Privacy Policy
Last updated: May 28, 2026
Pave ("we", "us", "our") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights. By using the Pave app, you agree to this policy.
1. INFORMATION WE COLLECT
We collect the following types of information:
- Account information — email address, display name, and profile color when you create an account.
- GPS and route data — location coordinates from your activities, used to match roads and record street ownership.
- Activity data — distance, duration, pace, and activity type (cycling or running) from your workouts.
- Device information — device model (e.g., Garmin device name) when synced via third-party integrations.
- Push notification token — to deliver ownership alerts and ride summaries to your device.
2. THIRD-PARTY INTEGRATIONS
Pave integrates with the following third-party services. Each has its own privacy policy governing your data on their platforms:
- Strava — We access activity data via OAuth. We only read completed activities. Strava Privacy Policy →
- Garmin Health API — We access GPS and activity data via OAuth. Activity data sourced from Garmin is displayed with Garmin attribution including device name, as required by Garmin's API terms. Garmin Privacy Policy →
- Apple HealthKit — GPS and workout data may be read from Apple Health with your explicit permission. We do not share HealthKit data with third parties or use it for advertising.
- Google Health Connect — GPS and workout data may be read from Google Health Connect with your explicit permission.
- Mapbox — We use Mapbox for map rendering and route matching. GPS coordinates are sent to Mapbox for map-matching. Mapbox Privacy Policy →
3. HOW WE USE YOUR DATA
- To record and display street ownership on the map
- To calculate leaderboard rankings
- To send push notifications about ownership changes
- To display your activity stats in the app
- To improve app performance and fix bugs
We do not sell your personal data. We do not use your data for advertising.
4. PRIVACY ZONES
You can configure privacy zones in the app to exclude specific locations (such as your home) from GPS tracking and street ownership. Coordinates within a privacy zone are stripped before any processing occurs.
5. DATA STORAGE AND SECURITY
Your data is stored securely using Supabase (PostgreSQL) with row-level security. All data is transmitted over HTTPS. We retain your data for as long as your account is active.
6. DATA DELETION
You can delete your account and all associated data at any time from the app's settings screen. Deletion is permanent and irreversible. You may also request deletion by emailing privacy@pave.fit.
7. CHILDREN'S PRIVACY
Pave is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal information, contact us at privacy@pave.fit.
8. YOUR RIGHTS
Depending on your location, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data
- Object to or restrict processing of your data
- Data portability
To exercise any of these rights, contact us at privacy@pave.fit.
9. CHANGES TO THIS POLICY
We may update this policy from time to time. We will notify you of material changes via the app or email. Continued use of the app after changes constitutes acceptance of the updated policy.
CONTACT
For privacy-related questions or requests:
privacy@pave.fit
support@pave.fit