Maintra
Privacy Policy
Last updated: June 17, 2026
This Privacy Policy describes how Maintra ("we", "our", or "the app") collects, uses, and protects your information when you use our mobile application.
1. Who we are
Maintra is operated by Kyrylo Rozbeiko. If you have any questions about this policy, contact us at rokops13@gmail.com.
2. Information we collect
Account information
- Email address — used to create and authenticate your account.
- Display name (optional) — shown within the app.
- Authentication identifiers from Google if you sign in with your Google account (Google account email and unique ID only — we do not access contacts, calendar, files, or any other Google service).
Vehicle and service data
Data you voluntarily enter into the app about your vehicles and their maintenance:
- Vehicle details (make, model, year, VIN, license plate, mileage, fuel type, transmission, purchase date and price).
- Service records (date, mileage, category, description, parts and labor cost, service station name).
- Fuel logs (date, liters, price, station name, fuel quality rating).
- Maintenance plan items (intervals, due dates, priority, notes).
- AI chat messages you send to the in-app AI assistant about your vehicle.
- Free-text notes you provide to the AI (sounds, driving issues, outside work done).
Preferences and usage
- Language, preferred currency, country.
- Subscription tier (Free / Pro / VIP) and expiration date.
- Usage counters for AI maintenance plans, AI chat messages, and AI service entries used.
- App theme and notification preferences.
- A push-notification token (only if you enable push notifications, e.g. wishlist price-drop alerts). The token is generated by Expo and stored on our backend so we can deliver alerts to your device; it does not identify you personally.
Product analytics
- Anonymous usage events — which screens you open and which features you use (for example, adding a vehicle, generating an AI plan, or viewing the upgrade screen), together with your subscription tier, app version, device model and OS. This is collected via PostHog (see Section 5), hosted in the European Union, and is tied only to a pseudonymous identifier. It never includes your vehicle data, service records, photos, or chat content. We use it solely to understand which features are useful and to improve the app.
Data we do not collect
- We do not collect your precise location.
- We do not collect your contacts, calendar, files, or messages.
- We do not store photos from your camera or photo library on our servers, with one exception: the receipt-scan feature. When you scan a receipt, the image is sent to Anthropic (Claude AI) to read the line items. If you are on a paid plan and choose to keep that receipt, the image is then stored privately in your account so you can keep it as proof of service and include it in PDF exports; if you don't keep it, the image is discarded after parsing. Stored receipt images are private to you, are deleted when you delete the related service record or your account, and are never used for advertising or shared. The AI service-entry feature can also work from text you type alone, without any image.
- We do not use advertising identifiers and the app contains no ads.
- We do not use advertising or cross-app tracking SDKs. We do use a crash-reporting SDK (Sentry) and a privacy-friendly product-analytics SDK (PostHog, hosted in the EU) — both described in Section 5 — to fix bugs and understand which features are used. Neither ever receives your vehicle data, service records, photos, or chat content.
3. How we use your information
- To provide the core features of the app: storing and displaying your service history and maintenance plans.
- To generate personalized AI maintenance plans based on your vehicle details and service history.
- To sync your data across your devices via our backend.
- To enforce subscription limits (e.g. free tier vehicle limits, AI usage limits).
- To send you maintenance reminders and (if you enable push notifications) alerts such as wishlist price drops.
4. Where your data is stored
Your data is stored in two places:
- On your device — in a local SQLite database. This allows the app to work offline.
- On our backend — hosted by Supabase (PostgreSQL database). Supabase provides the authentication, database, and API infrastructure we use.
- Receipt images (paid feature, only if you choose to keep a scanned receipt) — stored privately in Supabase Storage with access restricted to your account.
Data is transmitted over encrypted HTTPS connections and stored with row-level security so that one user cannot read another user's data.
5. Third-party services
We share the minimum data needed with the following third parties in order to provide the app's features:
Supabase Inc.
Database hosting, authentication, and API backend.
Receives: all of your account and vehicle data. See the Supabase Privacy Policy.
Anthropic PBC (Claude AI)
AI processing for maintenance plan generation, in-app chat, AI service entry, and AI receipt scanning.
Receives: your vehicle details (make, model, year, mileage, VIN, fuel type), service history summaries, any free-text notes or chat messages you send, and — only when you use the receipt-scan feature — the receipt image you choose to scan. Anthropic processes these requests to generate responses and does not train on this data. See the Anthropic Privacy Policy.
Expo (650 Industries, Inc.)
Push-notification delivery.
Receives: a device push-notification token (only if you enable push notifications). We use Expo's push service to deliver alerts such as wishlist price drops to your device. See the Expo Privacy Policy.
Google LLC (Sign-in with Google, Google Play Billing)
Optional authentication and in-app purchases.
Receives: authentication request (only if you choose to sign in with Google) and in-app purchase transactions. See the Google Privacy Policy.
RevenueCat Inc.
Subscription management for Pro / VIP tiers.
Receives: an anonymous user identifier and your subscription transactions. See the RevenueCat Privacy Policy.
Functional Software, Inc. (Sentry)
Crash and error reporting.
Receives: stack traces, your account ID, app version, device model and OS version, and a short trail of in-app actions leading up to an error. Sentry only receives data when the app errors. We do not send Sentry your vehicle data, service records, or chat content. See the Sentry Privacy Policy.
PostHog (EU)
Privacy-friendly product analytics, hosted in the European Union.
Receives: a pseudonymous user identifier and product-usage events — which screens you open, which features you use (e.g. adding a vehicle or generating a plan), your subscription tier, app version, device model and OS. We do not send PostHog your vehicle data, service records, receipt images, or chat content. PostHog processes this data on EU servers. See the PostHog Privacy Policy.
6. Your rights
You have the right to:
- Access — view all of your data directly inside the app.
- Correct — edit or delete any record inside the app at any time.
- Delete — permanently delete your entire account and all associated data. See How to delete your account.
- Export — generate a PDF of your vehicle history from within the app.
- Object / restrict / complain — if you are in the EU/UK, you may contact your local data protection authority.
7. Data retention
We retain your data for as long as your account is active. When you delete your account, all of your data (profile, vehicles, service records, fuel logs, maintenance plans, and chat history) is deleted immediately from our database. Encrypted backups may contain residual copies for up to 30 days before they are overwritten in the normal course of operation.
8. Children
Maintra is not directed at children under 13 and we do not knowingly collect personal information from children under 13. If you believe a child has created an account, please contact us and we will delete it.
9. International transfers
Our service providers Supabase, Anthropic, Google, RevenueCat, and Sentry are based in the United States and may process your data there. By using the app you consent to this transfer. Our product-analytics provider, PostHog, processes your data within the European Union. These providers are required to protect your data in accordance with applicable data protection laws.
10. Security
We take reasonable technical and organizational measures to protect your data, including HTTPS encryption in transit, database-level encryption at rest, row-level security policies, and the principle of least privilege for service access. No system is perfect, however, and we cannot guarantee absolute security.
11. Changes to this policy
We may update this policy from time to time. Material changes will be communicated through the app or via email. The "Last updated" date at the top reflects the latest version.
12. Contact
Questions, concerns, or requests related to your data? Email rokops13@gmail.com.