective Date:

24 December 2025

Valid Until:

Terminated or revised by the Company

Jurisdiction:

Greater Noida, Uttar Pradesh, India

1. INFORMATION WE COLLECT

We collect and process the following categories of data:

A. CLIENTS (USERS)

Name, phone number, email ID, password (encrypted), pickup/drop location, goods details, vehicle requirements, booking timestamps, device and app usage analytics.

B. DRIVERS & FLEET OWNERS (KYC VERIFIED PARTNERS)

Name, phone, email, password, real-time or manually updated location, Driver License (DL), Vehicle Registration Certificate (RC), vehicle photos, and additional commercial permit documents if applicable.

C. TRANSACTION & TECHNICAL DATA

Payment metadata via Razorpay, settlement logs, wallet transaction history, IP address, device ID, app crash logs, cookies, and encrypted chat logs for support & dispute resolution.

2. LOCATION DATA USAGE

Drivers must update location or enable live location for order allocation. Clients may optionally share real-time location for accurate pickup/drop pinning.

3. PAYMENT DATA HANDLING

  • Payments are securely processed via Razorpay Payment Gateway, compliant with RBI digital payment standards and PCI-DSS security benchmarks.
  • The Company does not store raw card/UPI PIN/banking credentials.

4. COOKIES & TRACKING TECHNOLOGIES

4.1 What Are Cookies

Cookies are small text files stored on your device when you use our website or app. They help us provide a better user experience, remember your preferences, and analyze how our services are used.

4.2 Types of Cookies We Use

Essential Cookies (Required)

Necessary for the platform to function properly. These include authentication cookies, session management, and security features. Cannot be disabled.

Performance & Analytics Cookies

Help us understand how users interact with our platform using Google Analytics. We collect anonymized data about page views, session duration, and user behavior to improve our services.

Functional Cookies

Remember your preferences (language, region, theme settings) and provide enhanced features like location-based services.

Security Cookies

Used for fraud prevention, bot detection (reCAPTCHA), and protecting your account from unauthorized access.

4.3 Third-Party Services & Cookies

We use the following third-party services that may set cookies:

  • Google Analytics: For website traffic analysis and user behavior insights
  • Google reCAPTCHA: For bot detection and spam prevention during authentication
  • Razorpay: For secure payment processing (does not store card details on our servers)
  • Firebase: For authentication, real-time database, and cloud messaging
  • Cloudinary: For image storage and optimization

These services operate under their own privacy policies. We recommend reviewing their policies for detailed information.

4.4 Managing Cookies

You can control cookies through:

  • Browser Settings: Most browsers allow you to refuse cookies or delete existing ones. However, this may affect platform functionality.
  • Opt-Out Tools: You can opt-out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.
  • Mobile App Settings: Manage app permissions and tracking through your device settings.

Note: Disabling essential cookies may prevent you from using certain features of our platform.

4.5 Local Storage & Session Storage

In addition to cookies, we use browser local storage and session storage to cache authentication tokens, user preferences, and temporary booking data for improved performance and offline functionality.

5. DATA CONFIDENTIALITY & SECURITY

We implement reasonable security practices under Rule 8 of IT (SPDI) Rules, 2011, aligned with ISO/IEC 27001 standards, including:

  • Encryption in transit (HTTPS/TLS) and at rest (AES-256)
  • Role-based admin access control with audit logs
  • Periodic cybersecurity audits and vulnerability assessments
  • Secure cloud infrastructure (Firebase, Google Cloud) with automatic backups
  • Multi-factor authentication for admin accounts
  • Breach mitigation protocols and incident response procedures

6. DATA SHARING

We share only minimum operational data:

  • With Service Partners: Assigned Drivers/Fleet Owners receive customer name, phone, pickup/drop location, and goods details for order fulfillment
  • With Payment Processors: Razorpay receives transaction data necessary for payment processing (no raw card details stored by us)
  • With Legal Authorities: Government or Cybersecurity bodies (e.g., CERT-IN) when legally required or for law enforcement investigations
  • Analytics & Performance: Anonymized usage data with Google Analytics for service improvement

We do not sell, rent, or publicly disclose personal data to third parties for marketing purposes.

7. DATA RETENTION & DELETION

Data is retained only as long as required for:

  • Active logistics operations and service delivery
  • Legal compliance under IT Act, 2000 and SPDI Rules, 2011
  • Dispute resolution, fraud prevention, and audit requirements (typically 3-7 years)
  • Financial record-keeping as per tax and accounting regulations
7.1 User Rights to Data Deletion

Users may request data deletion by contacting our support team. We will delete your personal data within 30 days unless:

  • Retention is mandated by law (tax records, legal proceedings)
  • Active disputes or pending transactions exist
  • Data is required for fraud prevention or security investigations

Anonymized and aggregated data may be retained indefinitely for analytics and service improvement.

7.2 Inactive Account Policy

Accounts inactive for 2+ years may be automatically archived or deleted after email notification, unless you request to keep the account active.

8. USER RIGHTS & DATA ACCESS

Under applicable Indian data protection laws, you have the right to:

  • Access: Request a copy of your personal data stored by us
  • Correction: Update or correct inaccurate information in your profile
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Portability: Receive your data in a structured, machine-readable format
  • Withdraw Consent: Withdraw consent for optional data processing (e.g., marketing communications)
  • Object: Object to certain types of data processing

To exercise these rights, contact us at speedoexpresshome@gmail.com with your registered phone number or email for identity verification.

9. CYBER INCIDENT REPORTING

In case of a cyber breach or data security incident affecting personal information, we may report incidents to CERT-IN (Indian Computer Emergency Response Team) as per Indian Cybersecurity Incident Guidelines. Affected users will be notified within 72 hours of discovery via email or in-app notification.

10. CHILDREN'S PRIVACY

Our services are not intended for users under 13 years of age. We do not knowingly collect personal information from children. Registration requires users to be at least 13 years old. If you believe a child has provided us with personal data, please contact us immediately.

11. INTERNATIONAL DATA TRANSFERS

Your data is primarily stored on servers located in India. Some third-party services (Google Cloud, Firebase, Cloudinary) may process data on servers outside India. These transfers are protected by:

  • Standard contractual clauses
  • Service provider compliance with international data protection standards
  • Encryption and secure transmission protocols

12. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Effective Date." Continued use of our services after changes constitutes acceptance of the revised policy. For significant changes, we will notify users via email or in-app notification.

13. GRIEVANCE OFFICER

As required under IT Rules, 2021, we have appointed a Grievance Officer to address privacy concerns and data protection queries:

Grievance Officer Contact:

Email: speedoexpresshome@gmail.com

City: Greater Noida, Uttar Pradesh, India

Complaints are addressed within statutory timelines (typically 15-30 days).

14. CONSENT

By using Speedo Express Website, App, or Services, you consent to this Privacy Policy under Section 10A of the Information Technology Act, 2000. You also acknowledge and accept our use of cookies and tracking technologies as described above.

Contact Us

For privacy-related questions, data access requests, or to exercise your rights:

Email: speedoexpresshome@gmail.com

Address: Robertsganj, Sonbhadra, Uttar Pradesh, India

Website: speedoexpress.org

Last Updated: 24 December 2025

This Privacy Policy is governed by the laws of India.