Privacy Policy | GeoSpur

GeoSpur is owned and operated by Nwudu, Inc, 1653 Evergreen Way, Essex, 21221, Maryland, USA.

This Privacy Policy applies to all users, including customers, businesses, and any other parties accessing or using GeoSpur (the “Platform”).

By using GeoSpur, you acknowledge, understand, and agree to this Privacy Policy and the Data Processing Addendum below. If you do not agree, do not use the Platform.

1. Platform Role & Data Protection Position

GeoSpur operates as both a Services Marketplace and a Data Infrastructure Provider for the autonomous economy.

GeoSpur acts as a Data Controller for platform-level data (accounts, security, matching, analytics, reputation scoring) and for the compilation of Robotics Training Data.
GeoSpur acts as a Data Processor where required for message routing or request delivery.
Businesses and Customers act as independent Data Controllers for any data they exchange or process outside GeoSpur.
GeoSpur does not control how users or businesses process personal data outside the Platform.

2. Who This Policy Applies To

This Policy applies equally and without exception to:

Customers: Individuals requesting services.
Responders: Businesses or freelancers responding to requests.
Integrators: Robotics fleet operators or third-party developers utilizing the GeoSpur API.

Use of the Platform constitutes binding acceptance of this Policy.

3. Categories of Personal Data Collected

We collect data to facilitate service resolution and to train our proprietary “Intent Engine.”

A. Account & Identity Data

Name, email address, phone number.
Business name, category, description.
Authentication identifiers.

B. Location & Spatial Data (H3)

Precise Location: GPS coordinates when using the app to request or fulfill a service.
H3 Spatial Indices: We convert raw GPS data into hierarchical hexagonal cells (H3) to map demand density without permanently storing raw coordinates where possible.

🚫 Note: GeoSpur does not perform continuous background tracking unless explicitly authorized for a specific Mission.

C. Intent & Execution Data (The “Spur”)

Natural Language Input: Text, voice, or images used to describe a need.
REW (Request Expiry Windows): Data derived from your urgency cues (e.g., “ASAP” vs. “Next Week”).
DEW (Deterministic Execution Waypoints): The digital “trace” of how a task was resolved (Origin → Capture → Destination).

D. Reputation & Behavioral Data

Responsiveness metrics (time to reply).
Completion rates and punctuality.
Cancellation history.

This data is used to generate your public “Trust Score.”

E. Payment Metadata

Subscription status and payment state identifiers.

💳 Note: GeoSpur does NOT store card or banking details. Payments are processed by third-party providers.

4. Special Section: Robotics Data & Mission Exports

A core function of GeoSpur is to build the “Nervous System” for autonomous systems.

A. Training Data

You acknowledge that the data generated by your use of the platform (anonymized Intent, H3 Location, and Execution Traces) may be used to train machine learning models and robotic algorithms.

B. Mission Exports

We may aggregate and anonymize your request data into “Mission Exports” for third-party robotics integrators.
Privacy Guard: Mission Exports utilize Spatial Coarsening (sharing a general H3 cell rather than a specific address) and Pseudonymous Identifiers (e.g., User-REF-1029 instead of your name).
Your Rights: You have the right to opt-out of your data being included in external Mission Exports by adjusting your settings in the “Privacy & Data” tab.

5. Lawful Basis for Processing (GDPR / UK GDPR)

Contractual Necessity: To route your request and ensure the service is delivered.
Legitimate Interests: To maintain platform security, prevent fraud, calculate Reputation Scores, and improve our AI/Robotics models.
Legal Obligations: Regulatory, tax, and law enforcement compliance.
Consent: Where explicitly required (e.g., for accessing your device’s microphone or camera).

6. Purpose Limitation

Operate and secure the Platform.
Match users with nearby businesses/responders.
Calculate and display Reputation Scores.
Train autonomous routing algorithms (H3/REW/DEW).
Comply with legal obligations.

GeoSpur does not sell raw personal data to advertisers. We monetize anonymized, aggregated intent data.

7. Explicit Prohibitions

Share government IDs, financial credentials, or sensitive personal data via chat.
Use data obtained via GeoSpur for unlawful purposes.
Scrape, harvest, or reuse personal data outside legitimate engagement.

Violations may result in immediate termination, forfeiture of Reputation Score, and legal action.

8. Data Sharing & International Transfers

Infrastructure Providers: Hosting (Google Cloud/Firebase), Analytics, and Security.
Payment Processors: Third-party billing partners.
Robotics Integrators: Strictly as anonymized Mission Exports (see Section 4).
Legal Authorities: When required by law.

International Transfers: Data may be processed outside your country of residence, including the USA, UK, UAE, and other jurisdictions. We utilize standard contractual clauses and equivalent protections to ensure data sovereignty.

9. UAE PDPL Compliance

Data is processed lawfully, transparently, and proportionately under the UAE Personal Data Protection Law.
Cross-border transfers occur only where legally permitted.
Users may request access, correction, or deletion subject to legal limits.

10. Data Retention

Fulfill platform functions.
Maintain the integrity of the Reputation Graph.
Comply with legal obligations.

Note: Even if an account is deleted, anonymized H3 and Execution traces may be retained indefinitely for algorithmic training purposes, as they no longer constitute personal data.

11. Security Measures

Industry-standard encryption in transit (TLS) and at rest.
Role-based access controls.
Abuse detection algorithms.

⚠️ Disclaimer: No system is infallible. Use of the Platform is at your own risk.

12. User Rights (EU / UK / International)

Access to their data.
Correction or deletion.
Restriction or objection to processing.
Data portability.

Requests may be refused where data is necessary for the integrity of the Reputation Graph or legal compliance.

13. No Responsibility for Off-Platform Conduct

Once data is shared between users or businesses outside GeoSpur (e.g., moving conversation to WhatsApp):

GeoSpur has no control.
GeoSpur assumes no liability.
Each party acts as an independent data controller.

14. Changes to This Policy

GeoSpur may update this Policy at any time to reflect changes in our technology (e.g., new robotics integrations). Continued use constitutes acceptance.

📄 Data Processing Addendum (DPA)

This Data Processing Addendum (“DPA”) forms part of the Terms and Privacy Policy and applies to all Businesses and Customers, and any addendums.

Roles: GeoSpur: Processor (where applicable) and Controller (platform data). Users & Businesses: Independent Controllers.

Processing Instructions: GeoSpur processes personal data solely to provide the Platform and generate Mission Exports, in accordance with documented instructions.

Confidentiality: GeoSpur ensures that personnel handling data are bound by confidentiality obligations.

Sub-Processors: GeoSpur may engage sub-processors (hosting, analytics, payments).

Security Measures: GeoSpur implements appropriate security measures in line with GDPR Article 32.

Data Subject Requests: GeoSpur may redirect requests to the relevant controller where applicable.

Data Breach Handling: GeoSpur will notify relevant parties of a confirmed data breach where legally required.

Liability Limitation: To the maximum extent permitted by law, GeoSpur’s liability under this DPA is limited. GeoSpur is not responsible for misuse of data by users or businesses.

Governing Law: This DPA is governed by the same law as the Terms of Service.

Precedence: In the event of conflict: Mandatory data protection law > This DPA > Privacy Policy > Terms of Service.

GEOSPUR PRIVACY POLICY