DiDi Bike User Privacy Policy

Last updated: January 2026

This Privacy Policy applies to DiDi Bike services, which include DiDi Bike App, website, software and related services (the “Platform”). The Platform is controlled and operated by Rideo Limited (“Rideo” or “we”).

Hangzhou Xiao Mu Ji Software Technology Co., Ltd. is the developer of DiDi Bike App.

We are committed to protecting and respecting your privacy. This Privacy Policy ("Policy") is designed to explain how we collect, use, share, and otherwise process the personal information of users.

1. Scope of This Privacy Policy

  1. This Policy applies to all products and services provided by us. If any of our affiliate companies use Rideo’s products or services but do not have their own privacy policy, this Policy will apply to those products or services. If a separate privacy policy exists for products or services provided by us or our affiliates, the relevant policy will apply.
  2. This Privacy Policy only applies to the Rideo Website and DiDi Bike App and does not extend to any other websites or apps you may access via Rideo’s Website or App (whether through ads, services, or content links) or through Rideo’s partner websites.
  3. While certain features of Rideo Website and DiDi Bike App can be accessed without registration, many services require registration. If you use our website or App without registering, the only information collected will be non-personal data through cookies or web beacons. If you choose to register, we will ask you to provide personal information such as your name, email address, year of birth, username, password, and phone number. You are responsible for ensuring the accuracy of the information you provide. Inaccurate information may affect the quality of services you receive and our ability to contact you as needed.
  4. By using our services, you acknowledge and agree that we will collect and use your personal information in accordance with this Policy. Please read this Policy carefully before using the services. If you have any questions, feel free to contact us using the details provided in this Policy.

2. How We Collect and Use Personal Information

We collect and use your personal information only for specific, lawful purposes related to our E-bike Services. We categorize this information into Basic Personal Data and Sensitive Personal Data.

2.1 Categories of Data Collected

Data Category Specific Data Types Purpose of Collection
Basic Data Name, Phone Number, Date of Birth, Email, Device ID, Device Model, Device Identifier, Network Status, Log Information, IP Address, Operating System, Performance Data (e.g., crash logs). Account registration, identity verification, and service operations.
Sensitive Data Precise GPS Location, Ride Routes, ID Card Number/Photo, Payment Transaction History. Safety & Operations: Unlocking/locking bikes, calculating fares, and ensuring rider safety.

2.2 Legal Bases for Processing

We process your data based on the following legal grounds:

  1. Contractual Necessity: To provide the ride-hailing/rental services you requested (e.g., location tracking to find a bike).
  2. Explicit Consent: For sensitive data processing and marketing communications.
  3. Legal Obligation: To comply with transport and cybersecurity regulations.

2.3 Detailed Use Cases

  1. Service Operations: We use your real-time location to authorize the unlocking of e-bikes and to track the journey for fare calculation. This includes tracking your ride’s start and end locations, ride duration, and mileage. This information is critical for legal reasons and user safety. Refusal to provide location data will result in the inability to use the Service.
  2. Registration, Verification, and Login: To comply with legal requirements and verify your identity, we may collect personal information such as your real name, ID number, and phone number. This information helps verify your age eligibility to use the e-bike services and ensure safety.
  3. Payment Services: We will only send payment requests to third-party payment systems (such as your preferred payment app) and will not collect additional personal data from these services.
  4. Performance Monitoring: We collect system logs and crash data to maintain the security of the App and prevent cyber-attacks, as required by the Law on Cybersecurity.
  5. Customer Support: We use your contact info to resolve disputes.
Important: We do not "sell" your personal data. Any sharing with third-party payment providers is limited strictly to the information required to process your transaction.

3. Use of Cookies and Similar Technologies

We use cookies and similar technologies to enhance service efficiency and improve your experience. These technologies help us secure our services, monitor performance, and prevent security risks. Cookies will not be used for purposes beyond those stated in this Policy.

4. Permissions Required

The App may request certain permissions on your device. Here is a breakdown of permissions, the features they support, and whether you can disable them:

Permission Why we want it Can you say no?
Location To find bikes, navigate and track your ride. No (Core service fails without it).
Camera To scan the QR code on the bike to unlock it. Yes, but you can't unlock bikes easily.
Album To upload your profile photos from the album. Yes.
Storage To save maps so the app runs faster. Yes, but the app may be sluggish.
Network To enable all features of the services. No (Core service fails without it).
Phone To call customer support directly from the app. Yes.

5. Data Retention and Security

  1. Retention Period: We will retain your personal data as long as you use our services. Once you delete your data or cancel your account, we will retain your data only as long as required by law. After the retention period, your data will be anonymized and cannot be traced back to you.
  2. Data Storage Location: Your data will be stored within the country in compliance with local laws and regulations.
  3. Security Measures: We use administrative, technical, and physical measures to protect your data from unauthorized access, disclosure, or modification. We have strict access controls in place, requiring confidentiality agreements for personnel handling sensitive data. However, no security system is entirely immune to risk, and we will notify you promptly in the event of a data breach.

6. Your Rights Regarding Personal Information

You are granted the following rights. We are committed to honoring these within the statutory timeframes:

  1. Right to be Informed: You have the right to know how your data is processed. This Policy serves as that notice. Any changes to the purpose of processing will be notified to you for new explicit consent.
  2. Right to Access and Provide Data: You may request to view, edit, or receive a copy of your personal information. We will fulfill access requests immediately upon verification, and no later than 72 hours (3 working days) if the request is complex.
  3. Right to Withdraw Consent: You may withdraw your consent for specific data processing activities (e.g., marketing or non-essential tracking) at any time through the App settings. We will stop processing your data within 72 hours of receiving your withdrawal notification.
  4. Right to Deletion (Right to be Forgotten): You may request the deletion or destruction of your personal data if it is no longer necessary for the ride service or if you withdraw consent. We will complete the deletion of your data within 72 hours of your request, unless retention is strictly required by Vietnamese law (e.g., for tax or anti-terrorism purposes).
  5. Right to Restriction & Objection: You may request that we limit how we use your data if you contest its accuracy or the lawfulness of the processing.
  6. Right to File Complaints: You have the right to file a complaint with competent authorities if you believe your data rights have been infringed.

7. Data Sharing, Transfer, and Disclosure

We will not share, transfer, or disclose your personal information to third parties unless:

  1. It is required to provide you with the services.
  2. We need to improve or develop new services.
  3. Legal authorities request it in compliance with laws or legal proceedings.
  4. We have your explicit consent. In the event of a merger or acquisition, we will notify you and ensure that the new entity adheres to this Privacy Policy.

8. Protection of Minors

If you are under 16, you must seek consent from a parent or guardian before using our services.

9. Policy Updates

We may update this Privacy Policy from time to time. We will not reduce your rights under this Policy without your consent. You will be notified of updates through announcements on the platform. By continuing to use our services after the update, you acknowledge and accept the revised policy.

10. Contact Us

If you have any questions or concerns regarding this Privacy Policy, you can contact our Customer Service team through the app. We will respond within regulatory timeframes after verifying your identity.