Privacy Policy

Last updated · 2026-05-14

The short version : RUNDR is engineered to know nothing about you. No account, no login, no email, no analytics, no tracking SDK. The only data our server stores is an anonymous device ID and a daily counter — that's literally it. Your runs never leave your phone.

What we collect

RUNDR's backend (a Cloudflare Worker) stores exactly two things, both anonymous and ephemeral :

A random device UUID (e.g. 137c2a11-6909-4ead-ba48-e71cb615799a), generated on your phone the first time you open the app. We never see who you are — just an opaque ID that lets us enforce the free tier's 3 loops/day limit.
A daily counter (e.g. 2026-05-14:137c2a11... → 2) recording how many loops your device generated today. This counter expires at UTC midnight every night — we don't keep history.

If you upgrade to Pro, we additionally store an opaque receipt hash to bypass the free tier limit — never your Apple ID, never your name, never your email.

What we do not collect

No name, no email, no phone number, no address
No Apple ID, no Google ID, no social login
No analytics SDK (Google Analytics, Mixpanel, Firebase, Amplitude, none)
No crash reporter that fingerprints your device (Sentry, Crashlytics, none)
No advertising ID, no IDFA, no IDFV
No cross-app tracking — Apple App Tracking Transparency dialog is not required
No marketing email — we never send you anything because we don't have your email

The route you generate

When you tap GENERATE LOOP, your phone sends 3 pieces of data to our backend :

Your GPS position, rounded to 3 decimal places (~110 m precision) — not your exact location
The requested distance (e.g. 5000 m)
Your anonymous device UUID (for rate-limiting)

Our backend forwards those coordinates to OpenRouteService, a Heidelberg University project, which computes the route and sends it back. We cache route results for 7 days in a key-value store to save quota and improve latency — keyed by location bucket and distance, never by user.

The generated route is then sent back to your phone, and from that point on it lives only on your device.

What stays on your phone

Once the route reaches your phone, the following data is stored locally only, in your phone's AsyncStorage, and never uploaded anywhere :

Your last 10 generated loops (history)
Your saved favorites (unlimited)
Your last run's GPS tracking (distance, duration, elevation profile)
Your OSM POI cache for the zones you've been in
Your Pro purchase receipt (validated locally by RevenueCat)

Run tracking is erased the moment you start a new run. We don't keep a history of your runs. We can't show you "your past activity" because we have no idea what your past activity is.

Third-party services we use

Cloudflare Workers + KV — our backend infrastructure. They see the anonymous device UUID and the rounded GPS coordinates for the duration of one HTTP request. Cloudflare's privacy policy.
OpenRouteService (Heidelberg University, Germany) — computes the actual route from coordinates. They see the rounded GPS coordinates, no user identifier. ORS privacy statement.
OpenStreetMap (Overpass API) — public OSM data is queried directly from your phone to fetch points of interest in your zone. They see your IP address (standard HTTP) and your GPS bucket. OSM privacy.
RevenueCat — manages your Pro purchase. They see the App Store receipt. RevenueCat privacy.
Apple App Store — handles payment. Apple's privacy policy applies to the transaction.

We have no partnership, no data sharing, no advertising deal with any other entity.

Your rights (RGPD / GDPR)

Since we don't have any personal data about you, the usual GDPR rights are simpler than usual :

Right to access — just check the app, everything is local.
Right to deletion — uninstall the app. Wait 24 hours for the anonymous daily counter to expire on our server. Done.
Right to portability — your saved loops can be exported as GPX files (Pro feature).

If you want to be extra-sure, you can reset your anonymous device ID anytime in the app's Settings — this generates a new UUID and effectively "wipes" any link between your past usage and your future one.

Children

RUNDR is not directed at children under 13 and does not knowingly collect any data from them. We don't collect data from anyone, so this should be obvious, but the legal world likes us to say it explicitly.

Changes to this policy

If we ever change this policy, we'll publish the new version with a new "Last updated" date and keep the old versions accessible. We will never change it in a way that broadens what we collect without an explicit, opt-in user prompt in the app.

Contact

Questions or concerns ? Write to support@rundr.me. We read every message.

Editor : Hadrien Hubert · Sole proprietorship DE.H.VS · France