Privacy Policy

Last updated: May 27, 2026

Matka is built by a single independent developer for gig drivers (DoorDash, Uber, Lyft, Instacart, Spark, and similar). This policy explains what data the app collects, what we do with it, and what we don't do. It's written in plain English. If anything is unclear, email [email protected].

1. The short version

2. Data we collect

3. How we use your data

4. Third parties that touch your data

5. Where your data is stored

6. How long we keep it

7. Your rights

8. Children

9. Security

10. Changes to this policy

11. Contact

The short version

We collect the data you enter to make Matka work: account info, sessions, trips, expenses, vehicle settings.
We do not track you across other apps or websites.
We do not sell your data to anyone.
We do not use advertising SDKs or analytics SDKs.
Crash reports go to Sentry, tagged only by an opaque user ID (no email, name, or IP).
Everything is stored on US-based servers under your account, and you can delete it at any time by emailing [email protected].

Data we collect

Account information

Email address — for sign-in and password recovery.
Display name — shown in the app's greeting.
Password — stored as a one-way salted hash. We can never read your password.
A unique account ID (UUID) — generated automatically. This is the "Matka ID" you can find in Settings.

Driving and earnings data

Everything you log in the app:

Sessions (when you started/ended driving for a given platform, plus odometer readings)
Trips and offers (earnings, miles, time, merchant, address, accept/decline decision)
Expenses (amount, category, business-use percentage, attached receipt photos)
Vehicle settings (year, make, model, MPG, fuel cost, type)
Profitability thresholds ($/hr and $/mi GO/MAYBE targets)
Tax settings (federal marginal rate, home state, deduction method)
Enabled platforms list and primary driving mode

Device telemetry

When you log in, we record minimal device information so we can support you across iOS versions: device model, iOS version, app version. Sent on login + once-per-launch defensive check + every 24h.

Coarse location (in-memory only)

If you grant the location permission, the app uses city-level location to show local weather and weather alerts on the Dashboard. This is held in memory while the app is running and is never sent to our servers and never stored on your device beyond the current session.

Diagnostic data

Crash reports go to Sentry. Each crash report is tagged with your Matka ID (UUID) so we can correlate fixes, but no email, name, or IP address is sent to Sentry. Authorization headers are scrubbed before any report leaves your device.
In-app feedback (the speech-bubble icon on the Dashboard) sends your message + automatic context (app version, build, iOS version, device model, last sync time) to our backend, which forwards it to the developer via ZeptoMail.

What we do NOT collect

Precise location / GPS tracking — Matka is not a mileage auto-tracker. You enter odometer readings manually.
Health or fitness data
Browsing or search history outside the app
Contacts
Photos other than what you explicitly attach as a receipt
Audio or microphone data
Advertising identifiers (IDFA)
Cross-app or cross-website tracking signals

How we use your data

To run the app: sync your sessions, trips, and expenses across signed-in devices.
To compute decisions and tax estimates: the GO/MAYBE/SKIP verdict, quarterly tax math, and tax-report PDFs all run from data you entered.
To support you: crash reports help us fix bugs. Your in-app feedback gets routed to the developer's inbox.
To prevent abuse: we may use account information to investigate fraud, abuse, or violations of our terms.

We don't use your data for advertising, profiling, or selling to third parties.

Third parties that touch your data

Third party	What they see	Why
Sentry (Functional Software Inc.)	Crash reports tagged by Matka ID UUID, scrubbed of auth headers	Diagnose crashes
GoMatka backend (api.gomatka.us)	Everything you sync from the app	Cross-device sync, account recovery
ZeptoMail (Zoho Corp.)	Transactional email content for in-app feedback	Email delivery
EIA (eia.gov) + fueleconomy.gov	Your home state code (USPS) and your selected vehicle year/make/model	Look up live gas prices and EPA MPG. No personally identifying data sent.

Sentry, GoMatka backend, and ZeptoMail are all US-based. EIA and fueleconomy.gov are public US government APIs.

We don't share your data with anyone else. We don't sell it. There are no advertising partners.

Where your data is stored

On your device: SwiftData (iOS) keeps a local copy so the app works offline. Receipts you attach are saved under the app's Documents folder.
On our servers: GoMatka backend stores your account and synced data in US-based infrastructure. Connections are encrypted with HTTPS.
Passwords: stored only as a one-way salted hash on the server. We can never see your password.
Authentication tokens: stored in your device's secure storage (Keychain on iOS). Never sent to third parties.

How long we keep it

While your account is active: indefinitely, so your tax records stay intact across years (the IRS recommends 3+ years of records).
After you delete your account: removed from the active database within 7 days. Backups may retain it for up to 30 days before being cycled out.
Crash reports: Sentry retains by their default schedule (90 days for raw events).

Your rights

You can, at any time:

See your data — every sync, trip, and expense is visible in the app.
Export your data — PDF tax reports and CSV exports are built in (Settings → Export).
Delete your account — email [email protected] with the email address on your account and we'll remove your data from our servers (subject to the retention window above).
Correct your data — edit any entry directly in the app.
Reach a human — email [email protected].

If you're a California resident, you have additional rights under the CCPA, including the right to know what we have, the right to request deletion, and the right not to be discriminated against for exercising those rights. Email us to make a request.

We do not sell personal information.

Children

Matka is built for self-employed gig drivers. It is not intended for anyone under 18. We do not knowingly collect data from anyone under 18. If you believe someone under 18 has signed up, email [email protected] and we will delete the account.

Security

We take reasonable precautions to protect your data:

HTTPS on every network call
Salted password hashing
Authentication tokens in device secure storage (Keychain)
Authorization headers stripped from crash reports
No advertising or analytics SDKs that could leak data
Backend access limited to the developer

No system is perfectly secure, but we try not to do anything stupid. If you spot a vulnerability, email [email protected] before disclosing publicly and we'll fix it as fast as we can.

Changes to this policy

If we change anything materially (new third party, new data type, new use), we'll update this page and the "Last updated" date at the top. For significant changes we'll notify active accounts in-app or via email. Continued use after a policy update means you accept the updated policy.

Contact

Email: [email protected]
App: gomatka.us