Privacy Policy

Last updated: September 19, 2024

MileIQ Principles

MileIQ, Inc. (“we” or the “Company”), publishers of MileIQ, respects your privacy. This Privacy Policy (“Policy”) explains how we collect, use, disclose, and safeguard your information when you use the Service.

The “Service” or “Services” includes the MileIQ mobile application (the “App” or “MileIQ”), the website located at mileiq.com, its subdomains, all of the websites and internet properties owned or operated by us, regardless of the medium by which the Service is accessed by Users (e.g., via a web or mobile browser) (collectively, the “Websites”) and support provided by MileIQ for the App and the Websites.

We recognize the importance of protecting personally identifiable information as defined by applicable privacy laws (“Personal Information” or “PII”) collected about you and other visitors to our Websites and/or users of the App (collectively, “Users”), while delivering the mileage tracking and other features you enjoy. 

This Policy applies to Users located in the United States, United Kingdom, and Canada. For Users located in California, please see the California section below. For Users located in the United Kingdom, please see the United Kingdom section below. For Users located in Canada, please see the Canada section below.  In addition to the main sections of this Policy, those sections apply specifically to Users in those respective geographic locations.

How the Service works

When you create an account, the onboarding screens provide guidance around collecting location data and optimizing your device to track drives. The App runs in the background of your device to detect drives based on the movement of your device, so there is no need to press a start or stop button. You can customize the hours you work, location names, and more, to make identifying and classifying drives easier. You can classify drives as business or personal (or delete them altogether) from the mobile app or the web dashboard. When you need to share drives, whether it's for taxes, employer reimbursement or other records, you can create a report and share it by email.

What Data Is Collected

MileIQ collects precise geolocation information to provide you with drive data when you are logged in to the App and have location services turned on and available. Additional telemetry around how you use the App (what buttons are/aren't pushed, etc.) is collected to provide troubleshooting and improve your experience. If you do not want drive data collected, you can pause, log out of, or delete the App. Logging out or deleting the App also stops additional data from being collected. 

While you must provide an email address and password to create an account and use MileIQ, providing the following information is optional:

  • Identifiers:
    -
    Subscription Information including:
    Name
    Postal Address
    Email Address
    Phone Number
    - IP Address
  • Referrals
  • Emails to support
  • Unique Apple/Android mobile device identifier

Please note if you provide payment-related Information (via Google Play, iTunes or Stripe on the MileIQ website), such as credit card number, expiration date, CVV, that information is being received by Google, Apple, or Stripe (as applicable).  We do not have access to this information.

We may also collect de-identified information from you that may not by itself reasonably identify you as the source when you utilize the Services (“Deidentified Information”). Deidentified Information may include: (i) device type, (ii) device operating system, (iii) internet browser type, (iv) internet service provider, (v) referring/exit pages, (vi) date/time stamp, and (vii) clickstream information. We follow industry best practices designed to ensure that Deidentified Information we collect is not personally identifiable and may not later be easily used to identify you as required by applicable law.

We do not offer our Services or promote the Services to, nor do we intentionally collect or retain PII from, children who are younger than 16 years of age. If we discover that we have inadvertently collected information from a child under 16 years of age, we will promptly take all reasonable measures to delete such information from our systems.

How We Collect Information

The information we collect depends on what Users do when they utilize the Services. We collect PII and Deidentified Information in various ways, including: 

Directly from You: We collect PII when you voluntarily submit PII to us while completing forms on the Services and in connection with other activities, services, features, or resources we make available on the Services. The PII we collect depends on what you do when you utilize the Services or how you choose to communicate with us.

Through Your Use of the Services: We may collect PII and Deidentified Information that your browser transmits when you utilize the Services. 

From Third Party Services: We may collect PII about you from third parties whose privacy practices may differ from the practices described in this Policy. We do not make any representations or warranties concerning, and will not in any way be liable for, any informational content, products, services, software, or other materials available through third parties. Your use of third parties’ services and/or third party websites is governed by and subject to the terms and conditions of those third parties and/or third party websites. We encourage you to carefully review the privacy policies and statements of such third parties and/or third party websites.

