Last updated:
Privacy Policy
Effective Date: May 8, 2026
Provider: EveryLastMile (“EveryLastMile,” “we,” “us,” “our”)
Contact: privacy@everylastmile.app
This Privacy Policy explains how EveryLastMile collects, uses, shares, and protects information when you use the EveryLastMile mobile application and related services (collectively, the “Services”). We built EveryLastMile with a privacy-first architecture: the vast majority of your data never leaves your device.
1. Scope and Roles
This Policy applies to the EveryLastMile iOS application and our marketing website at everylastmile.app. For the purposes of applicable privacy laws (including the California Consumer Privacy Act, as amended by the California Privacy Rights Act), we act as the “business” or “controller” for the personal information we process.
1.1 Marketing Website (everylastmile.app)
Our marketing website is intentionally minimal. It collects no personal information from you, sets no third-party cookies, runs no advertising pixels, and stores nothing in your browser’s localStorage or sessionStorage.
Cloudflare Web Analytics: We use Cloudflare Web Analytics to count aggregate page views and understand which pages are useful to visitors. Cloudflare Web Analytics is cookieless and does not track individuals across sites. It does not use IP addresses for tracking (your IP is anonymized at ingestion), does not build user profiles, and does not share data with advertising networks. Aggregate data is retained per Cloudflare’s defaults (six months at the time of writing). For details see Cloudflare’s privacy commitments and the Web Analytics documentation.
Cloudflare hosting: Like every web request, our pages are served by Cloudflare Workers (Cloudflare, Inc.) acting as our hosting provider. Cloudflare maintains routine server logs (timestamp, requested URL, user agent, anonymized IP) used for operational security, abuse prevention, and performance monitoring. We do not associate these logs with any individual identity.
No cookies, no fingerprinting. The marketing website does not set any cookies of its own and does not employ browser fingerprinting techniques.
Everything below this section applies to the EveryLastMile iOS application, where data collection necessarily differs because the app provides the core mileage-tracking service.
2. Information We Collect
2.1 Information You Provide Directly
| Data | Examples | Purpose |
|---|---|---|
| Account information | First name, last name, email address (via Apple Sign In) | Account creation, identification, customer support |
| Trip classifications and notes | Business/personal designation, business purpose, trip notes | IRS-compliant mileage recordkeeping |
| Vehicle information | Vehicle nickname, make, model, year, license plate, odometer readings | Associate trips with vehicles, reporting |
| Saved locations | Location name, address, GPS coordinates, location type (home, work, client) | Auto-classification, trip enrichment |
| Expense data | Parking costs, toll costs (in U.S. dollars) | Expense tracking and reporting |
| Support communications | Emails, feedback, diagnostic exports you share with us | Respond to inquiries, troubleshoot issues |
2.2 Information Collected Automatically from Your Device
Why we request “Always Allow” location: EveryLastMile uses background location access to automatically detect when you begin and end a drive, so trips are recorded without you having to remember to start the app. All location processing happens on your device. We do not stream, upload, or transmit your location data to any server. Without this permission, you can still record trips manually, but automatic detection will not function.
Depending on the permissions you grant, we collect the following on-device:
Precise Geolocation Data
- GPS coordinates (latitude, longitude) captured continuously during trip recording
- Speed, course (direction of travel), and course accuracy at each recorded point
- Parking spot locations (origin and destination)
- Reverse-geocoded street addresses derived from GPS coordinates (via Apple MapKit)
- Route-matched coordinates at the start of a trip when GPS signal is still acquiring accuracy (via Mapbox Map Matching API)
Note on reverse geocoding: When the app converts GPS coordinates into a readable street address, it sends those coordinates to Apple’s MapKit service. Per Apple’s stated MapKit privacy practices, these queries are not associated with your Apple ID and are not used to build a profile of you. We do not see or store the relationship between your coordinates and your identity beyond what is stored locally on your device.
