Privacy Policy

1. Information We Collect

We collect the minimum data necessary to operate our escrow services:

• Phone numbers: Buyer, seller, and recipient Mobile Money numbers (required for all transactions)
• Transaction data: Amount, type, status, timestamps, expiry, and completion evidence
• GPS location data: Buyer's GPS coordinates captured at the moment of marketplace delivery confirmation. Location is used solely to verify physical presence at the agreed meeting point and is not tracked continuously.
• Meeting point coordinates: The agreed delivery location entered by the transaction initiator
• Proof photos: Optional photos uploaded by transport recipients to verify arrival
• Item details: Product name, description, and price for marketplace transactions
• Handover codes: 6-digit delivery confirmation codes (stored securely, not shown to buyers in transit)
• Device tokens: For push notification delivery (optional)

2. How We Use Your Data

• To facilitate escrow transactions — transport fare and marketplace — between all parties
• To send SMS notifications (OTP codes, payment confirmations, delivery updates, handover alerts)
• To verify physical presence at delivery meeting points using GPS coordinates
• To generate and validate 6-digit handover codes for marketplace delivery confirmation
• To provide in-app notifications and real-time transaction status updates
• To prevent fraud, abuse, and code manipulation through transaction pattern analysis
• To comply with legal, audit, and financial regulatory obligations

3. Location Data

For marketplace transactions, we request the buyer's GPS coordinates at the point of delivery confirmation only. We do not track continuous location, store location history beyond the transaction record, or share precise coordinates with any third party. Location data is retained as part of the transaction record for fraud investigation and audit purposes for up to 7 years.

4. Data Protection

We implement industry-standard security: TLS encryption in transit, AES-256 encryption at rest, secure database hosting via Supabase, and strict access controls. Phone numbers and location data are stored securely and accessed only for transaction processing and fraud prevention. Handover codes are hashed and validated server-side — they are never exposed to buyers before physical delivery.

5. Third-Party Services

We integrate with trusted third parties to deliver our service:

• Supabase: Database and file storage infrastructure
• Pawapay: Mobile Money payment processing (MTN, Airtel, M-PESA)
• SMSLeopard: SMS notification delivery
• Vercel: Application hosting and edge delivery

These providers operate under strict data processing agreements and may not use your data for their own purposes beyond the service provided.

6. Data Retention

Transaction records (including GPS coordinates for marketplace deliveries) are retained for 7 years for legal and audit purposes. Proof photos are automatically deleted 24 hours after upload. User accounts and associated data can be deleted upon request — contact support. Note: transaction records tied to completed financial transactions cannot be deleted due to regulatory obligations.

7. Your Rights

You have the right to:

• Access your full transaction history and associated data
• Request correction of inaccurate personal data
• Request deletion of your account and non-regulated data
• Withdraw consent for location data collection (note: this will prevent marketplace delivery confirmation)
• Opt out of non-essential notifications

8. Contact Us

For privacy-related inquiries or data requests, contact us at: privacy@tumafare.app