Privacy Policy

Last updated: March 1, 2026

This Privacy Policy describes how Byouma ("we", "us", or "our") collects, uses, and protects your information when you use the Byouma mobile application (the "App").

By using the App, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Information You Provide Directly

When you create an account and use the App, we may collect:

Email address — used to identify your account and for authentication
Name — your first and last name, obtained from your Google or Apple sign-in
Profile photo — your avatar, if provided via your linked sign-in account
Location — your city or region, to provide localised repair pricing and nearby deals
Vehicle information — make, model, year, mileage, trim, engine, drivetrain, colour and photos of your vehicle(s). Photos you upload may be processed using AI to remove backgrounds and enhance appearance. Processed images are stored in our Supabase storage bucket and linked to your vehicle record.
Mileage history — recorded mileage entries over time to track vehicle usage
Repair logs — repair type, cost, shop name, mileage at repair, date, and notes you choose to enter
Vehicle modifications — category, name, brand, cost, install date, and photos of modifications you add
Community posts — public posts, comments, and likes you create (visible to other users)
Vehicle reputation — computed score based on maintenance consistency, health score, mod quality, and community activity
Achievements — unlocked badges based on ownership milestones and vehicle care
Public profile settings — visibility preferences for your vehicle profile, mods, repairs, and leaderboard participation

1.2 Information Collected Automatically

Device information — device type, operating system version
Usage data — features used, screens visited, and interactions within the App
Device identifier — anonymous identifier used for AI request rate limiting (10 free requests per device)
Cache data — vehicle intelligence and product listings cached locally on your device (AsyncStorage) to improve performance

1.3 Information from Third Parties

Google Sign-In — if you sign in with Google, we receive your name, email address, and profile photo from Google
Apple Sign-In — if you sign in with Apple, we receive your name and email address from Apple

2. How We Use Your Information

Create and manage your account
Power the AI vehicle insights and repair cost estimates via Grok AI
Generate vehicle-specific repair cost estimates using real-time market data
Provide mod recommendations tailored to your specific vehicle configuration
Estimate current market value using real-time resale data from automotive marketplaces
Answer vehicle diagnostic questions via our AI chat assistant
Search eBay for compatible parts and deals based on your vehicle specifications
Find YouTube tutorial videos for mod installations and repairs
Display your vehicle garage and repair history
Personalise repair pricing and deals based on your location
Enable community features, leaderboards, and shared repair insights
Enforce fair usage limits — free tier accounts are limited to 10 AI-powered vehicle intelligence requests per device. This limit is tracked using a device identifier stored locally on your device.
Process in-app purchases (via Apple In-App Payments)
Improve the accuracy and relevance of the App's features
Respond to your support requests
Comply with legal obligations

3. In-App Purchases

The App offers paid features and subscriptions via Apple App Store In-App Payments.

We do not directly collect or store your payment information. All payment transactions are processed by Apple and are subject to Apple's Privacy Policy.

4. Data Sharing and Disclosure

We do not sell your personal data to third parties. We may share your information in the following limited circumstances:

Service providers — we use Supabase to store and manage your data securely. Supabase processes data on our behalf and is bound by confidentiality obligations.
AI processing — vehicle intelligence queries (specs, repair estimates, mod suggestions, market value estimates, diagnostics) are processed by Grok (xAI) via Supabase Edge Functions. Vehicle data sent to xAI includes only make, model, year, and mileage—it is not linked to your personal identity or account information.
Parts marketplace data — when searching for parts deals, we query eBay's API on your behalf. Search queries include vehicle specifications (make, model, year) but not your personal information.
Video tutorials — we query YouTube's API to find mod installation tutorials relevant to your vehicle. Queries include vehicle make/model and modification type but not your personal information.
Legal requirements — we may disclose your information if required by law, court order, or government authority.
Business transfers — in the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction.

4.5 Community & Public Features

Certain features make some of your data publicly visible to enhance community engagement:

Public Vehicle Profiles — if you enable public profile visibility, your vehicle make/model/year, nickname, health score, reputation score, installed mods (if shared), and repair history (if shared) may be visible to other users via shareable links
Community Posts — when you post to the community, your post content, vehicle make/model/year, and profile name/avatar are visible to other app users within the same vehicle community (filtered by make/model)
Leaderboards — if you opt in to leaderboard visibility, your vehicle's rank, nickname, scores, and owner initial appear on model-specific leaderboards (e.g., "Top BMW M4 Owners")
Shareable Cards — when you share achievement unlocks, resale value estimates, or milestones via the share feature, the generated image includes your vehicle details and is shared outside the app via your device's share sheet

You can control these settings at any time in Profile → Public Profile → Visibility Settings.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the App's services.

