Privacy Policy
Shrevin Global Technologies Private Limited, operating under the brand name ManaMeter ("we," "us," "our"), operates the ManaMeter Rider mobile application, the ManaMeter Partner (Driver) mobile application, and the ManaMeter Ops dashboard (collectively, the "Platform"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Platform.
By creating an account on the Platform, you will be asked to review and expressly consent to this Privacy Policy. You may withdraw your consent at any time by contacting us (see Section 6.6 below). If you do not consent, please do not use the Platform.
1. Information We Collect
1.1 Information You Provide Directly
Rider Account Information:
- Phone number (used for account creation and authentication via OTP)
- Full name
- Date of birth
Driver Account Information:
- Phone number (used for account creation and authentication via OTP)
- Full name
- City of operation
- Vehicle type (Bike or Auto)
- Vehicle registration number
- Driving license number
- Vehicle registration certificate (RC) number
- Insurance expiry date
- Photographs/scans of driving license, RC, and insurance documents (captured via camera or selected from photo library, uploaded to our servers)
Emergency Contacts (Riders only):
- Name and phone number of persons you designate as emergency contacts
Referral Information:
- Referral codes you generate or enter
- Referral credit balances
Ratings and Feedback:
- Star ratings (1-5) you provide for rides
- Text feedback you submit after rides
1.2 Information Collected Automatically
Location Information:
- Riders: We collect your precise location when you use the app to set a pickup point. Location is collected only when you actively use the app (foreground). We do not track rider location in the background.
- Drivers: We collect your precise location continuously while you are online on the Partner app, including in the background during active rides. When online but not on an active ride, your location is updated approximately every 20 seconds. During active rides, your location is updated every 25 metres of movement or every 10 seconds, whichever occurs first. This location data is used for ride matching, live tracking by riders, and service improvement.
Device Information:
- Firebase Cloud Messaging (FCM) device token for push notifications
- Device operating system (Android or iOS)
Crash and Diagnostics Data:
- App crash logs, stack traces, and device state at the time of a crash, collected via Firebase Crashlytics (a Google LLC product). This data may include device model, operating system version, and app version. It is used solely for identifying and fixing bugs.
Ride Information (created automatically during each ride):
- Pickup and drop-off addresses and coordinates
- Ride status and timestamps (requested, assigned, in-progress, completed, cancelled)
- Fare estimate and final fare
- Payment method chosen (Cash or UPI)
- Route polyline (encoded map route)
- One-time passwords (OTPs) generated for ride verification (temporary, cleared after use)
Usage Data:
- Active ride IDs stored locally on your device for session continuity
1.3 Information We Do NOT Collect
- Credit card, debit card, or bank account numbers
- UPI addresses or UPI PINs (UPI payments are processed entirely through your device's UPI app)
- Biometric data
- Contacts or address book (beyond emergency contacts you voluntarily add)
- Call logs, SMS content, or browsing history
- Photos, videos, or media from your device (beyond documents drivers voluntarily upload during onboarding)
2. How We Use Your Information
We use the information we collect for the following purposes:
| Purpose | Data Used |
|---|---|
| Account creation and authentication | Phone number, OTP verification |
| Ride matching and dispatch | Rider location, driver location, vehicle type, driver availability |
| Live ride tracking | Driver real-time location shared with rider during active rides |
| Fare calculation | Pickup/drop coordinates, distance, pricing configuration |
| Payment facilitation | Payment method preference (Cash/UPI); we do not process payments directly |
| Push notifications | FCM device token; ride status updates, driver assignment alerts |
| Safety and verification | Ride start OTP, parcel drop OTP, driver document verification |
| Quality and trust | Ratings and feedback to compute aggregate scores for riders and drivers |
| Emergency contacts | Stored for your use; we do not contact them proactively |
| Referral program | Referral codes and credit tracking |
| Customer support | Ride history, status logs, and user information to resolve disputes |
| Legal compliance | Audit logs, ride records as required by applicable law |
| Bug fixes and stability | Crash logs and diagnostics via Firebase Crashlytics |
We do not use your information for:
- Selling to third-party advertisers
- Behavioural profiling or targeted advertising
- Automated decision-making that produces legal effects without human review