Note on initial route matching: At the beginning of a drive, when your device’s GPS signal is still acquiring accuracy, the app may send a small number of initial GPS coordinates (latitude and longitude) to the Mapbox Map Matching API to align them to known roads. This occurs only during the first moments of a trip. Apple MapKit remains the primary service for route building, directions, and address resolution throughout the rest of the drive. Requests to Mapbox do not include your name, email, Apple ID, trip classifications, vehicle information, or any other personally identifying information.
Motion and Fitness Data
- Activity classification signals from Apple CoreMotion (walking, running, driving, stationary)
- Used solely to detect when you begin and end a drive for automatic trip recording
- Raw accelerometer or gyroscope data is not stored
Device and App Information
- Device model, operating system version
- App version and build number
- Locale and timezone
- Subscription tier (Free or Premium)
- Permission states (location, motion, notifications)
2.3 Analytics and Diagnostics
We use PostHog, a product analytics service, to collect usage events that help us maintain and improve the Services. Analytics events are not linked to your name, email, or any directly identifying personal information when transmitted to PostHog. You can disable analytics at any time in the app’s Settings.
What analytics collects:
- Session events (app opened, session started)
- Screen navigation events (which screens you view)
- Trip lifecycle events (trip started, trip completed, trip deleted), including trip distance and duration, but never GPS coordinates, route data, or street addresses
- Subscription funnel events (paywall viewed, plan selected, purchase outcome)
- Feature usage events (classification changes, bulk actions, import operations)
- An anonymous installation identifier (a random UUID generated on your device)
Device and app context attached to each event:
- Operating system and version (e.g., iOS 26.4)
- App version, build, and bundle identifier
- Device type (e.g., Mobile)
- Language and currency settings you have selected in the app
- Your subscription tier (Free or Premium)
- Aggregate counts derived from your activity (number of trips, number of vehicles, number of saved locations, percentage of trips classified as business)
- Whether certain features are enabled (auto-tracking, business hours, connected vehicle)
- Authentication provider (e.g., Apple Sign In, anonymous)
What analytics does NOT collect:
- GPS coordinates, route points, or trip routes
- Street addresses or location names
- Personal profile information (name, email, phone number)
- Vehicle details (make, model, license plate)
- Trip notes, business purposes, or expense amounts
- Saved location data
- IP addresses (we have configured PostHog to discard IP addresses at ingestion)
- Geographic location derived from IP (we have disabled PostHog’s GeoIP enrichment, so country, city, region, and approximate coordinates are not derived from your IP address)
Anonymous and Pseudonymous Identification
- Before you sign in, events are associated with a randomly generated installation ID stored on your device
- After you sign in with Apple, your Apple User ID is mapped to a separate analytics identifier; your real name and email are not sent to PostHog
2.4 Information from Third-Party Services
| Service | Data Received | When |
|---|---|---|
| Apple Sign In | Name, email (as you authorize) | When you create an account |
| Apple StoreKit | Subscription status, transaction verification | When you subscribe or restore purchases |
| Apple MapKit | Street addresses from GPS coordinates | When resolving trip start/end addresses |
| Mapbox | Route-matched coordinates for initial GPS data | At the start of a trip when GPS signal quality is limited |
| U.S. DOE FuelEconomy.gov | Vehicle year, make, and model listings | When you add a vehicle (public data; no personal data sent) |
2.5 On-Device AI and Machine Learning
We may use on-device artificial intelligence and machine learning to improve your individual experience. This processing is designed to keep your data private:
- On-device only: AI and ML processing occurs on your iPhone, including through Apple’s Foundation Models framework, which runs locally and does not transmit your data to Apple or to us
- Individualized to you: Any insights, suggestions, or learned patterns are derived solely from your own data and remain on your device
- No cross-user training: We do not aggregate, pool, or transmit your trip data, routes, addresses, or classifications to train shared AI or ML models
- No use of your content for our model training: Your trips, routes, and personal data are not used to train any models we develop or that third parties develop
If we ever change this approach (for example, to introduce optional cloud-based AI features), we will update this Policy and provide you with meaningful notice and choice before any change takes effect.
