SPOTLINK PRIVACY POLICY
 Last updated: 20 Sept, 2025

1. Introduction
 Spotlink ("we," "us," or "our") values your privacy and is committed to protecting your personal data. This Privacy Policy explains what data we collect, how we use it, and your rights. By using Spotlink’s app, website, or APIs (collectively, the "Service"), you consent to the practices described herein.

2. Data We Collect

2.1 Account Information

  • Phone Number: Verified at sign-up to prevent fraud and create a unique user identity.

  • Email Address: For account recovery, notifications, and support.

2.2 Location Data

  • Real-Time GPS: Collected continuously while the app is running to enable handoff matching, geofence enforcement, and navigation guidance.

  • Location History: Stored temporarily (up to 30 days) for dispute resolution and analytics; aggregated and anonymized thereafter.

2.3 Transaction & Usage Data

  • SpotCoin Wallet Activity: Purchases, spends, refunds, and withdrawals.

  • Match History: Match IDs, timestamps, token amounts, and outcomes (success, no-show, abandonment).

  • Device Information: Device type, OS version, app version, and crash logs (if you opt in) to improve stability.

2.4 Automated Data

  • CurbAI Logs: Meter rule checks, 311 alerts, and sign inventory validations.

  • Performance Metrics: API call volumes, latency, and error rates.

3. How We Use Your Data

  • Core Functionality: Enable Spotter-Seeker matches, escrow and payout processing, geofence detection.

  • Security & Fraud Prevention: Phone verification, payment fraud monitoring, GPS spoofing detection.

  • Service Improvement: Analytics to optimize routing, pricing, and user experience.

  • Communications: Transaction receipts, password resets, promotions, and support responses.

  • Legal & Compliance: Respond to lawful requests, comply with regulations, and enforce our Terms of Service.

4. Data Sharing & Disclosure

  • Service Providers: Stripe (payments), AWS/Azure (hosting), Twilio (SMS), Redis (queues), analytics partners.

  • Third-Party Integrations: Braintree (PayPal), Google/Apple (maps, notifications).

  • Legal Requirements: Sharing with courts, law enforcement, or regulators as required by law.

  • Business Transfers: In merger, acquisition, or sale scenarios, under confidentiality obligations.

5. Your Choices & Rights

  • Access & Correction: Update profile info in-app; contact support for corrections.

  • Data Portability: Request an export of your data (wallet history, match logs) via privacy@spotlink.com.

  • Deletion: Request account deletion; data anonymized or deleted within 30 days, except records required by law.

  • Opt-Out: Disable non-essential notifications; turn off crash reporting in settings.

6. Data Retention

  • Account Data: Retained until account deletion.

  • Transaction Records: Retained for at least 7 years for audit and compliance.

  • Location History: Stored 30 days, then aggregated/anonymized.

7. Security Measures

We implement industry-standard safeguards:

  • Encryption: TLS for data in transit; AES-256 for data at rest.

  • Access Controls: Role-based access; multi-factor authentication for admin systems.

  • Monitoring & Audits: Regular security assessments and vulnerability scans.

8. Children’s Privacy
 Spotlink is not intended for users under 16 years old. If your jurisdiction’s minimum driving age is older than 16, you must meet that requirement. We do not knowingly collect data from minors. If you believe we have, contact us to have it deleted.

9. International Data Transfers
 Your data may be processed in the U.S. or other countries where our service providers operate. We use standard contractual clauses to ensure adequate protection under applicable laws.

10. Changes to This Policy
 We may update this Privacy Policy periodically. We will notify you via the app or email. Continued use constitutes acceptance of changes.

11. Contact Us
 For questions or privacy requests, email:

  • support@spotlink.com

© 2025 Spotlink LLC. All rights reserved.