Privacy Policy

1. Who we are

JogMe is a free UK mobile app that helps you track renewal deadlines for vehicles, companies, insurance, passports, and more. If you have any questions about this policy, contact us at support@jogme.co.uk.

JogMe is registered with the UK Information Commissioner's Office (ICO). Registration number: 00013791422. You can verify this at ico.org.uk.

2. What data we collect

We collect and process the following categories of personal data:

Account information

When you create an account, we collect your email address and display name via Firebase Authentication. You may sign in with email/password or Google Sign-In.

Saved companies

If you track a company, we store the company number, company name, and filing dates (confirmation statement and accounts due dates) retrieved from the Companies House API.

Saved vehicles

If you track a vehicle, we store the vehicle registration number, MOT expiry date, and road tax expiry date retrieved from the DVLA and DVSA APIs.

Reminders

We store reminder data including dates, labels, categories (e.g. MOT, road tax, insurance, company filing), offset days, and status.

Scanned documents

If you use the document vault, we store encrypted copies of scanned documents (e.g. insurance certificates, passports, driving licences) along with extracted text and dates from OCR processing. All document files are encrypted with AES-256-GCM.

Gmail scanning data

If you connect your Gmail account, we process your emails to find renewal-related messages. This section is important, so please read it carefully:

We request read-only access to your Gmail account.
We search for renewal-related emails using 7 specific subject-based queries (e.g. renewal, policy, expiry, MOT, road tax, insurance, confirmation statement).
We extract dates and vehicle registration numbers from email bodies in memory only.
We do NOT store email content, email bodies, or email attachments on our servers.
Gmail OAuth tokens are stored securely on our server side and can be revoked by you at any time.

Your emails stay private

JogMe never stores the content of your emails. We only extract dates and registration numbers in memory to create reminders, then discard the email data immediately.

Google API Services Limited Use Disclosure

JogMe's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

JogMe only uses Gmail data to provide the reminder-creation feature visible in the app. No other use is made of your Gmail data.
JogMe does not transfer Gmail data to any third parties, except as necessary to provide the service (e.g. our backend server processes emails in memory) or as required by law.
JogMe does not use Gmail data for serving advertisements.
JogMe does not allow humans to read your email data, unless you specifically give consent, it is necessary for security purposes, or it is required to comply with applicable law. All email processing is fully automated.

3. How we use your data

We use your data for the following purposes:

To create and manage reminders for your tracked deadlines.
To look up vehicle information via the DVLA VES and DVSA MOT government APIs.
To look up company filing information via the Companies House API.
To scan documents using OCR (Google Cloud Vision) and extract relevant dates.
To send you push notifications when deadlines are approaching.
To process your Gmail (if connected) to automatically find and create reminders from renewal emails.

4. Legal basis for processing

We process your data on the following legal bases under UK GDPR:

Consent — for Gmail access and document scanning. You can withdraw consent at any time.
Contract — to provide the JogMe service as described when you create an account.
Legitimate interests — to improve and maintain the service.

5. Data storage and security

Your data is stored using the following services and methods:

Firebase Authentication — for account credentials (managed by Google).
Cloud Firestore — for companies, vehicles, reminders, and document metadata (Google Cloud, EU region).
Encrypted document vault — scanned document files are encrypted using AES-256-GCM and stored on our server. Encryption keys are managed separately from the data.
Gmail OAuth tokens — stored securely on our server, never on your device.

6. Third-party services

JogMe uses the following third-party services to provide its functionality:

Firebase Authentication — user account management (Google)
Cloud Firestore — database (Google Cloud)
Google Cloud Vision API — OCR document scanning
Google Gmail API — email scanning for renewals (with your consent)
Companies House API — company filing information (UK Government)
DVSA MOT History API — MOT check data (UK Government)
DVLA Vehicle Enquiry Service API — vehicle and tax data (UK Government)

Each of these services has its own privacy policy. We encourage you to review them.

7. Data sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes. Data is only shared with the third-party services listed above as necessary to provide the JogMe service.

8. Data retention

We retain your data for as long as your account is active. When you delete your account, all associated data is permanently removed, including:

Your Firebase Authentication account
All saved companies and vehicles
All reminders
All scanned documents (encrypted files and metadata)
Gmail OAuth tokens (revoked and deleted)

9. Your rights under UK GDPR

You have the following rights regarding your personal data:

Right of access — you can request a copy of the data we hold about you.
Right to rectification — you can ask us to correct inaccurate data.
Right to erasure — you can request deletion of your data (see below).
Right to data portability — you can request your data in a portable format.
Right to withdraw consent — you can disconnect Gmail or delete your account at any time.
Right to lodge a complaint — you can complain to the Information Commissioner's Office (ICO) if you believe your rights have been violated.

10. How to delete your data

You can delete your account and all associated data directly from the app by going to the Manage tab and tapping "Delete account". Alternatively, visit our Delete my data page for full instructions.

If you cannot access the app, email support@jogme.co.uk and we will delete your data within 30 days.

11. Children

JogMe is not intended for use by children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has created an account, please contact us at support@jogme.co.uk and we will delete the account.

12. Changes to this policy

We may update this privacy policy from time to time. We encourage you to check this page periodically for any changes. Continued use of JogMe after changes are posted constitutes your acceptance of the updated policy.

13. Contact us

If you have any questions about this privacy policy or your data, contact us at:

support@jogme.co.uk