Privacy Policy

Your privacy is fundamental to our service. This policy explains how we collect, use, and protect your personal information.

📅 Effective: December 16, 2025

🔄 Updated: December 16, 2025

📋 Version: 2.0

📝 Executive Summary

Bahiran Delivery is committed to protecting your privacy. We collect only the information necessary to provide our delivery service, including your identity, location, and financial data. We share your information only with customers during active deliveries and with trusted service providers. You have full control over your data and can access, correct, or delete it at any time.

📑 Table of Contents

01 Scope & Application 02 Information We Collect 03 Legal Basis 04 How We Use Data 05 Information Sharing 06 Data Retention 07 Data Security 08 Your Rights 09 Location Services 10 Device Permissions 11 Third-Party Services 12 Contact Information

🎯

1. Scope & Application

1.1 Coverage

This Privacy Policy applies to:

The Bahiran Delivery Driver mobile application (iOS and Android)
All services provided through the App
All personal data processed in connection with the Service
Communications between you and Bahiran Delivery

1.2 Key Definitions

Term	Definition
Personal Data	Any information relating to an identified or identifiable natural person
Processing	Any operation performed on personal data, whether automated or manual
Controller	Bahiran Delivery, which determines the purposes and means of processing
Service Provider	A third party that processes data on our behalf

📊

2. Information We Collect

2.1 Information You Provide

Account Registration Data

Data Element	Purpose	Required
Full legal name	Identity verification, legal compliance	✅ Yes
Mobile phone number	Account verification, communication	✅ Yes
Email address	Account recovery, notifications	✅ Yes
Password	Account security	✅ Yes
Profile photograph	Identity display to customers	Optional

Financial Information

Bank account details (account number, bank name, account holder name)
Mobile money accounts (CBEBirr, Telebirr, M-PESA)
Payment preferences and withdrawal history

2.2 Information Collected Automatically

📍 Location Data

Active Mode (Foreground): Precise GPS coordinates while navigating to deliveries. Updates every 3-5 seconds.

Background Mode: Continuous location tracking when you are "online" and available for deliveries. Used for real-time tracking, proximity alerts, and order matching.

Device & Technical Data

Device manufacturer, model, and operating system version
Unique device identifiers (IMEI, advertising ID)
IP address and network information
App version and crash reports

Usage & Activity Data

Order acceptance and completion rates
Delivery times and routes taken
App interaction patterns
Online/offline status and duration

⚖️

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

📜 Contractual Necessity

Processing necessary to perform our contract with you: account creation, order processing, payment calculation, and service communication.

🏢 Legitimate Interests

Processing for legitimate business purposes: fraud prevention, service improvement, analytics, and dispute resolution.

📋 Legal Compliance

Processing to comply with legal obligations: tax reporting, regulatory compliance, law enforcement requests.

✅ Consent

Where required by law, we obtain explicit consent for: marketing communications, background location tracking, and sharing with specific third parties.

⚙️

4. How We Use Your Information

4.1 Core Service Operations

Order Management: Match you with delivery requests, provide navigation, track progress, verify completion
Payment Processing: Calculate earnings, process withdrawals, generate statements
Communication: Send order notifications, proximity alerts, account updates

4.2 Safety & Security

Verify your identity and prevent impersonation
Detect and prevent fraudulent activities
Monitor for suspicious account behavior
Investigate security incidents

4.3 Service Enhancement

Analyze usage patterns to improve features
Optimize delivery algorithms and routing
Develop new products and services
Personalize your app experience

🔗

5. Information Sharing & Disclosure

5.1 Sharing with Customers

During active deliveries, we share:

Your first name and last initial
Your phone number (may be masked)
Real-time location while en route
Profile photograph and driver rating

5.2 Service Providers

Provider Type	Purpose	Data Shared
Cloud Infrastructure	Data storage, computing	All data categories
Payment Processors	Financial transactions	Financial data, identity
Map Services	Navigation, geocoding	Location data
Analytics Providers	Performance monitoring	Usage data (anonymized)

5.3 Legal Disclosures

⚠️ Legal Requirements

We may disclose your information when required by law: response to subpoenas, court orders, government investigations, protection of legal rights, prevention of illegal activities.

🗄️

6. Data Retention

Data Category	Retention Period	Basis
Account Information	Active account + 30 days	Operational necessity
Location Data	1 days	Service delivery, disputes
Financial Records	7 years	Tax & regulatory compliance
Order History	3 years	Service records, disputes
Communication Records	2 years	Support, legal compliance
Camera Data	Not stored	Processed in real-time only

🗑️ Account Deletion

Upon account deletion: active personal data is deleted within 30 days, anonymized data may be retained for analytics, legally required records are retained per applicable laws, backup copies are purged within 90 days.

