Privacy Policy

Hummock ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application, mobile applications, and related services (collectively, the "Application").

For users residing in the European Economic Area (EEA), Hummock acts as the Data Controller for your personal data under the General Data Protection Regulation (GDPR).

1. Data We Collect About You

To provide our trail-recording, storytelling and trip planning services, we must collect information that relates to an identified or identifiable individual ("Personal Data").

• Account Data — when you register, we collect your email address, username, and password.
• Precise Location Data — with your explicit permission, we collect precise geographic coordinates (latitude, longitude) via your device's GPS hardware. This includes collecting location data in the background (when the Application is closed or not actively in use) to record your hiking tracks continuously.
• User Content & Media — we collect the text notes, stories, and photographs you upload. Photographed media may contain embedded metadata (EXIF data), which includes the exact time, date, and location where the photo was taken.
• Device and Technical Data — we collect information about the device you use to access the Application, including your IP address, operating system, browser type, device identifiers, and application performance logs (e.g., crash reports).

2. Legal Basis for Processing (EEA Users Only)

If you are located in the European Union/EEA, we only process your Personal Data when we have a valid legal basis under the GDPR:

• Performance of a Contract — to provide the trail-recording and mapping services you request when creating an account.
• Consent — for the collection and processing of your precise background location data, we rely entirely on your explicit consent granted via your device's operating system settings. You can withdraw this consent at any time.
• Legitimate Interests — to analyze uploaded images for automated environmental feature detection (e.g., identifying landmarks like bridges or campsites to generate contextual labels) and to maintain application security.

3. How We Use Your Data

We use the collected data for the following purposes:

• To render your trails, format your storytelling narratives, and anchor your photos to their correct geographic locations.
• To provide an interactive progress trace and generate local landmark/feature labels.
• To optimize application performance, such as client-side image compression to save your cellular data.
• To detect, prevent, and address technical issues, system abuse, or spamming.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data to third parties for marketing purposes. We only share your data with trusted service providers who assist us in operating the Application:

• Cloud Infrastructure and Databases — your account info, synced tracks, and text are stored securely using our backend database providers (e.g., cloud hosting).
• Legal Obligations — we may disclose your data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

5. Data Retention

We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy:

• Account and Trail Data — retained for as long as your account remains active. If you request the deletion of your account, your profile, tracks, text, and photos will be permanently deleted from our production databases within 30 days.
• Cached Diagnostics — application logs and crash data are automatically overwritten or deleted within 90 days.

6. Your Data Protection Rights (GDPR)

Depending on your location, you possess specific rights regarding your Personal Data under the GDPR:

• Right of Access — you have the right to request copies of your personal data held by us.
• Right to Rectification — you have the right to request that we correct any information you believe is inaccurate or incomplete.
• Right to Erasure ("Right to be Forgotten") — you have the right to request that we erase your personal data under certain conditions.
• Right to Restrict or Object to Processing — you have the right to object to our processing of your data, or request that we restrict its processing.
• Right to Data Portability — you have the right to request that we transfer the data we have collected to another organization, or directly to you, in a structured, machine-readable format.
• Right to Withdraw Consent — where processing is based on consent (like background GPS tracking), you have the right to withdraw consent at any time through your device settings.

To exercise any of these rights, please contact us at the email address provided below.

7. Security of Your Data

The security of your data is critical to us. We implement industry-standard administrative, technical, and physical security measures—including encryption of data in transit and secure token-based authentication—to protect your precise location histories and personal files from unauthorized access or disclosure.

8. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top. You are advised to review this Privacy Policy periodically for any changes.

9. Contact Us

If you have any questions about this Privacy Policy, or if you wish to exercise your data protection rights, please contact us at:

Email: hello@hummock.app

Mailing Address:
Perennial Software AB
Blåklockevägen 141
438 33 Landvetter
Sweden