How We Use Information

We may use Users’ PII for various general, lawful business purposes: (i) as necessary for the performance of our contract with Users (such as our Terms of Use), (ii) for our legitimate interests, so long as they are not overridden by Users’ own rights and interests, or (iii) as required by law. These purposes include:

Delivery of the Services: We may use your PII and/or Deidentified Information to deliver automatic mileage tracking services and prepare reports on your driving activity.

Direct Marketing: We may use your PII to send you promotional materials. You have the right to opt-out of receiving direct marketing.

Customer Service and User Communications: We may use your PII to help us respond to your inquiries, questions, requests, and support needs more efficiently.

User Experience Personalization: We may use Users’ PII and/or Deidentified Information in the aggregate to analyze Users’ browsing and usage activities and patterns in order to understand Users’ interests and preferences with respect to the Service and our services. This will help us optimize your experience on the Service.

Business Optimization: We may use your PII and/or Deidentified Information to improve the content on our web pages, to customize the content and layout of our web pages and to improve the Service. All of this is done with the intention of making the Service more useful for you.

Safety and Security: We may use your PII and/or Deidentified Information to promote the safety and security of the Service, our users, and other parties. For example, we may use the information to authenticate users, facilitate secure payments, protect against fraud and abuse, respond to a legal request or claim, conduct audits, and enforce our terms and policies.

Company will not collect additional categories of PII or use PII we collect for materially different, unrelated, or incompatible purposes without providing you notice.

Platform Subprocessors

In delivering our service, we rely on trusted partners as our subprocessors. For more information on specific subprocessors and data transfers, please refer to our trust site.

How We Disclose Information

We may disclose Users’ PII to third parties as described below. Otherwise, we do not sell, rent, lease, or “share” PII and will not disclose Users’ PII to third parties without your permission. The California Consumer Privacy Act (CCPA) defines “sharing” as the disclosure of PII for cross-context behavioral advertising.   

To Service Providers and Trusted Third Parties: We may disclose your PII to third party service providers and trusted third parties (including sponsors and marketing partners) that assist us in providing User support, communicating with Users, and promoting our services, as well as third party service providers that provide other services to us relating to our services and/or the Service. The Services may use the Google Maps Platform or Apple Maps. To the extent Users’ PII is disclosed to Apple, the User hereby consents to Apple’s use and collection of such PII pursuant to the then current Apple Privacy Statement, available at https://www.apple.com/legal/privacy/data/en/apple-maps/ or a successor website. To the extent Users’ PII is disclosed to Google, the User hereby consents to Google’s use and collection of such PII pursuant to the then current Google Privacy Policy, available at https://policies.google.com/privacy or a successor website. MileIQ does not control Apple’s or Google’s collection or use of any User PII. Do not use the Services if you are not comfortable with Apple’s or Google’s terms of use and/or privacy policies.

Law Enforcement, Safety, and Legal Processes: We may disclose your PII in the following cases: (i) if required to do so by law; (ii) for fraud protection and credit risk reduction purposes; (iii) in the good-faith belief that such action is necessary to protect our rights, interests, or property; (iv) in the good-faith belief that such action is necessary to protect your safety or the safety of others; or (v) to comply with a judicial proceeding, court order, subpoena, or other similar legal or administrative process; or (vi) if it relates to a criminal investigation or alleged criminal activity.

Sale or Acquisition of Assets: If we become involved in a transaction involving the sale of our assets, such as a merger or acquisition, or if we are transferred to another company, we may disclose and/or transfer your PII as part of the transaction. If the surviving entity in that transaction is not us, the surviving company may use your PII pursuant to its own privacy policies, and those policies may be different from this Policy.

Security

The security and confidentiality of your PII is very important to us. We use commercially reasonable security measures to protect your PII on the Service. However, no data transmitted over or accessible through the internet can be guaranteed to be 100% secure. As a result, while we attempt to protect your PII, we cannot guarantee or warrant that your PII will be completely secure (i) from misappropriation by hackers or from other nefarious or criminal activities, or (ii) in the event of a failure of computer hardware, software, or a telecommunications networks.

If you choose to report and share your drive data with a third party, it is no longer under our control or subject to our data security. This includes choosing to report via integrations on the web dashboard with Concur, sending a report via email, or any time a report is downloaded.

