Skip to main content

PRIVACY NOTICE

Last updated: 9 April 2026

Thank you for choosing to be part of our community at Guru Maps ("Company", "we", "us", "our"). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about this privacy notice, or our practices with regards to your personal information, please contact us at [email protected].

When you visit our website at https://gurumaps.app (the "Website"), use our mobile or desktop application (the "App"), and more generally, use any of our services (the "Services", which include the Website and the App), we appreciate that you are trusting us with your personal information. We take your privacy very seriously. In this privacy notice, we seek to explain to you in the clearest way possible what information we collect, how we use it and what rights you have in relation to it. We hope you take some time to read through it carefully, as it is important. If there are any terms in this privacy notice that you do not agree with, please discontinue use of our Services immediately.

This privacy notice applies to all information collected through our Services (which, as described above, includes our Website and App), as well as, any related services, sales, marketing or events.

Please read this privacy notice carefully as it will help you understand what we do with the information that we collect.

1. WHAT INFORMATION DO WE COLLECT?

Information automatically collected

In Short: Some information — such as your Internet Protocol (IP) address and/or browser and device characteristics — is collected automatically when you visit our Website or App.

We automatically collect certain information when you visit, use or navigate the Website or App. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

The information we collect includes:

  • Log and Usage Data. Log and usage data is service-related, diagnostic, usage and performance information our servers automatically collect when you access or use our Services and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type and settings and information about your activity in the Services (such as the date/time stamps associated with your usage, pages and files viewed, searches and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called 'crash dumps') and hardware settings).

  • Device Data. We collect device data such as information about your computer, phone, tablet or other device you use to access the Services. Depending on the device used, this device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system and system configuration information.

Analytics and crash reporting

In Short: We use self-hosted analytics and crash reporting tools to improve app quality. No data is shared with third parties. You can opt out at any time in the App's settings.

To improve the Services and fix issues, we collect anonymous usage statistics and crash reports. This data is processed using the following self-hosted tools running exclusively on our own servers in Germany and Finland:

  • Usage Analytics (PostHog, self-hosted). We collect anonymous statistics about how you use the App and Website, such as which features are used, screen and page views, and general usage patterns. This data does not include personally identifiable information.

  • Crash Reporting (Sentry, self-hosted). When the App encounters an error or crash, a diagnostic report is automatically generated and sent to our servers. This report may include device model, operating system version, app version, and the technical state of the App at the time of the error. Crash reports do not contain personal content such as your bookmarks, tracks, or location history.

This data is sent to and stored on our own infrastructure only. No analytics or crash data is shared with any third party. We process this data under our legitimate interest (GDPR Article 6(1)(f)) in maintaining and improving the quality, stability, and performance of the App. We have assessed that this interest does not override your rights and freedoms, given that the data is anonymous, stored on our own servers within the EU, and you can opt out at any time.

You can disable analytics and crash reporting at any time in the App under Settings > Privacy, where you will find individual controls for:

  • Share App Analytics (usage statistics)
  • Share Crash Data (crash reports)

Information collected through our App and Website

In Short: We collect information regarding your geo-location, device, push notifications, account data, and payment information when you use our Services.

If you use our Services, we also collect the following information:

  • Geo-Location Information. We may request access to, or permission for, location-based information from your device, either continuously or while you are using our App, to display your location on the map, record GPS tracks, and guide you along the route. If background geo-location access is allowed, the App can record GPS tracks when it is closed. If you wish to change our access or permissions, you may do so in your device's settings.

  • Device Access. We may request access or permission to certain features from your device, including storage, sensors, and other features. If you wish to change our access or permissions, you may do so in your device's settings.

  • Device Data. We automatically collect device information (such as your device ID, model, and manufacturer), operating system, version information, and system configuration information, device and application identification numbers, browser type and version, hardware model, Internet service provider and/or mobile carrier, and Internet Protocol (IP) address (or proxy server). If you are using our App, we may also collect information about the phone network associated with your device, your device's operating system or platform, the type of device you use, your device's unique device ID, and information about the features of our App you accessed.

  • Push Notifications. We may request to send you push notifications regarding your account or certain features of the App. If you wish to opt-out from receiving these types of communications, you may turn them off in your device's settings.

  • Account Information. When you create a Guru Maps account, we collect information you provide such as your email address. If you choose to sign in using a third-party provider (Apple, Google, or Facebook), we receive basic profile information (such as your name and email address) as authorized by you through that provider.

  • Payment Information. When you make a purchase on the Website, you are redirected to Stripe, our third-party payment processor, to complete the transaction. We pass your email address to Stripe to pre-fill the checkout form. All payment details (such as credit card number and billing address) are entered directly on Stripe's secure page and are not collected or stored by us. Please refer to Stripe's Privacy Policy for information on how Stripe handles your data.

This information is primarily needed to maintain the security and operation of our Services, for troubleshooting and for our internal analytics and reporting purposes.

2. HOW DO WE USE YOUR INFORMATION?

In Short: We process your information for purposes based on legitimate business interests, the fulfillment of our contract with you, compliance with our legal obligations, and/or your consent.

We use personal information collected via our Services for a variety of business purposes described below. We process your personal information for these purposes in reliance on our legitimate business interests, in order to enter into or perform a contract with you, with your consent, and/or for compliance with our legal obligations. We indicate the specific processing grounds we rely on next to each purpose listed below.

