Privacy Policy

Last updated: May 21, 2026

MilePost ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application and website (collectively, the "Service").

Information We Collect

We collect the following information when you use MilePost:

• Account Information: Email address and username when you create an account.
• Profile Information: Optional display name, height, and weight that you choose to provide.
• Activity Data: Walking and running distances, durations, routes (GPS coordinates), and dates of activities you track.
• Location Data: GPS coordinates collected only while you are actively tracking a walk or run. We do not track your location in the background or when the app is not in use.

How We Use Your Information

• To provide and maintain the Service, including tracking your walks and runs.
• To display your activity statistics, achievements, and progress.
• To enable community features such as friends, groups, challenges, and leaderboards.
• To display your public profile if you choose to share it.
• To authenticate your account and ensure security.

Data Storage and Security

Your data is stored securely using Supabase, which provides encrypted database storage and secure authentication. All data is transmitted over HTTPS. We implement row-level security policies to ensure users can only access their own data unless explicitly shared through community features.

Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. Your data may be visible to other users only in the following cases:

• Public Profile: If you share your profile link, your username, display name, total miles, active days, and achievements are publicly visible.
• Community Features: Friends and group members can see your username, display name, and activity totals on leaderboards and challenges.

Third-Party Services

We use the following third-party services:

• Supabase: For authentication and data storage.
• OSRM (Open Source Routing Machine): For GPS route correction. Only anonymous GPS coordinates are sent; no personal information is included.

Your Rights

You have the right to:

• Access and view all data we have collected about you.
• Update or correct your profile information at any time.
• Delete your account and all associated data by contacting us.

Location Data

MilePost collects GPS location data only when you actively start a tracking session by pressing "Start Walk" or "Start Run." Location tracking stops immediately when you end or pause the session. We do not collect location data in the background. You can revoke location permissions at any time through your device settings.

Children's Privacy

MilePost is not intended for children under 13. We do not knowingly collect personal information from children under 13.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy or wish to delete your data, please contact us at privacy@milepostapp.com.