Verifiable Consumer Requests

You can exercise your legal rights by submitting a Verifiable Consumer Request to us by: 

Only you may make a Verifiable Consumer Request related to your PII. Making a Verifiable Consumer Request does not require you to create an account with us. California residents may only make a Verifiable Consumer Request for access to PII twice in a 12-month period. 

The Verifiable Consumer Request must:

  • Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative; and
  • Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with PII if we cannot verify your identity or authority to make the request and confirm the PII relates to you. We will only use PII provided in a Verifiable Consumer Request to verify the requestor’s identity or authority to make the request.

Response Timing and Format

We will acknowledge receipt of a Verifiable Consumer Request within ten (10) days. We will endeavor to respond to Verifiable Consumer Requests within the following time frames following receipt: 

  • For data subjects located in the UK or Canada: within thirty (30) days.
  • For California residents (for data subjects located in the UK) or forty-five (45) days. 

In addition, we will acknowledge receipt of a Verifiable Consumer Request from a California resident within ten (10) days of its receipt. If we require more time (up to ninety (90) days or longer time period if permitted by law), we will inform you of the reason and extension period in writing. 

Any disclosures we provide will only cover the 12-month period preceding the Verifiable Consumer Request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. 

We do not charge a fee to process or respond to Verifiable Consumer Requests, unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

Data deletion

You have the right to download and request deletion of your data at any time. If you would like to withdraw your data or delete your account, we provide native, in-app capabilities for data download and account deletion.

File a Complaint

If you would like to file a complaint with us about our privacy practices, please contact us at the Contact Information provided below. UK data subjects can utilize the following resource: https://ico.org.uk/global/contact-us/.

Data Storage – International Transfer

Your information, including PII, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.

If you are located outside the United States and choose to provide information to us, please note that we transfer your information, including PII, to the United States and process it there. 

In the event we transfer PII from your location to the United States, we will ensure the transfer complies with applicable data protection laws and PII is securely transferred. Please note the UK has not adopted an adequacy decision with respect to data transfers to the United States. As a result, our standard practice is to use standard contractual clauses approved by the European Commission to facilitate such data transfers. If you have any questions about our data transfer practices, please contact us at the Contact Information provided below.

Upon transfer to the United States, any PII would then be subject to United States laws, and may be subject to disclosure to the United States’ government authorities, courts, law enforcement, or regulatory agencies of that country, pursuant to United States laws.

Data Retention

MileIQ provides different retention periods depending on the specific plan a user or organization may have. MileIQ will retain Users’ PII while they maintain a premium account with MileIQ or to the extent necessary to provide the Services. Thereafter, MileIQ will keep PII for as long as reasonably necessary: (i) to respond to any queries from Users; (ii) to demonstrate MileIQ treats Users fairly; (iii) for ordinary business continuity procedures; or (iv) to comply with any applicable laws. MileIQ deletes PII within a reasonable period after it is no longer needed for the purposes set out in this Policy.  You can request deletion of your data at any time by contacting MileIQ Support.

SPAM

We do not participate in bulk email solicitations that you have not consented to receiving. We do not sell or disclose customer lists or email address lists to unrelated third parties. 

Third Party Links

The Service may contain links to other websites or applications (“Linked Sites”) that we do not own. We do not control the collection or use of any information, including PII, which occurs while you visit Linked Sites. Therefore, we make no representations or warranties for — and will not in any way be liable for — any content, products, services, software, or other materials available on Linked Sites, even if one or more pages of the Linked Sites are framed within a page of the Service.

Furthermore, we make no representations or warranties about the privacy policies or practices of the Linked Sites, and the Company is not responsible for the privacy practices of those Linked Sites. We encourage you to be aware of when you leave the Service and read the privacy policies of Linked Services.

Modifications to this Policy

We may modify this Policy at any time upon notice to you. The notice will be either by an announcement in the App or on the Website or by sending an email to your primary email address. If we make significant changes to this Policy that affect your rights, you will be provided with at least 30 days advance notice of the changes. Your continued use after the effective date of changes to this Policy will be deemed to be your acknowledgement that the updated Policy will apply. Please note that if you have not verified your email address, you may miss important notifications that we send through email.

