Privacy Policy for Drive-AI

Last Updated: [Current Date, March 2026]

At DRF, we are committed to protecting your privacy. This Privacy Policy explains how Drive-AI collects, uses, and shares your personal data when you use our mobile application and services.

1. Information We Collect

To provide a seamless and safe ride-sharing experience, we collect the following:

  • Location Data: Precise or approximate location of your device to facilitate pickups, track rides, and provide “AI-Smart Dispatch.” This is collected even when the app is in the background if permitted.
  • Identity & Contact Info: Name, email, mobile number, and profile photo for account verification.
  • Biometric Data: For our Safety Shield feature, we may process facial geometry (selfies) to verify driver and rider identity.
  • Payment Information: Handled via secure, encrypted third-party gateways (UPI, Credit/Debit). We do not store full card details on our servers.
  • Device Data: IP address, device ID, and operating system for fraud prevention and app optimization.

2. How We Use Your Information

We process your data under the legal basis of “Contractual Necessity” and “Explicit Consent” for:

  • Ride Management: Connecting riders with nearby drivers.
  • AI-Sentinel Monitoring: Our AI monitors trip deviations in real-time to ensure passenger safety.
  • Predictive Pricing: Analyzing historical data to offer fair, non-surge pricing.
  • Customer Support: Resolving disputes or safety concerns.

3. Data Sharing & Third Parties

We do not sell your personal data. We only share information with:

  • Drivers/Riders: Limited info (name, location) to facilitate the trip.
  • Safety Services: Emergency responders or police if our AI Safety Shield detects a critical incident.
  • Cloud Providers: Encrypted data storage on [e.g., AWS/Google Cloud] servers located within India.

4. Your Rights (DPDP Act 2023 & GDPR)

As a user, you have the following rights:

  • Right to Access/Correction: You can view or update your profile at any time.
  • Right to Erasure: You may request account deletion. Data will be purged within [e.g., 30 days], except what is required by law for tax/safety records.
  • Withdrawal of Consent: You can turn off location or biometric permissions in your phone settings, though this may limit app functionality.

5. Data Security & Retention

  • Encryption: All data in transit is protected using AES-256 encryption.
  • Retention: We retain trip logs for [e.g., 1 year] as per Indian transport regulations, after which they are anonymized