You may delete your account at any time by contacting us at dzbyouma@gmail.com. Upon deletion, your personal data will be removed from our systems within 30 days, except where we are required to retain it by law.

6. Data Security

Encrypted storage — authentication tokens are stored using iOS Keychain (SecureStore)
SSL/TLS encryption — all data transmitted between the App and our servers is encrypted
Certificate pinning — the App uses public key pinning to prevent man-in-the-middle attacks
AI query anonymization — vehicle intelligence requests to Grok AI include only vehicle specifications (make, model, year, mileage), not your personal identity or email address
eBay API integration — parts search queries are proxied through our backend server; your device does not communicate directly with eBay
Local caching — vehicle intelligence results are cached on your device for 24 hours to reduce AI API calls, improve performance, and enable offline viewing. Cached data is stored in AsyncStorage and is not transmitted elsewhere.
Row-level security — your data in our database is isolated and accessible only by your account

Despite these measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

7. Children's Privacy

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at dzbyouma@gmail.com and we will delete it promptly.

8. Your Rights

8.1 General Rights

Access the personal data we hold about you
Correct inaccurate or incomplete data
Delete your account and associated data
Withdraw consent at any time, where processing is based on consent

To exercise any of these rights, please contact us at dzbyouma@gmail.com.

8.2 GDPR Rights (European Union Users)

If you are located in the European Union, you have additional rights under the GDPR:

Right to data portability — receive your data in a structured, machine-readable format
Right to restriction — restrict the processing of your data in certain circumstances
Right to object — object to processing based on legitimate interests
Right to lodge a complaint — with your local supervisory authority

Our legal basis for processing your personal data includes:

Contractual necessity — to provide the App's features and services
Legitimate interests — to improve our services and ensure security
Consent — for location access and optional notifications

8.3 CCPA / CPRA Rights (California Residents)

Right to Know — request disclosure of the categories of personal information we collect
Right to Delete — request that we delete your personal information
Right to Correct — request correction of inaccurate personal information
Right to Opt-Out — we do not sell your data
Right to Non-Discrimination — we will not discriminate against you for exercising your privacy rights

Category	Examples	Collected
Identifiers	Email, name, device identifier	Yes
Personal information	Account profile, vehicle data, repairs, mods	Yes
Geolocation data	City/region	Yes
Usage data	App interactions, features used	Yes
User-generated content	Community posts, public profiles	Yes
Payment data	In-app purchases (via Apple)	No (handled by Apple)

To exercise your CCPA/CPRA rights, contact us at dzbyouma@gmail.com.

8.4 CalOPPA

Users can visit our App anonymously until they create an account
This Privacy Policy is accessible from our website at byouma.store/privacy-policy.html
We will notify users of any material changes to this Privacy Policy
Users can update their personal information by accessing their profile settings in the App

9. Location Data

The App requests access to your device's location for the following purposes:

Find nearby car events and meets in your area
Locate trusted mechanics and repair shops near you
Provide localized repair cost estimates based on regional pricing
Surface region-specific parts deals and shipping options

Location is collected only when you use the Discover feature and you have granted permission through your device's settings. We do not track your location in the background or store location history.

10. Notifications

The App may send push notifications for vehicle maintenance reminders, price alerts on parts deals, community updates, achievement unlocks, and reputation milestones. You can opt out at any time through your device's notification settings or within the App's notification preferences.

11. Third-Party Services

Service	Purpose	Privacy Policy
Google Sign-In	Authentication	google.com/privacy
Apple Sign-In	Authentication	apple.com/privacy
Supabase	Data storage & backend	supabase.com/privacy
eBay Browse API	Parts marketplace search	ebay.com/privacy
YouTube Data API	Mod tutorial videos	google.com/youtube/privacy
Apple App Store	In-app payments	apple.com/privacy

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you by updating the "Last updated" date at the top of this page and displaying a notice within the App. Your continued use of the App after changes are posted constitutes your acceptance of the updated policy.

13. Contact Us

Byouma
Email: dzbyouma@gmail.com
Website: byouma.store

We will respond to your inquiry within 30 days.

This Privacy Policy was last updated on March 1, 2026.