Privacy Policy

Last updated: May 31, 2026

At iku·yo, we believe in complete privacy. Since our application does not maintain centralized servers or a back-end database, we do not collect, monitor, store, or monetize your location histories, routes, email addresses, or credentials.

1. Information We Access & Store

All information accessed by iku·yo is stored directly on your physical device or inside your private Google Drive account:

• Local Storage: Active session tokens (Google OAuth, Strava OAuth) and application configuration preferences are stored encrypted on your device using SecureStore (on mobile devices) or localStorage (on browsers).
• Google Drive: Your activity lists, GPX tracks, and Markdown event data are stored in a dedicated folder on your own Google Drive storage. No third party (including the developers of iku·yo) has access to this folder.

2. Location & GPS Data

To render interactive maps and help you explore or record routes, the app requests standard foreground location access. This coordinate data remains entirely on your device and is only written to a GPX file under your direct command when exporting or importing an activity.

3. Third-Party Integrations

When you connect integrations like Strava, the application performs authentication token exchange and refreshes using a proxy Cloudflare Worker (hosted under iku.yo.mesias.uk). This worker acts as a secure pass-through to shield API client secrets; it does not store, log, or cache your tokens or route details.

4. Changes to This Policy

Because we do not gather user identifiers, we will not notify you individually of modifications. However, our values are absolute: we will never introduce tracking or advertising profiles. Check this static page periodically for any clarifications.

5. Contact Us

For inquiries regarding our code or privacy values, reach out to us via our Support page.