Back to Home

Privacy Policy

Last updated: March 22, 2026 · Version 1.3

Your privacy is important to us. This Privacy Policy explains how Dravenik Technologies LLC ("Company", "we", "us", or "our"), the owner and operator of Haullytics, collects, uses, stores, and protects your information.

1. Information We Collect

1.1 Account Information

When you create an account, we collect your name, email address, and authentication credentials through our OAuth provider. We do not store passwords directly.

1.2 Business Data

You voluntarily provide business data including: company name, truck information, load details (origins, destinations, rates, broker names), fuel stop records, expense records, and driver information. This data is stored to provide the Service.

1.3 Uploaded Documents

When you use AI scanning features, uploaded documents (rate confirmations, receipts) are stored in secure cloud storage (Amazon S3). These documents are processed by AI to extract data and are retained for your reference.

1.4 Location Data

If you are a driver and choose to enable location sharing, we collect your device's GPS coordinates while the app is open in your browser. Location data is used to display your position on the fleet map for your company's owner/dispatcher. Location sharing is entirely opt-in — you must explicitly consent before any location data is collected. You can disable it at any time from your dashboard. We do not track your location in the background or when the app is closed.

Current location data is overwritten with each update. Location history (breadcrumb trail) is retained for 30 days, then automatically deleted. Location data is only visible to your company's owner and dispatchers — never to other drivers or third parties.

1.5 Usage Data

We collect anonymized usage analytics (page views, feature usage) through privacy-focused analytics tools. We do not use invasive tracking or sell your data to advertisers.

1.6 Payment Information

Payment processing is handled entirely by Stripe. We do not store credit card numbers, CVVs, or full payment details. We only store Stripe customer and subscription identifiers to manage your billing.

1.7 Gmail Integration Data

If you choose to connect your Gmail account via "Connect with Google," we collect and store:

  • Gmail address: The email address of the connected Google account, used to display which account is linked and to set the "From" address on outgoing emails.
  • OAuth refresh token: A securely stored token that allows Haullytics to send emails on your behalf without requiring you to re-authenticate each time.

We do not collect, store, or access: your email inbox contents, sent mail, drafts, labels, contacts, attachments, or any other Gmail data. The only Gmail API scope we request is gmail.send, which is strictly limited to composing and sending new emails. We cannot and do not read or delete your emails.

2. How We Use Your Information

We use your information to:

  • Provide and maintain the Service
  • Process AI document scanning and data extraction
  • Calculate financial metrics (driver pay, net profit, IFTA data)
  • Process subscription payments through Stripe
  • Send operational notifications (account-related only)
  • Send driver communications (rate confirmations, load assignments) from your connected Gmail account, if you opt in
  • Improve the Service based on aggregated, anonymized usage patterns
  • Display driver locations on the fleet map (with explicit consent)
  • Respond to support requests and feedback

3. Data Storage and Security

3.1 Where Data Is Stored

Your data is stored on secure cloud infrastructure. Database records are stored in managed database services with encryption at rest. Uploaded files are stored in Amazon S3 with server-side encryption.

3.2 Security Measures

We implement the following security measures:

  • Encryption in transit: All data is transmitted over HTTPS/TLS
  • Encryption at rest: Database and file storage use server-side encryption
  • Session security: HTTP-only, secure cookies with 30-day expiration
  • Access control: Role-based permissions (Owner, Dispatcher, Driver)
  • Rate limiting: API rate limiting to prevent abuse
  • Audit logging: All data modifications are logged with timestamps and user identity
  • Location consent: GPS tracking requires explicit opt-in and can be disabled at any time

3.3 Data Retention

We retain your data for as long as your account is active. If you delete your account, we retain data for 30 days (to allow for recovery), after which it is permanently deleted. Anonymized, aggregated data may be retained indefinitely for analytics.

4. Data Sharing

We do not sell, rent, or trade your personal or business data. We share data only with:

  • Stripe: For payment processing (customer ID, email, subscription data)
  • Google Maps: For distance calculations and address lookups (addresses only, no personal data)
  • AI Processing: Uploaded documents are processed by AI models to extract data. Document content is not used to train AI models.
  • FMCSA: Broker MC numbers are verified against the public FMCSA database
  • Google Gmail API: If you connect your Gmail, we use the gmail.send scope exclusively to send driver emails from your address. We do not share your Gmail data with any other party. Your OAuth refresh token is stored encrypted and is deleted immediately when you disconnect.
  • Legal requirements: We may disclose data if required by law, court order, or government request

5. Your Rights

You have the right to:

  • Access: View all data we store about you and your company
  • Export: Download your complete data in CSV format at any time
  • Correction: Update or correct your data through the Service
  • Deletion: Request deletion of your account and all associated data
  • Portability: Export your data in a standard format to move to another service

6. Cookies

We use a single essential session cookie to maintain your login state. We do not use advertising cookies, tracking cookies, or third-party marketing cookies. Our analytics use cookieless, privacy-focused tracking.

7. Children's Privacy

The Service is not intended for use by individuals under 18 years of age. We do not knowingly collect data from minors.

8. Google API Services Disclosure

Haullytics' use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only use Google user data (your Gmail address and send capability) to provide the email-sending feature you explicitly authorized.
  • We do not use Google user data for advertising, market research, or to build user profiles.
  • We do not transfer Google user data to third parties except as necessary to provide the Service (i.e., sending the email through Gmail's API).
  • We do not allow humans to read your Google user data unless you provide affirmative consent, it is necessary for security purposes, or it is required by law.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification at least 14 days before they take effect. The "Last updated" date at the top reflects the most recent revision.

9. Contact

For privacy-related questions or to exercise your data rights, contact Dravenik Technologies LLC through the in-app feedback button or email us at the address provided in your account settings.