Information We Collect
| Category | Examples | Source |
|---|---|---|
| Account Data | Name, username, email, password hash, profile photo, bike details, ride statistics | You |
| Ride & Trail Data | GPS coordinates, elevation, speed, distance, heart-rate, power, cadence, trail geometry, privacy settings (public / friends / private) | Device sensors, Garmin Connect (if linked), manual entry |
| Content | Photos, weather condition reports, comments, messages, reactions | You |
| Device & Usage Data | IP address, device identifiers, OS version, app interactions, crash logs, cookies | Your device, analytics tools |
| Location | Foreground and (if you permit) background location, altitude, barometric pressure | Device sensors |
| Payment Data (if subscriptions are offered) | Last four digits of card, billing address (full card data handled by our payment processor) | Payment processor |
How We Use Information
- Provide, operate, and maintain the App
- Record rides, import rides from Garmin Connect, display maps and trail conditions
- Enable creation and sharing of public, friends-only, or private trails and rides
- Personalize your experience and show statistics, leaderboards, and recommendations
- Communicate with you about your account, rides, and feature updates
- Send marketing or promotional messages if you opt in (you can unsubscribe at any time)
- Monitor, detect, and prevent fraud or misuse; ensure rider safety
- Generate aggregated, de-identified analytics (e.g., most-ridden trails)
- Comply with legal obligations and enforce our Terms of Service
Sharing & Disclosure
We do not sell your personal information. We share it only as follows:
| Recipient | Purpose |
|---|---|
| Other Users | Data you mark as Public is visible to everyone; Friends-Only rides and trails are visible to the friends you select. Private items remain visible only to you. |
| Linked Services | When you connect Garmin Connect or similar services, we exchange data solely to fulfill that integration. |
| Service Providers | Cloud hosting, analytics, email delivery, customer support, payment processing—bound by confidentiality obligations. |
| Legal / Safety | To comply with valid subpoenas, court orders, or protect rights, property, or safety. |
| Business Transfers | In merger, acquisition, or sale scenarios, your information may transfer subject to this Policy. |
Cookies & Tracking Technologies
We use first-party cookies, local storage, and mobile IDs to keep you signed in, remember preferences, and analyze performance. You can disable cookies in your browser; core features may stop working.
The App does not use third-party ad networks or cross-site tracking cookies.
International Data Transfers
We operate in the United States and may process data in other countries where our vendors are located. For transfers of personal data from the EEA, UK, or Switzerland, we rely on Standard Contractual Clauses or other legally recognized mechanisms.
Legal Bases for Processing (EEA / UK Users)
We process personal data on the following bases:
- Contract – to provide the App and fulfill our Terms
- Consent – for Garmin integration, background location, marketing emails, and any processing where we request consent
- Legitimate Interests – to improve services, secure the App, and prevent fraud
- Legal Obligation – to comply with laws, regulations, and court orders
Your Rights
Depending on your jurisdiction, you may have rights to:
- Access, correct, or delete your personal data
- Restrict or object to certain processing
- Receive a portable copy of your data
- Opt out of targeted advertising or data "sales"/"sharing" (as defined by state law)
- Appeal a denied request
You can exercise these rights through in-app settings or by emailing sam@flyhangar.com. We will verify your identity and respond as required by law.
Data Retention
Account Data – retained while your account is active.
Ride & Trail Data – retained until you delete it or request deletion; purged within 24 months after account deletion.
Backups – securely destroyed within 30 days.
We may retain minimal data to comply with legal obligations or resolve disputes.
Security
We secure data using TLS encryption in transit, AES-256 encryption at rest, role-based access controls, regular security audits, and incident-response procedures. No system is entirely secure; please protect your password and device.
Children
Shralp is not directed to children under 13 (or under 16 where applicable). We do not knowingly collect data from children. Parents may request deletion of a child's data via sam@flyhangar.com.
Changes to This Policy
We may update this Policy. Material changes will be announced in-app or by email at least 30 days before they take effect. Continued use of the App after the effective date constitutes acceptance of the revised Policy.
Contact
Questions or concerns?
Fly Hangar LLC
Attn: Privacy Team
sam@flyhangar.com