Accessing, Updating, and Controlling Information

All drives, classified or unclassified, can be viewed at the web dashboard or the mobile app by going to the menu and tapping All Drives.

Account, Named Locations and Custom Purposes deletions can be requested via support at MileIQ Support. Deletion requests will be honored within 30 days of receipt acknowledgement by our support team. Drives, Work Hours, reports, notes, tolls and parking can be deleted via the mobile app and/or web dashboard.

Otherwise, if you ever wish to access, update, change, or delete any other PII, or cancel your user account (if applicable), you may make such changes through your user account or by contacting us at the Contact Information provided below. To help us process your request, please provide sufficient information to allow us to identify you in our records. We reserve the right to ask for additional information verifying your identity prior to disclosing any PII to you. Should we ask for verification, the information you provide will be used only for verification purposes, and all copies of the information will be destroyed when the process is complete.

MileIQ, Inc.
Attn: Privacy Dan
548 Market Street
PMB 37418
San Francisco, CA 94104-5401
Contact MileIQ Support

If you do not wish to receive update messages and/or direct marketing communications from us, you may opt-out by making such changes through your user account, following any instructions included in the communication, or by contacting us at the Contact Information provided below. To help us process your request, please include sufficient information for us to identify you in our records. Please be aware that although you may opt-out of update messages and/or direct marketing communications, we reserve the right to email you administrative notices regarding the Service, as permitted under the CAN-SPAM Act.

We will make commercially reasonable efforts to respond to opt-out requests, respond to account cancellation requests, and handle requests to access, update, change, or delete PII as quickly as possible.

Additional Geo-Specific Terms

United Kingdom

If you are a data subject located in the UK the following terms will also apply.

Your rights under UK Data Protection and Privacy laws (collectively, the “UK GDPR”) include the following:

  • Right to Access: You have the right to request a copy of your PII.
  • Right to Rectification: You have the right to request that we correct any mistakes in your PII.
  • Right to Erasure: You have the right request that we delete your PII.
  • Right to Restrict Processing: You have the right to restrict processing of your PII.
  • Right to Object to Processing: You have the right to object to our processing of your PII.
  • Right to Data Portability: You have the right to receive your PII in a structured, commonly used and machine-readable format.
  • Right to Not be Subject to Automated Individual Decision Making: You have the right not to be subject to a decision based solely on automated processing.

To exercise your rights, please use the Verifiable Consumer Request method described in this Policy. Please be aware that your rights are limited to the extent permitted by the UK GDPR.

Please note that you also have the right to complain to the Information Commissioner's Office (ICO) if you have any grievance against the way we collect, use or share your information.

Categories of Personal Information Collection Disclosure Sale
Does MileIQ collect? Collected in past 12 months Disclosure for a business purpose Disclosure for a business purpose in past 12 months Does MileIQ sell? Sold in past 12 months
Identifiers YES YES YES YES NO NO
Categories of PI described in Section 1798.80(e) YES YES YES YES NO NO
Characteristics of protected classifications under California or federal law NO NO NO NO NO NO
Commercial information YES YES YES YES NO NO
Biometric information NO NO NO NO NO NO
Internet or other electronic network activity information YES YES YES YES NO NO
Geolocation data YES YES YES YES NO NO
Audio, visual or similar information YES YES YES YES NO NO
Professional or employment related information YES YES YES YES NO NO
Non-public education information (as per the Family Educational Rights and Privacy Act (20 U.S.C. Sec. 1232g; 34 C.F.R. Part 99)) NO NO NO NO NO NO
Inferences drawn from other personal information to create a profile about a consumer. NO NO NO NO NO NO

Shine the Light” Law”:  California’s “Shine the Light” law permits users of the Services that are California residents to request certain information regarding our disclosure of PII to third parties for their direct marketing purposes. To make such a request, please contact us at the Contact Information provided below.

