# Arrivo Privacy Policy This Privacy Policy explains how Arrivo ("we", "our", or "us") collects, uses, and protects information when you use the Arrivo mobile application and related services. We designed Arrivo to help schools manage bus dismissals and to provide families and students with timely bus status notifications. We collect only what is needed to deliver these features reliably and securely. 1) Information we collect - Account information: Email address and basic profile details you provide (e.g., name if entered), user role (student/parent, admin, school creator), and your linked school code/ID. - Preferences and app content: Personal bus selection (bus number/ID), notification settings, and in-app actions related to bus status and school management. - Device and identifiers: Push notification tokens (APNs/FCM), device OS/version, app version, language/region. We do not collect your device’s advertising identifier (IDFA) for tracking. - Usage and diagnostics: App events (e.g., receiving a notification, status updates), crash logs, and limited technical logs for reliability and fraud prevention. - School operational data: Bus records (number, status such as "coming", "arrived", or "left", optional building name), and admin requests that include an email address. 2) How we use information - Provide and maintain core features: Link you to your school, let you select a personal bus, show live bus status, and deliver notifications (e.g., when your bus arrives or leaves). - School administration: Allow creators/admins to manage buses, buildings, and admin membership; process admin join requests; enable dismissal workflows (including bulk updates like “Dismiss Second Set”). - Communication: Send important service notifications (e.g., bus status changes). You can control push notifications in system settings and in-app where available. - Safety, fraud, and abuse prevention: Detect and address misuse (e.g., invalid device tokens) and protect service integrity. - Improve the service: Analytics and diagnostics to understand performance, fix bugs, and enhance user experience. 3) Tracking, advertising, and sales of data - We do not sell personal data. - We do not use email addresses for cross-app advertising or tracking. - We do not share data with third-party ad networks for targeted advertising. 4) Sharing of information - Service providers: We use trusted processors to operate the app, including: - Google Firebase/Google Cloud (Authentication, Realtime Database/Firestore, Cloud Functions, Cloud Messaging/FCM, Analytics, Crash reporting) - Apple Push Notification service (APNs) These providers process data on our behalf under contractual safeguards. - School administrators: When you interact with a school, certain information is available to that school’s admins/creator (e.g., admin requests with email; operational bus data). Your personal bus preference is not broadly disclosed but is used to deliver notifications to you. - Legal and safety: We may disclose information to comply with law, protect rights, or investigate abuse. 5) Data retention and deletion - Account and school data: Kept for as long as your account or school relationship is active or as needed to provide the service. - Device tokens: Removed when invalidated automatically or when you log out, reinstall, or as part of routine cleanup. - Bus operational data: Retention is determined by the school’s operational needs. - Your choices: You may request deletion of your account or data by contacting us (see Contact). Push notifications can be disabled in device settings. 6) Children and student information - Arrivo is used in school settings. We encourage schools to obtain all required consents and provide notices under applicable student privacy laws. - We do not knowingly collect more personal information than necessary to provide the service. If you believe a child provided personal information without proper consent, contact us to request removal. 7) Security - Data in transit is protected using industry-standard encryption (TLS). Data at rest is protected by our cloud providers (e.g., Firebase). Access is restricted via authentication, authorization, and security rules. - No method of transmission or storage is 100% secure, but we take reasonable measures to protect your information. 8) International data transfers - Data may be processed and stored in the United States and other countries where our providers operate. We rely on appropriate safeguards as required by applicable law. 9) Your rights and choices - Depending on your location, you may have rights to access, correct, or delete your information, or object to/limit certain processing. Contact us to exercise these rights. - Notification preferences can be adjusted in iOS settings and in-app where supported. 10) Contact us - Email: [kabir.tiwari@outlook.com] 11) Changes to this policy - We may update this Privacy Policy from time to time. We will post changes in the app and update the “Effective date.” Your continued use means you accept the revised policy. Note: This document is for informational purposes and does not constitute legal advice. Consult your counsel to ensure compliance with laws applicable to your organization and users.