MileLog

Privacy Policy

Last updated: April 15, 2026

MileLog ("we", "our", "the app") is a mileage tracking application designed to help drivers log trips for IRS tax deduction purposes. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

1. What Data We Collect

Location data — GPS coordinates collected during trip tracking to calculate mileage and record routes.
Account information — Email address, provided when you create an account. Guest users do not provide an email.
Trip data — Start and end times, distances, trip classifications (business, personal, medical, charity), platform tags, and notes.
Vehicle information — Year, make, model, and nickname for vehicles you add to the app.
Device identifiers — A randomly generated anonymous identifier used for guest accounts only. This is not your device's hardware ID.

2. How We Use Your Data

To track and record mileage for IRS deduction purposes.
To sync trip data across your devices (Pro subscribers with cloud sync enabled only).
To calculate tax deduction estimates using current IRS standard mileage rates.
To remember your frequent routes and automatically suggest trip classifications.

We do not use your data for advertising, profiling, or any purpose unrelated to the core functionality of the app.

3. Location Data

Location tracking is central to how MileLog works. Here is how we handle it:

Location is collected in the background only when the auto-detect trips feature is enabled in Settings. You can disable this at any time.
Location data is stored locally on your device.
Location data is uploaded to our servers only for Pro subscribers who have cloud sync enabled.
We never sell, rent, or share your location data with third parties.
You can revoke location permission at any time through your device's Settings. The app will continue to work for manual trip entry.

4. Data Storage & Security

Trip data is stored locally on your device using a SQLite database.
Cloud-synced data is transmitted over HTTPS (TLS encryption in transit).
Passwords are hashed using SHA-256 on the device before transmission, then hashed again with bcrypt on the server. We never store or transmit raw passwords.
Server infrastructure uses industry-standard security practices.

5. Third-Party Services

MileLog uses the following third-party services:

RevenueCat — Manages subscriptions and in-app purchases. RevenueCat Privacy Policy
Google Maps — Displays maps on the trip detail screen. Google Privacy Policy
Expo — Build and update infrastructure for the app. Expo Privacy Policy
Apple / Google — App distribution and in-app purchase processing through the App Store and Google Play.

These services may collect limited technical data (such as device type and OS version) as described in their respective privacy policies.

6. Your Rights

Export your data — You can export all your trip data at any time using the PDF or CSV export feature within the app.
Delete your data — You can delete individual trips, or delete your account and all associated data by contacting us.
Use without an account — You can use MileLog in guest mode without providing any personal information.
Disable location tracking — You can turn off auto-detect in the app's Settings or revoke location permission in your device's system settings at any time.

7. Children's Privacy

MileLog is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

8. Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you through the app or by other appropriate means. The "Last updated" date at the top of this page reflects the most recent revision.

9. Contact

If you have questions or concerns about this Privacy Policy or your data, contact us at:

support@mile-log.app