Last Updated on February 20, 2026

Welcome to NovaSync. Your privacy is important to us. This Privacy Policy explains how NovaSync collects, uses, and protects your information when you use our application. We are committed to keeping your data secure and ensuring that your personal information is handled responsibly and transparently. Please read this Policy before submitting any personal information to the NovaSync application.

your content

By using the NovaSync platform and its services, you agree to the collection, use, storage, transfer, disclosure, and sharing of your information as described in this Privacy Policy. If you do not agree with this Policy, please do not use or access the NovaSync platform.

policy changes

NovaSync may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or security practices. Any updates will be posted on this page with a revised “Last Updated” date. If we make significant changes to this Policy, we may notify users through the application or by other appropriate means. Your continued use of the NovaSync platform after such updates constitutes your acceptance of the revised Privacy Policy.

What Is Local Storage?

Local storage refers to data stored directly on your device through the application. Unlike browser cookies used by websites, local storage in mobile applications is managed within the app environment and is not shared automatically with external websites or third parties. NovaSync uses secure local storage mechanisms, such as device-based storage systems, to maintain essential information required for the proper functioning of the application.

Local Storage and Device Data

NovaSync may store certain information locally on your device to improve application performance, enhance user experience, and maintain secure functionality. This local storage is used only for operational purposes and does not include sensitive information such as passwords. NovaSync may store the following information on your device: User ID, User display name, Session-related information required for login continuity, Basic application preferences or settings, NovaSync does NOT store user passwords in local storage. Authentication credentials are handled securely using appropriate server-side security mechanisms. NovaSync does not use advertising cookies, third-party tracking pixels, or behavioral tracking technologies within the application. Users may clear application data through their device settings. Doing so may remove locally stored information, which could require users to log in again or reconfigure certain preferences. If a user uninstalls the NovaSync application, locally stored data will generally be removed from the device. NovaSync may update its local storage practices as part of service improvements or security enhancements. Any significant changes will be reflected in this Privacy Policy.

Information We Collect From You

NovaSync collects certain information from users in order to provide secure authentication, real-time tracking features, and improved service functionality. We only collect information that is necessary for the proper operation of the application.

1. Phone Number

We collect your phone number for the purpose of identity verification and account authentication. Your phone number is used to send a One-Time Password (OTP) during login or registration to ensure secure access to your account. This verification process helps prevent unauthorized access and enhances the security of user accounts. NovaSync does not sell, rent, or use your phone number for marketing purposes.Your phone number is stored securely and is used strictly for authentication and communication related to the NovaSync service.

2. Email Address

NovaSync may collect your email address to: Create and manage your user account Communicate important service-related updates Respond to user support inquiries Send security notifications when necessary Your email address is used solely for service-related communication. NovaSync does not share your email address with third parties for advertising or promotional purposes.

3. Location Information

NovaSync collects location information to provide real-time bus tracking and estimated arrival time (ETA) services. Location data may be used to: Display current bus position Calculate estimated arrival times Improve route accuracy Enhance the reliability of tracking features Location information is used strictly for providing core functionality of the application. We do not use location data for advertising, profiling, or unrelated tracking activities. Location access is requested only when necessary for the tracking feature to function properly. Users may manage location permissions through their device settings at any time. However, disabling location access may limit certain features of the application.

data security

NovaSync is committed to protecting user information through strong technical and organizational security measures. We implement appropriate safeguards to prevent unauthorized access, misuse, disclosure, alteration, or destruction of personal data.

1. Secure Cloud Infrastructure

NovaSync uses Amazon Web Services (AWS) cloud infrastructure to host and manage application services. Our backend systems operate on secure AWS EC2 (Elastic Compute Cloud) instances, which provide a reliable and protected environment for data processing and storage.AWS maintains industry-recognized security standards, including physical data center protection, network monitoring, and infrastructure-level safeguards.Access to the NovaSync EC2 server environment is strictly limited.Only authorized administrators have access to the server.Administrative access is controlled using AWS Identity and Access Management (IAM) policies.Access permissions are granted based on role-based access control principles.Unauthorized users are not permitted to access server resources.Root access and administrative privileges are restricted and used only when necessary for maintenance or security updates.NovaSync configures security groups and firewall rules to restrict inbound and outbound traffic to necessary ports and services only. Public access to administrative ports is limited and protected.Secure communication protocols such as HTTPS are used to encrypt data transmitted between users and the NovaSync servers.

2.Database Security (Amazon RDS)

NovaSync stores application data using Amazon Relational Database Service (RDS), a managed database service provided by Amazon Web Services (AWS). RDS provides a secure, reliable, and scalable database environment designed to protect user information.The NovaSync database is not publicly accessible.Access to the Amazon RDS instance is strictly restricted using AWS security group rules. Only the authorized NovaSync application server (EC2 instance) is permitted to communicate with the database.Direct public access to the database from the internet is disabled.NovaSync uses AWS Virtual Private Cloud (VPC) and security groups to control traffic between services. The RDS instance is configured to: Accept connections only from the NovaSync EC2 server.Block all unauthorized inbound connections.Operate within a protected private network environment.These measures ensure that database access is limited to approved internal services only.

3.File Storage Security (Amazon S3)

NovaSync uses Amazon Simple Storage Service (Amazon S3)to store application-related files and system resources. