Privacy & Cookie Policy

On the Go Map (onthegomap.com, the "website") collects some personal data and stores identifiers on your device (like cookies) to provide the service, monitor performance and usage of the website, and for displaying advertisements. Please read below for more details and refer to the Terms of Service, which this Privacy & Cookie Policy is a part of.

Data We Collect

Website Logs and Cookies

Whenever you use the website, we use a modified version of Matomo we host in Digital Ocean to collect information about your visit including browser and device type, operating system, unique device identifiers stored in cookies, and details of how you use the website such as routes created, and timestamps of requests for up to 26 months.

While you are logged-out, to the best of our ability none of the information we store in these logs is personally-identifying, for example, we anonymized your IP address before storing it. The logs we collect using Matomo are always enabled.

When you create an account or log in, we store a cookie on your device to maintain your authenticated session for up to a year and may include your user ID and full IP address in website logs. You may log out or remove that session from account settings at any time.

We analyze this information to detect and prevent fraud and security risks, monitor usage, fix bugs and performance issues, and to maintain and improve the website. We have legitimate interest in these activities, and this data collection is necessary to provide the service.

Account Activity

When you create an account we store information needed to maintain and access your account including email address, temporary codes, passkeys, active sessions, and routes.

You may deactivate your account at any time to immediately delete all account data and routes.

We retain a log of account security events (such as logins and credential changes) including timestamp, full IP address, user agent, and unique device ID indefinitely solely for fraud prevention, security investigations, and abuse mitigation.

Advertising Cookies

We use Google Adsense to display advertisements. Through Adsense, third party vendors and networks including Google use cookies to serve ads based on the content of this site and your visits to this and other sites.

Users in the European Economic Area (EEA) will only receive non-personalized advertisements. These ads still use cookies, but not for personalization. Users in other regions may opt-out of personalized advertising by visiting Google's Ad Settings. You may also opt-out of some third-party vendors and ad networks' use of cookies and personalized advertising at www.aboutads.info.

We do not sell personal information as defined by applicable U.S. privacy laws.

You may disable ads altogether using the toggle button in the header of this section. We store this preference in a cookie, so you must enable cookies for this to take effect.

Data You Provide

Location Data

When you click the button to locate yourself on the map, you provide your current location to the website. We only use that information to display your location on the map. We do not log or store this information or use it for any other purpose.

To disable this functionality, you can block geolocation permission for this website in your browser.

We will prompt you before requesting location data.

Account Information

When you create an account, you must provide an email address and confirm it using a temporary code. By providing your email address, you consent to receive temporary codes via email. This email address will only be used for temporary codes and to notify you about activity on your account. Temporary codes are valid for 5 minutes and are removed immediately after use. All automated account-related emails are sent using Amazon Web Services' Simple Email Service, see Amazon's SES Privacy Policy for details of how they use and process your information.

You may optionally add a passkey for future logins. We store the public key and identifier used to verify the passkey in the future but the private key and biometric information remain on your device.

You may deactivate your account at any point to remove all stored account information and routes.

Stored Routes

When you save a route to your account we store the full shape of the route, modification timestamps, route title, and current editor settings like routing mode. By default routes are private and only visible to you while authenticated. If you choose to make a route public to share it, the route shape, modification timestamps, title, and current editor settings will be accessible to anyone whether they are logged in or not. Shared routes do not contain any reference to your user ID or account data.

You can revoke public access to a route at any point or delete it to immediately remove from our system. Deleting a route is permanent and cannot be undone.

Google Drive

You may choose to grant On The Go Map access to your Google Account so that you can open routes created using an earlier version of On The Go Map from your Google Drive. We use that permission only to open routes created with this application. We do not use or access any personal data associated with your Google account.

When you use this functionality, Google sets cookies on your device. See Google's Privacy Policy for details of how they use and process your information.

You may revoke access to the Google Drive app at any time at https://myaccount.google.com/permissions.

