Bigoora

Privacy Policy

Last updated: May 4, 2026

1) Who we are (data controller)

This privacy policy explains how the Platform (Passenger and Driver mobile apps, and the Telegram Mini App) collects and processes personal data.

Publisher / data controller: Bigoora, Uzbekistan

Privacy contact: [email protected]

2) Scope

This policy applies when you use:

  • The Passenger mobile app
  • The Driver mobile app
  • The Telegram Mini App
  • Features such as chat/support, notifications, place search, bookings, and wallet.

3) Summary (plain language)

  • We use your phone number to create and secure your account, including via temporary verification codes.
  • The Platform processes data needed for bookings (trips, dates, seats, and, if you provide them, pick-up/drop-off details).
  • We process messages (chat/support) and, if you send attachments, the related files.
  • We use notifications to inform you (e.g., messages, booking events), if you allow them.
  • For drivers, we process profile data and verification documents, with limited access.
  • Data may be hosted or processed in multiple countries, including Uzbekistan, depending on operational and technical needs.

4) Data we collect and process

4.1 Identification and account data (Passenger)

Passenger profile data may include:

  • Phone number (used for sign-in and account security)
  • Full name, first name, last name (if provided)
  • Profile picture (if provided)
  • Bio (optional)
  • Email (optional)
  • Date of birth (optional)
  • Gender (optional)
  • Telegram identifier (if you use the Telegram Mini App)

4.2 Authentication and security data (Passenger)

To secure account access and prevent abuse, we may process:

  • Temporary verification codes (for example sent by SMS) and information needed to validate them.
  • Information related to your session and connection security (for example session technical identifiers, login time, security events).
  • Technical and security logs (for example to detect fraudulent attempts or unauthorized use).

4.3 Identification and account data (Driver)

For drivers, the Platform may process:

  • Phone number
  • Name (depending on the profile)
  • Profile picture (if provided)
  • Statuses related to driver account verification/validation

4.4 Driver documents (verification)

As part of registration and checks, the Platform processes documents (e.g., identity document, driving license, vehicle registration) and information needed to manage them:

  • Document type and side (front/back as applicable)
  • Verification status (e.g., pending, approved, rejected)

These documents are used for verification and are stored with access controls.

4.5 Booking and trip data

When you create a booking, the Platform may process:

  • Departure city and destination city
  • Departure date/time (depending on trips)
  • Number of seats requested and any preferences
  • Optional message to the driver
  • Pick-up/drop-off addresses (text) and associated coordinates (latitude/longitude), if you provide them

4.6 Location and maps

Apps may use device location to improve the experience (e.g., place selection, estimates, search). The Platform provides:

  • Place search and suggestion services.

Precise location is managed through operating system permissions. The Platform does not promise continuous tracking: it processes location based on the features you use (e.g., booking, pick-up/drop-off selection).

4.7 Chat, support, and communications

The Platform processes:

  • The content of exchanged messages
  • Information needed for chat/support to work properly (e.g., timestamps, read status)
  • Information related to preventing abuse, fraud, or unauthorized use

Attachments:

  • If you send attachments (e.g., images, documents), we process these files to provide the feature.

4.8 Notifications (push)

To send notifications, the Platform may process technical information needed to deliver notifications to your device.

4.9 Technical data and logs

We process technical data required for operations and security:

  • IP address
  • Device and application technical information
  • Technical and security logs (diagnostics, errors, abuse prevention)

4.10 Data related to bonuses and promotional benefits

The Platform may process data related to users' virtual promotional balances (bonuses, promotional credits, referral rewards). Such data is used exclusively for managing promotional benefits within the Platform and does not constitute financial or banking data.

5) Purposes (why we use your data)

We use your data to:

  • Provide the service (account creation, authentication, bookings, chat)
  • Secure the Platform (prevent abuse, fraud, or unauthorized use)
  • Communicate with you (support, notifications)
  • Improve reliability (diagnostics, crash reporting in the app if enabled)

6) Legal bases (depending on context)

Depending on the data and its use:

  • Contract performance: provide the requested service (account, booking, chat)
  • Legitimate interest: security, abuse prevention, stability, performance measurement
  • Legal obligation: retention of certain records (e.g., financial data) where applicable
  • Consent: system permissions (e.g., location, notifications) and in-app options

7) With whom we share your data

We may share some data:

  • Between users: data needed to execute a booking (e.g., trip information, chat messages) between the relevant passengers and drivers. In this context, phone numbers of drivers and passengers may be shared to facilitate communication (e.g., coordinating pick-up).
  • Support / operations: limited access to handle requests and review certain documents
  • Technical service providers (without naming them):
    • messaging (e.g., SMS) and notifications
    • maps / place search
    • hosting, storage, monitoring, and diagnostics

We do not sell your data.

8) Hosting and transfers

Our systems may be hosted in multiple regions, including Uzbekistan, depending on operational and technical needs.

9) Security

We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction, including:

  • Access controls and least-privilege access
  • Measures protecting sessions and authentication
  • Monitoring and detection of suspicious activity
  • Technical and security logging, when necessary

No system is perfectly secure; we cannot guarantee absolute security.

10) Data retention (principles)

We keep your data only for as long as necessary for the purposes described in this policy, then delete or anonymize it where possible.

Retention may depend on:

  • operational needs (service, support)
  • security (auditing)
  • and/or legal obligations (e.g., transactions)

Security data (such as verification codes and session information) is generally kept for a limited period.

11) Your rights and choices

Depending on your jurisdiction, you may have rights (access, rectification, deletion, objection, portability).

Profile: you can edit certain fields (name, bio, email, gender, date of birth, photo) in profile screens.

Notifications & location: you can manage these permissions in your system settings.

Account deletion:

  • When you request account deletion, access to the service is disabled.
  • Some data may be kept temporarily or archived where necessary to comply with the law, ensure security, prevent fraud, or manage disputes.
  • An in-app deletion button may be available depending on versions. Otherwise, you can contact support (see Contact section).

12) Telegram Mini App

If you use the Telegram Mini App:

  • We apply security checks intended to verify the authenticity of received data.
  • We may create/update a passenger account linked to your Telegram identifier.
  • If your account is deleted, access to the Telegram Mini App may be disabled.

13) Changes

We may update this policy. The “Last updated” date will be changed.

14) Contact

For any question or request: [email protected].