Shuto Shuto Back to Home

Privacy Policy

Last updated: October 30, 2025

Introduction

At Shuto, your privacy is paramount. We believe navigation apps should enhance your driving experience without compromising your personal data. This Privacy Policy explains what information we collect, how we use it, and the rights you have over your data.

Information We Collect

Location Data

  • GPS Traces: We collect your location while navigating to provide turn-by-turn guidance, speed camera alerts, and traffic information. Raw GPS traces are retained for a maximum of 30 days, after which they are automatically deleted.
  • Route History: We store anonymized route metadata (start/end points, distance, duration) to improve route quality. This data is not linked to your identity.
  • Background Location: Location tracking only occurs when you explicitly start navigation or Free Drive mode. We never track your location in the background without your consent.

Account Information

  • Email address (for authentication and important account updates)
  • Display name (optional)
  • Profile picture (optional)

Usage Data

  • App interactions (features used, navigation sessions, route preferences)
  • Device information (iOS version, device model, app version)
  • Crash logs and error reports (to improve app stability)

Convoy Data

  • Ephemeral Only: When you create or join a convoy, member positions are shared in real-time but never stored persistently. All convoy location data is deleted when the session ends.
  • Convoy voice communications use end-to-end encrypted WebRTC. We do not record or store voice data.
  • Convoy metadata (creation time, duration, member count) is retained in aggregated, anonymized form for analytics.

How We Use Your Information

  • Navigation Services: Provide turn-by-turn guidance, speed limits, camera alerts, and traffic updates
  • Route Discovery: Recommend curated driving routes based on your location and preferences
  • Convoy Features: Enable real-time position sharing and push-to-talk voice with convoy members
  • Service Improvement: Analyze anonymized usage patterns to enhance route quality and app performance
  • Support: Respond to your inquiries and troubleshoot technical issues

We never: β€’ Sell your data to third parties β€’ Use tracking pixels or advertising IDs β€’ Share your precise location with advertisers β€’ Store voice recordings from convoy sessions

Data Sharing

We share your data only in these limited circumstances:

Infrastructure Providers

  • Supabase (US-based, AWS infrastructure): Hosts our database, authentication, and backend functions. Stores account data, route metadata, and user-generated content. Subject to Supabase's privacy policy and GDPR compliance.
  • Hetzner (Germany-based, EU infrastructure): Hosts our self-hosted routing and voice services:
    • OSRM routing servers: Process route calculations (coordinates pass through but are not stored)
    • Janus WebRTC Gateway: Facilitates convoy voice signaling (no recordings stored)
    • Redis cache: Temporarily stores convoy positions (ephemeral, deleted on session end) and traffic incidents
    • CDN: Caches public route polylines for fast map rendering

Data Residency: Your account data and GPS traces are stored on Supabase's AWS infrastructure (configurable regions). Route calculations and convoy services run on Hetzner's EU servers (Germany). We do not transfer personal data outside of GDPR-compliant regions without your consent.

Other Disclosures

  • Legal Requirements: We may disclose data if required by law, such as responding to a valid court order or subpoena.
  • Safety: In emergency situations where disclosure could prevent harm to you or others.
  • Convoy Members: Your real-time location is shared only with convoy members you explicitly join.

Your Rights

Under GDPR (EU) and CCPA (California), you have the following rights:

πŸ” Access

Request a copy of all personal data we hold about you

✏️ Correction

Update or correct inaccurate information

πŸ—‘οΈ Deletion

Request deletion of your account and all associated data

πŸ“€ Export

Download your data in a portable format

β›” Opt-Out

Withdraw consent for non-essential data processing

⏸️ Restriction

Limit how we use your data

To exercise these rights, email us at privacy@shuto.app. We'll respond within 30 days.

Data Retention

  • Raw GPS Traces: Maximum 30 days, then automatically deleted
  • Convoy Positions: Ephemeral only (deleted when session ends)
  • Account Data: Retained until you delete your account
  • Anonymized Analytics: Retained indefinitely for service improvement

Security

We implement industry-standard security measures to protect your data:

  • HTTPS encryption for all data transmission
  • Row-level security (RLS) policies in our database to restrict access
  • End-to-end encrypted WebRTC for convoy voice
  • Regular security audits and penetration testing
  • No third-party analytics or advertising SDKs

Children's Privacy

Shuto is not intended for users under 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected data from a child, please contact us immediately at privacy@shuto.app.

International Users

Shuto is operated from the United Kingdom. If you access the app from outside the UK, your data may be transferred to and processed in the UK or other countries where our service providers operate. By using Shuto, you consent to this transfer.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we'll notify you via email or through an in-app notification. Your continued use of Shuto after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or your data:

⚠️ Safety Notice

Shuto provides navigation guidance for informational purposes only. You are solely responsible for safe and lawful driving. Always obey local traffic laws, road signs, and speed limits. Do not use your phone while driving unless it is safely mounted and legal in your jurisdiction.