Feedback

You may provide certain personal information such as email address when you fill out the feedback form or send us an email. We use this information only to communicate with you about the feedback you give.

When you send a message to any @onthegomap.com email address, it goes through Google Workspace which stores and processes your email according to Google's Privacy Policy.

Please email privacy@onthegomap.com if you want your feedback removed from our systems.

When you share or embed a route that is not saved to your account, the URL that you share contains the route and can be publicly viewed by anyone with the link. Third party services that the website uses also have access to the route since they may log the URL of the page that they are loaded on.

When you share or embed a route that is saved to your account, the URL contains an identifier used to retrieve its data. You can change the route, revoke public access or delete the shared route at any point. New routes are private until you opt into sharing. If you deactivate your account, all shared saved routes will be deleted, but any shared routes that were not saved to your account may still be accessible.

You may choose to shorten the URL for a route that you created. This stores your route and returns a short URL that redirects to your route when someone visits it. By default, these short routes are stored forever but you can contact privacy@onthegomap.com to remove any previously-shortened URL.

Routes shortened before May 2020 used bit.ly which stores those shortened routes forever and collects statistics about people who click-through to your route. See bit.ly's Privacy Policy for full details.

How We Protect Your Data

We use industry standard techniques to protect against unauthorized access of data about you that we transfer and store, including personal information and routes created. To the best of our ability, all usage and account data are encrypted at rest and in transit and temporary data is permanently removed within an hour.

We use hosting providers including Cloudflare, Amazon Web Services, Hetzner and Digital Ocean to bring the site to you. All traffic to the website including personal information may go through these hosting providers. All account data including email address, routes, passkeys and sessions are stored in a Digital Ocean managed database. See their privacy policies and data processing agreements for details about how they process your information.

We may require that you pass a Cloudflare Turnstile challenge to prove you are not a bot before using the service. See Cloudflare's Turnstile Privacy Addendum for more details about how Cloudflare Turnstile processes your information.

We use Stadia Maps to host map data and Esri to host map data and provide search results. See Stadia Maps' Privacy Policy or Esri's Privacy Policy for details on how they use and process your information.

Beyond these known parties, we may also need to:

Share your information with people or entities that we hire or contract with, but only the minimum necessary information so they can accomplish their task
Share your information with law enforcement to meet any applicable law, regulation, legal process, or enforceable government request
Share usage statistics with third parties, but only in an aggregated and anonymized form
Buy or sell assets that require transferring your information, but only so it can be used in accordance with policy

By agreeing to this policy, you agree to our sharing of your data with these parties.

Your Rights

You may delete saved routes or deactivate your account at any time through account settings. Account deletion immediately and permanently removes all account information and stored routes, subject to limited retention described in this policy for security, fraud prevention, and backups.

If you wish to export your data, you may export saved routes from your account in GPX format at any time.

We do not sell personal information. We share personal information only as described in this policy and only to operate, secure, maintain, and improve the service.

If you wish to request access to, correction of, or deletion of your personal information, or if you believe we hold personal information about you in violation of this policy or applicable law, please email us at privacy@onthegomap.com.

Data Transfer

On The Go Map is based in the United States. Personal information that we collect may be transferred or stored by services we use inside or outside the European Economic Area or Switzerland, including in the United States. By agreeing to this policy, you agree to such transfers.

Security Notifications

If we discover a security incident that affects your account or personal information, we will notify you at the email address associated with your account. We will provide information about what happened and steps you can take to protect yourself.

Changes to this Policy

We may change this Privacy Policy. Use of information we collect is subject to the Privacy Policy in effect at the time such information is used. If we make major changes in the way we collect or use information, we will make a reasonable effort to notify you such as a pop-up or notification when you use the website. Continuing to use the website after we post the change indicates you have read and agree to the new policy.

Contact Us

On The Go Map is operated by its owner, based in the United States. For any questions about this Privacy Policy, please email us at privacy@onthegomap.com.

Last modified: January 4, 2026.