3. Where Your Data Is Stored
3.1 On-Device Storage (Primary)
All trip data, route points, vehicle information, saved locations, and profile data are stored locally on your device in an encrypted SQLite database within the app’s private Application Support directory. This data is protected by iOS device encryption (Data Protection).
| Storage Location | Contents |
|---|---|
| Application Support directory (SQLite) | Trips, route points, vehicles, saved locations, user profile, aggregate statistics |
| iOS Keychain (hardware-encrypted) | Apple Sign In identity (user ID, name, email, sign-up date) |
| UserDefaults | App preferences, analytics opt-in status, anonymous installation ID |
3.2 Optional iCloud Sync
If you enable iCloud sync, your trip data, profile, and settings are synchronized to your private iCloud account using Apple CloudKit. This data is:
- Stored in your personal iCloud private database (not shared or accessible to us)
- Encrypted in transit and at rest by Apple
- Subject to Apple’s iCloud privacy policy
- Removable by disabling iCloud sync in the app or by deleting your account
3.3 Debug Logging (Development and TestFlight Only)
In development builds and TestFlight beta builds, the app writes detailed diagnostic logs to an on-device file. These logs may include GPS coordinates, state transitions, and performance metrics. Debug logging is automatically disabled in App Store production builds and the logs are never transmitted off-device unless you manually export and share them.
4. How We Use Information
| Purpose | Legal Basis | Data Used |
|---|---|---|
| Provide trip detection, recording, and mileage logs | Performance of contract | Location, motion, trip data |
| Generate IRS-compliant mileage reports | Performance of contract | Trip history, classifications, addresses |
| Sync data across your devices (if enabled) | Your consent | All trip and profile data (via your iCloud) |
| Process subscription purchases | Performance of contract | Transaction data (via Apple StoreKit) |
| Improve app performance and reliability | Legitimate interest | Usage analytics events (not linked to your name or email) |
| Provide customer support | Performance of contract | Information you share with us |
| Comply with legal obligations | Legal obligation | As required by applicable law |
| Detect and prevent fraud or abuse | Legitimate interest | Account and transaction data |
5. How We Share Information
We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.
We may share information in the following limited circumstances:
| Recipient | Data Shared | Purpose |
|---|---|---|
| PostHog (analytics provider) | Pseudonymous usage events and device metadata (never location data, addresses, or profile details) | Product analytics, under contractual data processing obligations |
| Firebase Authentication (Google LLC) | Apple Sign In identity token, exchanged for a Firebase authentication credential. Firebase stores an opaque user identifier and the verified email associated with your Apple Sign In, used solely to authenticate you across sessions and devices. Firebase does not receive trip data, location data, vehicle details, or usage analytics. | Secure account authentication |
| Apple (via StoreKit, MapKit, CloudKit) | Subscription transactions; address search queries; synced data (if iCloud enabled) | Subscription processing, geocoding, cloud sync |
| Mapbox, Inc. | A small number of GPS coordinates from the start of a trip (no names, emails, or other personal identifiers) | Initial route matching when GPS signal is still acquiring accuracy |
| Legal and safety | As required by law, subpoena, or court order, or to protect rights, property, or safety | Legal compliance |
| Business transfers | In connection with a merger, acquisition, bankruptcy, or sale of assets, with advance notice to you | Business continuity |
We do not share data with:
- Advertising networks
- Data brokers
- Social media platforms
- Any other third parties not listed above
6. Location and Sensitive Data Controls
Precise geolocation data can reveal sensitive information about your life. We provide multiple layers of control:
6.1 In-App Controls
| Control | Effect |
|---|---|
| Disable auto-tracking | Stops all background location monitoring; only manual trips are recorded |
| Disable analytics | Stops all PostHog event transmission |
| Disable iCloud sync | Stops all cloud synchronization; data remains local only |
| Delete individual trips | Permanently removes specific trip data including all route points |
| Delete account | Permanently removes all data (see Section 10) |
6.2 iOS System Controls