3. How We Share Your Information
3.1 Between Riders and Drivers
During an active ride, we share limited information between riders and drivers to facilitate the service:
| Data | Shared With Rider | Shared With Driver |
|---|---|---|
| Name | Driver's name | Rider's name (via ride record) |
| Phone number | Driver's phone number | Rider's phone number |
| Vehicle details | Driver's vehicle type and number | N/A |
| Location | Driver's real-time location during ride | Pickup and drop-off locations |
| Aggregate rating | Driver's average rating | Rider's average rating |
| Payment method | N/A | Rider's chosen payment method |
3.2 With Service Providers
We use the following third-party services to operate the Platform:
| Service Provider | Purpose | Data Shared |
|---|---|---|
| Google Firebase (Google LLC) | Authentication, database (Cloud Firestore), cloud functions, push notifications (FCM) | Phone number, user profile data, ride data, FCM tokens |
| Google Cloud Storage / Firebase Storage (Google LLC) | Storage of driver onboarding documents (photographs of license, RC, insurance) | Driver document images, accessible only to the uploading driver and ManaMeter operations staff |
| Firebase Crashlytics (Google LLC) | Crash reporting and app diagnostics | Crash logs, device model, OS version, app version, stack traces |
| Google Maps Platform (Google LLC) | Map display, geocoding, route rendering | Location coordinates, addresses |
These providers process data in accordance with their own privacy policies and our data processing agreements. Google LLC is headquartered in the United States; while our primary data storage region is Asia South 1 (Mumbai, India), certain processing by Google services may occur on Google infrastructure outside India. We ensure that any such processing is subject to adequate safeguards as required by applicable law.
3.3 With Authorities
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order, government agency, or law enforcement request).
3.4 In Business Transfers
If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such change.
3.5 We Do NOT
- Sell your personal information to any third party
- Share your information with advertisers
- Provide your information to data brokers
4. Data Storage and Security
4.1 Where We Store Data
All data is stored on Google Firebase and Google Cloud infrastructure. Our primary database and storage region is Asia South 1 (Mumbai, India). Data is encrypted in transit (TLS) and at rest by Google. Driver document photographs are stored in Google Cloud Storage (Firebase Storage) in the same region.
4.2 Local Device Storage
We store minimal data on your device:
- Active and recent ride IDs (for session continuity)
- App language preference
- No sensitive personal data is stored locally
4.3 Security Measures
- All data transmitted between the app and our servers is encrypted using TLS (Transport Layer Security)
- Data at rest is encrypted by Google Firebase and Google Cloud Storage
- Access to user data is restricted through Firebase Security Rules
- Driver documents in Cloud Storage are accessible only to the uploading driver and authorized ManaMeter operations personnel
- Administrative access (Ops) is limited to authorized personnel and all actions are logged in an immutable audit trail
- OTPs for ride verification are single-use and cleared after verification
- FCM tokens are cleared on user sign-out to prevent misdirected notifications
4.4 What We Cannot Guarantee
While we implement industry-standard security measures, no method of electronic storage or transmission over the Internet is 100% secure. We cannot guarantee absolute security of your data.
5. Data Retention
| Data Type | Retention Period |
|---|---|
| Account information (name, phone, date of birth) | Until you delete your account or request deletion |
| Ride records (pickup, drop, fare, status, timestamps) | 7 years from the date of the ride, as required for financial and tax compliance under the Income Tax Act, 1961 |
| Driver location data (real-time during rides) | Retained as part of ride records (7 years) |
| Driver idle location (driver_state) | Overwritten continuously; only latest location retained |
| Ratings and feedback | 3 years from the date of the ride, or until account deletion, whichever is later |
| Emergency contacts | Until you remove them or delete your account |
| Driver onboarding documents | Retained for the duration of the driver's active account plus 3 years after account closure or as required by the Motor Vehicles Act |
| FCM tokens | Overwritten on each new session; cleared on sign-out |
| Referral data | 3 years from the referral event or account closure, whichever is later |
| Audit logs (Ops actions) | 7 years, as required for regulatory and legal compliance |
| Crash logs (Crashlytics) | 90 days (managed by Firebase Crashlytics) |
After the applicable retention period, personal data is either deleted or anonymized so that it can no longer be associated with you.