Specific Rights Under CCPA:  Under the California Consumer Privacy Act (the “CCPA”), California residents have certain rights, including the following:

  • Right to Know (Access): You have the right to request disclosure of PII collected or sold.
  • Right to Deletion: You have the right to request deletion of PII collected from you.
  • Right to Opt Out: You have the right to opt-out of the “sale” of PII; please see below for more details. 
  • Right to Sue for Security Breaches: You have the right to sue if we violate our duty to maintain reasonable security measures.
  • Right to Data Portability: You have the right to receive your PII in a portable, readily usable format.
  • Right to Correct Inaccurate Information: You have the right to request that we correct inaccurate information about you that we maintain.
  • Right to Be Free from Discrimination: You have the right to not be discriminated against by us for exercising any of your rights under the CCPA.
  • Right to Protection from Waiver of Rights:  You have the right to exercise the privacy rights granted to you by California law, and we may not require you to waive these rights as a condition of using our Services.

To exercise your rights, please use the Verifiable Consumer Request method described in this Policy. Please be aware that your rights (including those enumerated elsewhere in this Policy) are limited to the extent permitted by the CCPA.

Sharing and “sale” of PII

We do not “sell” your PII in a way that “sell” is most commonly understood. We may, however, share certain advertising identifiers and cookie information with our third-party partners to deliver interest-based ads, optimize ad campaign performance, and attribute installs. To the extent that activity is considered a “sale” under the CCPA, you may opt out of such activity by taking certain steps such as the following: 

  • You may limit behaviorally targeted advertising or analytics by limiting ad tracking in your device settings. For mobile app ads, you can reset your Advertising Identifier and, depending on your device, select to opt out of interest-based ads (Android) or turn on the Limit Ad Tracking setting (iOS). 
  • For display advertising on the Web, you can adjust your browser settings to limit certain tracking by means of cookies, and by visiting the following sites: http://www.aboutads.info/choices and http://www.youronlinechoices.eu/. Please note that opt-outs are browser and device-specific and it may take a short time before an opt-out takes effect. 
  • You can find our cookie policy here.

CCPA Right to Limit the Use of Sensitive Personal Information

You have the right to direct us to limit our use of your Sensitive Personal Information to that use which is necessary to perform the services. To exercise your right to limit our use of your Sensitive Personal Information, you may submit a request to us by contacting our privacy support at [email protected].

You do not need to create an account with us to exercise this right. We will only use PII provided in a rights request to review and comply with your request.

Canada

If you are an individual residing in Canada, the following terms will also apply.

Collection of Personal Information

We collect a variety of Personal Information from our users, including but not limited to:

  • Name
  • Postal Address
  • Email Address
  • Phone Number
  • IP Address
  • Precise geolocation data

Please see the main Policy above for additional types of Personal Information collected.

Use of Personal Information

We may use Personal Information for various general, lawful business purposes: These purposes include: delivery of the Services, direct marketing, customer service and user communications, user experience personalization, business optimization, and safety and security. We ensure that such use is consistent with the consent provided by our users and the requirements of Canadian law.

Disclosure to Third Parties

We may disclose Personal Information to the following third parties:  

  • Service providers and trusted third parties. Please note that the Services may use the Google Maps Platform or Apple Maps. To the extent Users’ PII is disclosed to Apple, the User hereby consents to Apple’s use and collection of such PII pursuant to the then current Apple Privacy Statement (available at https://www.apple.com/legal/privacy/data/en/apple-maps/ or a successor website). To the extent Users’ PII is disclosed to Google, the User hereby consents to Google’s use and collection of such PII pursuant to the then current Google Privacy Policy (available at https://policies.google.com/privacy or a successor website). MileIQ does not control Apple’s or Google’s collection or use of any User PII. Do not use the Services if you are not comfortable with Apple’s or Google’s terms of use and/or privacy policies.
  • Law enforcement agencies
  • Surviving entities in connection with the sale or acquisition of assets

Consent

By using our Services, users in Canada consent to the collection, use, and disclosure of their Personal Information as described in this Policy. Users have the right to withdraw their consent at any time, subject to legal or contractual restrictions and reasonable notice.

Access and Correction

Users in Canada have the right to access their Personal Information held by us and to request that any inaccuracies be corrected, subject to certain exceptions under Canadian law.

Retention

Personal Information will be retained only as long as necessary for the fulfillment of the purposes for which it was collected, or as required by law.

Contact Information

If you have questions about this Policy or wish to contact us with questions or comments, please contact us at:

MileIQ Inc.
548 Market Street
PMB 37418
San Francisco, CA 94104
Contact MileIQ Support