| Permission | How to Change | Effect if Revoked |
|---|---|---|
| Location, “Always Allow” | Settings > Privacy > Location Services > EveryLastMile | Automatic trip detection disabled; manual recording still works with “While Using” |
| Location, “While Using the App” | Same as above | Manual trip recording works only when app is in foreground |
| Location, “Never” | Same as above | All trip recording disabled |
| Precise Location toggle | Same as above | Approximate location used (reduced accuracy) |
| Motion & Fitness | Settings > Privacy > Motion & Fitness | Automatic driving detection quality reduced |
| Notifications | Settings > Notifications > EveryLastMile | No reminders for unclassified trips or tracking alerts |
| Background App Refresh | Settings > General > Background App Refresh | Background sync and auto-tracking may not function |
7. Data Retention
| Data Type | Retention Period | Deletion Method |
|---|---|---|
| Trip data and route points | Retained until you delete individual trips or your account | In-app trip deletion or account deletion |
| User profile | Retained until account deletion | Account deletion |
| Vehicles and saved locations | Retained until you remove them or delete your account | In-app removal or account deletion |
| Analytics events (PostHog) | Retained for 12 months from the date of capture, after which they are automatically deleted | Automatically expired; or contact us for deletion |
| Anonymous installation ID | Regenerated on sign-out; cleared on account deletion | Sign out or account deletion |
| Apple Sign In identity (Keychain) | Retained until account deletion | Account deletion |
| iCloud synced data | Retained in your iCloud until you disable sync or delete your account | Disable sync or account deletion |
| Debug logs (non-production only) | Until manually cleared or app reinstallation | In-app export/clear or app deletion |
We retain information only as long as necessary for the purposes described in this Policy, to comply with legal obligations (such as tax recordkeeping requirements), to resolve disputes, and to enforce our agreements.
8. Security
We implement the following safeguards to protect your data:
- On-device encryption: All data stored in the app’s private SQLite database is protected by iOS Data Protection (AES-256 encryption tied to your device passcode)
- Keychain encryption: Authentication credentials are stored in the iOS Keychain, which uses hardware-backed encryption
- Transit encryption: All network communications (analytics, authentication, iCloud sync, MapKit, Mapbox, StoreKit) use TLS/HTTPS encryption
- No custom backend servers: We do not operate servers that store your trip data; your data lives on your device and optionally in your personal iCloud account
- Minimal data transmission: GPS coordinates, street addresses, and personal details are never sent to our analytics provider
- Verified transactions: Subscription purchases are cryptographically verified using Apple StoreKit 2
If we become aware of a security incident affecting your personal information, we will notify affected users and applicable regulators in accordance with applicable law (including California Civil Code §1798.82).
No system is 100% secure, and we cannot guarantee absolute security. We encourage you to use a strong device passcode and keep your iOS version up to date.
9. Children
The Services are not directed to children under 13 (or under 16 in jurisdictions where a higher age of consent applies). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at privacy@everylastmile.app and we will promptly delete it.
10. Your Privacy Rights and Choices
10.1 Data Export
You can export all of your data at any time from Settings within the app. Exports are available in:
- JSON format: complete structured export of all trips, vehicles, and saved locations
- CSV format: spreadsheet-compatible export of trips (date, addresses, distance, classification, purpose, notes), vehicles, and saved locations
Exports are generated entirely on your device and delivered via the iOS share sheet.
10.2 Account and Data Deletion
You can permanently delete your account and all associated data from Settings > Delete Account. This removes:
- All drive records (classified, unclassified, and historical)
- All vehicles and odometer records
- All saved locations
- All synced iCloud data (CloudKit records)
- All app preferences and settings
- Your authentication credentials
Account deletion is immediate and irreversible. Active subscriptions must be cancelled separately through your Apple ID subscription settings, as Apple manages billing independently.
