Last updated: 29/12/2025
This Privacy Policy explains how Mind The Ping (“we”, “us”, “the App”) collects and uses your data when you save journeys and receive Transport for London (TfL) disruption alerts.
Personal information we collect:
When you create an account, we collect your phone number and password so you can sign in and receive alerts. Passwords are stored securely using industry-standard hashing and are never shared externally. Your phone number and password are kept only while your account is active and are permanently deleted if you delete your account.
Journey and usage information:
We collect journey details such as stations, routes, days of travel and time ranges so we can notify you when a disruption affects your travel. While your account is active, these journeys are linked to your internal user ID so the App can deliver alerts to the correct person.
What happens when you delete your account:
If you delete your account, personal identifiers such as your phone number and password are permanently removed. Journey data may continue to be stored, but without any identifiers it cannot be linked back to you. Any remaining internal identifiers cannot be used to identify an individual once personal data has been removed.
How we use your data:
Personal information is used to authenticate your account and send disruption alerts related to your saved journeys. Journey information may also be anonymised and combined with other users’ data to analyse travel patterns or measure disruption impact. We do not sell personal data. However, anonymised journey statistics that cannot identify you may be shared or sold as reports.
Legal basis for processing:
We process your phone number, password, and journey details to provide the disruption alert service you request. This is necessary for the App to function. Anonymised reporting is processed under our legitimate interests to analyse journey data and improve the service.
Data retention:
Your phone number and password are kept only while your account is active. When your account is deleted, these identifiers are permanently removed. Journey data may be retained but is anonymised so it cannot be linked to you. Aggregated anonymised data may be kept indefinitely because it cannot identify an individual.
Data sharing:
We do not share personal data such as phone numbers or passwords. Only anonymised and aggregated journey data may be shared or sold for reporting purposes and cannot be used to identify you.
Your rights:
You may request access to the personal information we hold about you and you may request deletion of your account at any time. Once personal identifiers have been deleted and journey data has been anonymised, it is no longer considered personal data and cannot be individually removed from aggregated reports.
Contact:
If you have any questions about this Privacy Policy or your data, contact:
contactus@mindtheping.co.uk