Last update: 2025-06-21
First version (updates will be summarised here).
Tl;dr: Route Squiggler does not spy on users and does not sell or otherwise abuse user data.
Route Squiggler is a cloud service where users can edit their workout data (GPX files) and turn it into image and video visualizations.
The service is mostly free, but also sells credits that can be used for digital products such as higher resolution images and videos.
Route Squiggler collects personal data solely for the purpose of delivering core service functionality initiated by the user. Route Squiggler does not use the data for other activities such marketing, analytics, sales of data, profiling or automated decision-making.
Route Squiggler maintains user profiles, which include the following information:
Route Squiggler does not collect personally identifying data such as names, physical addresses or phone numbers.
Personal information sent by the users to the payment service provider does not get transmitted to Route Squiggler.
Users control the duration of data retention. User data is not kept longer than the existence of the corresponding user account.
Any data such as GPX files or routes are deleted from the servers immediately after the user deletes them.
Some data such as video or image files may be automatically deleted before the user's request, for the purposes of preserving storage space.
Offline backups of the service data, not directly available via the internet, may be preserved up to one year for data restoration and debugging purposes.
In addition to the user accounts, data is collected of every credit purchase users make.
This data includes the buyer's country of origin, as declared by the buyer, and the IP address as detected by the system. This data is stored for 10 years.
This data is collected for purely legal reasons, and is not used for any other purpose.
Route Squiggler does not maintain information hidden from users. All data related to the user is available through the service interface, and separate GDPR or other information requests are therefore unnecessary.
Users may delete their account or individual items of data such as routes at any time, triggering immediate deletion of the data.
Under the GDPR, users have the right to access, correct, delete, or restrict the use of their personal data, and object to certain processing. Users may exercise these rights directly through the service interface or by contacting [email protected].
Users have the right to lodge a complaint with a supervisory authority. In Finland, this is the Office of the Data Protection Ombudsman (tietosuoja.fi).
All data handled by Route Squiggler is stored on servers operated by Hetzner Finland Oy and located in Helsinki, Finland. Hetzner controls the data to the extent needed to provide the server infrastructure. No data besides user-initiated downloads is transferred outside of the EU.
Route Squiggler uses industry-standard security measures (such as encrypted connections and access control) to protect itself from unauthorized access, loss, or alteration.
Users under the age of 16 must not create permanent accounts unless parental consent is obtained. Temporary accounts are available that do not require an e-mail address and get automatically deleted after two days.
This requirement is solely for children's data privacy. There is no adult-only content on the site.
Users cannot trade anything in the service nor convert bought credits back into currency. Taxes are reported in Finland.
Route Squiggler uses only "essential" cookies required for staying logged in. There are no analytics, tracking, marketing or other types of cookies.
This privacy policy may be updated any time. Any changes to this policy will have to be confirmed by the user before they may continue to use the service.
This service may be closed at any time for any reason. Route Squiggler has no obligation to preserve user data or purchased credits in such an event.