We use the information we collect or receive:

  • To improve and maintain our Services (legitimate interest). We use anonymous usage analytics and crash reports to identify bugs, improve stability, and understand which features are most valuable to users. This processing is based on our legitimate interest under GDPR Article 6(1)(f). You may opt out of this processing at any time via the App's Privacy settings.

  • To facilitate account creation and logon process. If you choose to sign in using a third-party provider (such as Apple, Google, or Facebook), we use the information you authorized us to collect from those providers to facilitate account creation and logon for the performance of the contract.

  • To process payments. We use your email address to facilitate purchases made through the Website via Stripe. Payment details are handled entirely by Stripe and are not stored by us.

  • Request feedback. We may use your information to request feedback and to contact you about your use of our Services.

  • To manage user accounts. We may use your information for the purposes of managing your account and keeping it in working order.

  • To deliver and facilitate delivery of services to the user. We may use your information to provide you with the requested service.

  • To respond to user inquiries/offer support to users. We may use your information to respond to your inquiries and solve any potential issues you might have with the use of our Services.

3. WILL YOUR INFORMATION BE SHARED WITH ANYONE?

In Short: We do not sell your data. We share limited data only with service providers necessary to operate the Services.

All analytics and crash reporting data is processed and stored exclusively on our own self-hosted infrastructure. We do not sell, rent, or disclose your data to advertising networks or data brokers.

We share your information with the following third-party service providers, solely for the purposes described:

  • Stripe (payment processing). When you make a purchase on the Website, your email address is passed to Stripe to facilitate the transaction. Payment details (credit card, billing address) are entered directly on Stripe's platform. See Stripe's Privacy Policy.

  • Apple App Store, Google Play, and Huawei AppGallery (purchase validation). When you make an in-app purchase, we send purchase tokens to the respective app store to validate and manage your transaction. No additional personal data is shared.

  • Apple Push Notification Service (APNS) and Google Firebase Cloud Messaging (FCM). If you enable push notifications, your device token is shared with the respective platform to deliver notifications.

We may also disclose your information in the following limited circumstances:

  • Legal Obligations. We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).

  • Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

4. IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?

In Short: We store and process your information on our own servers in Germany and Finland. Limited data is shared with service providers who may process it outside the EU.

Our servers are located in Germany and Finland. All analytics and crash reporting data is processed and stored exclusively on our own self-hosted infrastructure in these locations.

When you make a purchase on the Website, your email address and payment information are processed by Stripe, which may transfer data to servers in the United States. Stripe participates in the EU-U.S. Data Privacy Framework. See Stripe's Privacy Policy for details.

If you access our Services from outside those countries, your information may be transferred to and stored on our servers. If you are a resident in the European Economic Area, your data stored on our infrastructure remains within the EU. We will take all necessary measures to protect your personal information in accordance with this privacy notice and applicable law.

5. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this privacy notice unless otherwise required by law.

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). No purpose in this notice will require us to keep your personal information for longer than one year.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

6. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security, and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.

7. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect data from or market to children under 18 years of age.

We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent's use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at [email protected].

8. WHAT ARE YOUR PRIVACY RIGHTS?

In Short: You may review, change, or terminate your account at any time. You can opt out of analytics and crash reporting at any time.

Under applicable data protection laws, including the GDPR, you have the following rights regarding your personal data:

  • Right of access — You may request a copy of the personal data we hold about you.
  • Right to rectification — You may request that we correct inaccurate or incomplete data.
  • Right to erasure — You may request that we delete your personal data, subject to legal retention requirements.
  • Right to restriction of processing — You may request that we restrict the processing of your data in certain circumstances.
  • Right to data portability — You may request to receive your data in a structured, commonly used, and machine-readable format.
  • Right to object — You may object to the processing of your personal data based on our legitimate interest. For analytics and crash reporting, you can exercise this right at any time by disabling "Share App Analytics" and "Share Crash Data" in the App under Settings > Privacy. Changes take effect immediately.

The collection of analytics and crash data is not a contractual or statutory requirement. The App functions fully without it, and disabling these features has no impact on the Services available to you.

To exercise any of these rights, please contact us at [email protected].

If you are a resident in the European Economic Area and you believe we are unlawfully processing your personal information, you also have the right to lodge a complaint with your local data protection supervisory authority. You can find their contact details here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.

If you are a resident in Switzerland, the contact details for the data protection authorities are available here: https://www.edoeb.admin.ch/edoeb/en/home.html.

9. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this privacy notice.

10. DO CALIFORNIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: Yes, if you are a resident of California, you are granted specific rights regarding access to your personal information.

California Civil Code Section 1798.83, also known as the "Shine The Light" law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.

If you are under 18 years of age, reside in California, and have a registered account with the Services, you have the right to request removal of unwanted data that you publicly post on the Services. To request removal of such data, please contact us using the contact information provided below, and include the email address associated with your account and a statement that you reside in California. We will make sure the data is not publicly displayed on the Services, but please be aware that the data may not be completely or comprehensively removed from all our systems (e.g. backups, etc.).

11. DO WE MAKE UPDATES TO THIS NOTICE?

In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.

We may update this privacy notice from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. If we make material changes to this privacy notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.

12. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may email us at [email protected].

13. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it in some circumstances. To request to review, update, or delete your personal information, please submit a request form by clicking here. We will respond to your request within 30 days.