Hjólum

Privacy Policy

Last updated: December 24, 2024

1. Introduction

At Hjólum, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cycling community platform. Please read this policy carefully. By using Hjólum, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, username, and profile picture when you create an account
  • Profile Information: Bio, location, and cycling preferences you choose to share
  • Content: Routes you create, messages you send, and other content you post
  • Event Data: Meetup participation, tournament registrations, and group memberships

2.2 Automatically Collected Information

  • Device Information: Browser type, operating system, and device identifiers
  • Usage Data: Pages visited, features used, and time spent on the platform
  • Location Data: Geographic coordinates when you create routes (with your permission)

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Hjólum platform
  • Create and manage your account
  • Enable communication between users and group members
  • Display routes on maps and calculate distances
  • Organize meetups and tournaments
  • Send service-related notifications
  • Improve and personalize your experience
  • Ensure the security and integrity of the platform
  • Comply with legal obligations

4. Information Sharing

We may share your information in the following circumstances:

4.1 With Other Users

Your profile information, routes, and group activity are visible to other Hjólum users as part of the community features. You can control some visibility settings in your profile.

4.2 Service Providers

We work with third-party services to provide our platform:

  • Clerk: Authentication and user management
  • Vercel: Hosting and infrastructure
  • Neon: Database services
  • Mapbox: Map display and route visualization

4.3 Legal Requirements

We may disclose your information if required by law or in response to valid legal processes.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes:

  • Encryption of data in transit (HTTPS)
  • Secure authentication through Clerk
  • Input validation and sanitization to prevent attacks
  • Regular security assessments

However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with our services. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we need to retain certain information for legal or legitimate business purposes.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Portability: Request a copy of your data in a portable format
  • Objection: Object to certain processing of your data
  • Withdrawal: Withdraw consent where processing is based on consent

To exercise these rights, please contact us or use the settings in your profile.

8. Cookies and Tracking

Hjólum uses essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising trackers. Our analytics are minimal and focused on improving the service.

9. Children's Privacy

Hjólum is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than Iceland. Our service providers maintain servers in various locations. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us through the platform.

View our Terms of Service →