Privacy Policy

Effective Date: May 20, 2025

At Gryfl, your privacy is our priority. As a B2B SaaS platform providing ecosystem solutions for travel agencies, corporate transportation, fleet drivers, and end users, we are committed to safeguarding the data that traverses our platforms. This Privacy Policy outlines how we collect, use, and protect information across our four primary audiences.

1. Information We Collect

For Travel Agencies / Partners

When you subscribe to Gryfl to manage your operations, we collect:

  • Account & Billing Info: Agency name, contact details, payment info, and tax identification.
  • Operational Data: Fleet size, custom pricing rules, dispatch logic, and driver rosters.
  • Platform Usage Data: Dashboard login times, feature utilization, and aggregate analytics to help improve your experience.

For Corporate Clients

When your company uses Gryfl's Corporate Portal to manage employee travel:

  • Company Details: Business name, billing contacts, and department budget allocations.
  • Employee Manifests: Names, email addresses, and phone numbers of authorized employees.
  • Usage Data: Aggregated ride history, billing invoices, and portal access logs.

For End Users (Riders)

When you book a ride via a Travel Agency's Whitelabeled App powered by Gryfl:

  • Personal Details: Name, phone number, and email.
  • Booking & Location: Pickup/drop-off GPS coordinates, travel dates, and times.
  • Payment Data: Securely processed via third-party providers; Gryfl only retains transaction tokens.
  • Device Info: Operating system, IP addresses, and app crash logs for debugging.

For Drivers

When you use the Gryfl Driver App to manage assignments:

  • Profile Data: Name, photo, driving license, and vehicle registration details.
  • Location Data: Real-time GPS tracking (when "on duty" or assigned a ride) to enable accurate dispatching and ETA calculations.
  • Earnings Data: Bank account details (processed securely) for payouts and trip histories.

2. How We Use and Share Information

We do not sell or rent data to third parties. Data is used strictly to provide and improve the Gryfl ecosystem. Note how data is shared strictly within the scope of providing the service:

  • Between Rider and Driver: To facilitate a pickup, the Driver receives the Rider's first name, pickup location, and destination. The Rider receives the Driver's name, photo, and vehicle details.
  • Between Agency and Corporate Client: The Travel Agency (Partner) can view aggregate billing data and completed trips for the Corporate Client to generate invoices.
  • Service Providers: We use authorized third-party vendors for cloud hosting (e.g., AWS), SMS/WhatsApp notifications (e.g., Twilio/Meta), and secure payments (e.g., Stripe/Razorpay).

3. WhatsApp & SMS Communications

We utilize WhatsApp and standard SMS to deliver critical operational updates (e.g., OTP verifications, Driver ETAs, and Booking Confirmations). By using the Gryfl platform, partners and their users consent to receiving these notifications based on contractual necessity and legitimate business interest. You may opt out, though this may impact core service functionality.

4. Data Retention and Security

We deploy industry-standard encryption (in transit and at rest) to secure all data. We retain personal and operational information only as long as an Agency remains a customer of Gryfl, or as required to fulfill legal, tax, and accounting obligations. Upon contract termination, data is securely purged according to our data lifecycle protocols.

5. Contact & Data Rights

Depending on your jurisdiction, you or your end-users may have the right to access, correct, or delete personal data.

To exercise these rights, or for any privacy-specific inquiries, please contact our Data Protection Office at:
Email: privacy@gryfl.com
Phone: +91 775 898 9612

© Frogleap Technologies Private Limited. All rights reserved.