🔒

7. Data Security

7.1 Technical Safeguards

Encryption: All data in transit protected by TLS 1.3, sensitive data at rest encrypted using AES-256
Access Controls: Role-based access control (RBAC), multi-factor authentication for admin access
Infrastructure: Secure cloud infrastructure, network segmentation, intrusion detection systems

7.2 Organizational Safeguards

Employee security training and awareness programs
Background checks for personnel with data access
Confidentiality agreements and security policies
Incident response procedures and disaster recovery plans

🚨 Incident Response

In the event of a data breach: we will investigate and contain the incident promptly, affected individuals will be notified within 72 hours (where required), regulatory authorities will be notified as required by law.

7.3 Your Responsibilities

You are responsible for:

Keeping your login credentials confidential
Using strong, unique passwords
Logging out from shared devices
Reporting suspicious account activity immediately

✊

8. Your Rights & Choices

👁️

Access & Portability

Access your personal data, receive a copy in portable format, request information about processing

✏️

Correction & Update

Update your profile information, request correction of inaccurate data, complete incomplete records

🗑️

Deletion & Restriction

Request deletion of your data, restrict processing in certain circumstances, object to processing

🚫

Opt-Out Rights

Opt out of marketing communications, promotional notifications, non-essential data collection

Exercising Your Rights

To exercise your rights:

In-App: Navigate to Profile → Privacy Settings
Email: bahiran@gebetatech.com
Response Time: We respond to verified requests within 30 days

📍

9. Location Services

ℹ️ Why We Need Location

Location data is central to our delivery service. It enables real-time navigation, customer tracking, order matching based on proximity, distance-based fare calculation, and delivery time analytics.

9.1 How We Use Location

Real-Time Navigation: Turn-by-turn directions to pickup and delivery points
Customer Transparency: Live tracking shared with customers awaiting delivery
Platform Operations: Order matching, fare calculation, demand prediction

9.2 Background Location

When you are "online" in the App:

Background location tracking is active
Updates occur even when the App is minimized
This enables order matching and proximity alerts

⚠️ Stopping Background Tracking

You can stop background tracking by: going "offline" in the App, logging out of your account, or revoking location permission (will disable core functionality).

📱

10. Device Permissions

10.1 Android Permissions

📍

Fine Location

Precise navigation and tracking for deliveries

ACCESS_FINE_LOCATION

🌐

Background Location

Tracking while online with App minimized

ACCESS_BACKGROUND_LOCATION

📷

Camera

QR code scanning for order verification

CAMERA

🔔

Notifications

Order alerts and delivery updates

POST_NOTIFICATIONS

⚡

Foreground Service

Continuous location service when online

FOREGROUND_SERVICE

📳

Vibration

Alert notifications for new orders

VIBRATE

10.2 iOS Permissions

Permission	Purpose
Location Always	Background location tracking when online
Location When In Use	Navigation during active use
Camera	QR code scanning
Notifications	Order and delivery alerts

⚠️ Impact of Denying Permissions

Location: Cannot accept or complete deliveries
Camera: Cannot scan QR codes (manual verification required)
Notifications: Will miss order alerts and updates

🔌

11. Third-Party Services

11.1 Integrated Services

Mapping & Navigation: Google Maps Platform
Payment Processing: CBEBirr, Telebirr, bank transfer networks
App Infrastructure: Expo, Firebase, AWS/Google Cloud

11.2 Third-Party Links

Our App may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

ℹ️

12. Additional Information

12.1 International Data Transfers

Your personal data is primarily stored in Ethiopia. When data is transferred internationally, we ensure appropriate safeguards including standard contractual clauses and data processing agreements.

12.2 Children's Privacy

Our Service is strictly intended for adults aged 18 years and older. We do not knowingly collect personal information from anyone under 18.

12.3 Updates to This Policy

We may modify this Privacy Policy at any time. We will notify you of material changes through in-app notifications, email, and banner notices.

12.4 Regulatory Compliance

We comply with applicable Ethiopian laws and regulations, including Ethiopian Communications Authority regulations. For EU users, we provide GDPR rights including access, rectification, erasure, restriction, and portability.

📞 Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

📧

bahiran@gebetatech.com Privacy Questions

💬

bahiran@gebetatech.com General Support

🛡️

bahiran@gebetatech.com Data Protection Officer

📱

+251 (0) 919 444 499 Phone Support