6. Your Rights and Choices
As a Data Principal under the Digital Personal Data Protection Act, 2023, you have the following rights:
6.1 Right to Access
You may request a summary of the personal data we hold about you and the processing activities associated with it by contacting us at support@manameter.com. We will respond within 30 days of receiving a verified request.
6.2 Right to Correction
You may view and update your profile information (name, date of birth) through the app at any time. For corrections to other data, contact us at support@manameter.com.
6.3 Right to Erasure (Account Deletion)
You may request deletion of your account and associated personal data by contacting us at support@manameter.com. Upon receiving a verified deletion request:
- We will delete your account profile data within 30 days
- Ride records will be anonymized (personal identifiers removed) but retained for the legally required retention period for financial and tax compliance
- Driver earnings and payout records will be retained as required by tax law
- Driver onboarding documents will be deleted from Cloud Storage
6.4 Right to Data Portability
You may request a copy of your personal data in a commonly used, machine-readable format (e.g., JSON or CSV) by contacting us at support@manameter.com. We will provide the data within 30 days.
6.5 Right to Nominate
You may nominate another individual to exercise your rights under this policy in the event of your death or incapacity, by submitting a written nomination to support@manameter.com.
6.6 Right to Withdraw Consent
You may withdraw your consent to the processing of your personal data at any time by contacting us at support@manameter.com. Upon withdrawal:
- We will cease processing your data for purposes that rely on consent
- Withdrawal does not affect the lawfulness of processing carried out before the withdrawal
- If consent is required for core Platform functionality, withdrawal may result in your inability to use the Platform
6.7 Location Permissions
- Riders: You may deny location permission. The app will function with reduced features (you will need to manually enter pickup locations).
- Drivers: Location permission is required to use the Partner app. You may revoke location permission at any time through your device settings, but you will be unable to go online and receive ride requests.
6.8 Push Notifications
You may disable push notifications through your device settings. This may result in delayed awareness of ride status updates.
6.9 Emergency Contacts
You may add, edit, or remove emergency contacts at any time through the app.
6.10 Camera and Photo Library Access (Drivers Only)
The Partner app requests access to your device camera and photo library solely for the purpose of capturing or selecting photographs of your driving documents (license, RC, insurance) during onboarding. You may deny this permission; however, you will be unable to upload required documents and complete the onboarding process.
7. Data Breach Notification
In the event of a personal data breach that is likely to cause harm to you, we will:
- Notify the Data Protection Board of India in the form and manner prescribed under the Digital Personal Data Protection Act, 2023
- Notify affected Data Principals (users) as soon as reasonably practicable, with details of the nature of the breach and recommended protective actions
- Take immediate steps to contain and remediate the breach
8. Children's Privacy
The Platform is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under 18, we will take steps to delete that information promptly.
9. Third-Party Links and Services
When you choose UPI as a payment method, the app launches your device's UPI application (e.g., Google Pay, PhonePe, Paytm) via an intent. We do not control and are not responsible for the privacy practices of these third-party payment applications. We recommend reviewing their respective privacy policies.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Posting the updated policy within the app
- Updating the "Last Updated" date at the top of this policy
Your continued use of the Platform after any changes constitutes your acceptance of the updated Privacy Policy.
11. Grievance Officer
In accordance with the Information Technology Act, 2000 and the rules made thereunder, the Grievance Officer for the purpose of this Privacy Policy is:
Name: Sandeep Nethi
Email: support@manameter.com
Address: Hyderabad, Telangana, India
The Grievance Officer shall address any complaints or concerns regarding the processing of personal data within 30 days of receipt. If you are not satisfied with the resolution, you may approach the Data Protection Board of India or the appropriate Consumer Disputes Redressal Commission.
12. Applicable Law
This Privacy Policy is governed by the laws of India, including but not limited to:
- Information Technology Act, 2000
- Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
- Digital Personal Data Protection Act, 2023 (as applicable and notified)
13. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:
Email: support@manameter.com
Address: Hyderabad, Telangana, India