10.3 U.S. State Privacy Rights
Depending on your state of residence (California, Virginia, Colorado, Connecticut, and others), you may have the right to:
- Access the personal information we hold about you
- Correct inaccurate personal information
- Delete your personal information
- Obtain a portable copy of your data (see Section 10.1)
- Opt out of the sale or sharing of personal information for targeted advertising (we do not sell or share your data for this purpose, so no opt-out is needed)
- Limit use of sensitive personal information (we use precise geolocation solely to provide the core trip-tracking service you requested)
- Non-discrimination (we will not discriminate against you for exercising your privacy rights)
- Appeal a decision regarding your privacy request
Categories of Personal Information Collected (CCPA disclosure):
- Identifiers (name, email, Apple User ID, anonymous installation ID)
- Geolocation data (precise GPS coordinates during trip recording)
- Internet or electronic network activity (app usage analytics)
- Commercial information (subscription status, purchase history via Apple)
- Inferences (trip classifications you assign; IRS deduction calculations)
- Sensitive personal information (precise geolocation), used only for the trip-tracking service
Categories of Sources of Personal Information:
- Directly from you (profile, classifications, vehicle and location entries)
- Automatically from your device (location, motion, device metadata, usage events)
- From Apple Inc. (Apple Sign In identity, subscription transactions, address resolution via MapKit)
- From Mapbox, Inc. (route-matched coordinates at trip start)
- From Google LLC / Firebase (authentication credentials)
- From the U.S. Department of Energy (public vehicle make and model reference data)
How to exercise your rights: Email privacy@everylastmile.app with your request. We will verify your identity before processing. You may also use the in-app data export and account deletion features. We respond to verifiable requests within 45 days (or as required by applicable law).
Global Privacy Control (GPC): We honor Global Privacy Control browser signals on our website as a valid request to opt out of the sale or sharing of personal information. Because we do not sell or share your personal information for cross-context behavioral advertising, GPC signals do not require additional action on our part, but we acknowledge and respect them.
10.4 Marketing Preferences
We do not currently send marketing emails. If we do in the future, you can opt out via the unsubscribe link in any marketing communication or by contacting us.
11. International Transfers
The Services are designed for use in the United States and are distributed only in the United States and other non-EEA jurisdictions. If you use the Services from outside the United States, your information may be processed in the United States or other countries where our service providers operate (including Google/Firebase for authentication, and PostHog for analytics). These countries may have data protection laws that differ from your jurisdiction. By using the Services, you consent to such transfers.
12. Third-Party Services and Links
The Services integrate with the following third-party services, each governed by its own privacy policy:
| Service | Provider | Their Privacy Policy |
|---|---|---|
| Apple MapKit | Apple Inc. | apple.com/legal/privacy |
| Mapbox | Mapbox, Inc. | mapbox.com/legal/privacy |
| Apple iCloud (CloudKit) | Apple Inc. | apple.com/legal/privacy |
| Apple StoreKit | Apple Inc. | apple.com/legal/privacy |
| Firebase Authentication | Google LLC | firebase.google.com/support/privacy |
| PostHog Analytics (iOS app only) | PostHog, Inc. | posthog.com/privacy |
| Cloudflare Workers (marketing site hosting) | Cloudflare, Inc. | cloudflare.com/privacypolicy |
| Cloudflare Web Analytics (marketing site, cookieless) | Cloudflare, Inc. | cloudflare.com/privacypolicy |
| FuelEconomy.gov | U.S. Dept. of Energy | fueleconomy.gov/feg/privacy.shtml |
We are not responsible for the privacy practices of third-party services.
13. Changes to This Policy
We may update this Policy from time to time. If we make material changes, we will notify you through an in-app notice or other reasonable means before the changes take effect. The “Effective Date” at the top of this Policy indicates when it was most recently revised. Your continued use of the Services after the effective date of any changes constitutes acceptance of the updated Policy.
14. Contact Us
| Purpose | Contact |
|---|---|
| Privacy requests and questions | privacy@everylastmile.app |
| General support | support@everylastmile.app |
| Legal notices | legal@everylastmile.app |
If you have an unresolved privacy concern that we have not addressed satisfactorily, you may have the right to file a complaint with your state attorney general or applicable data protection authority.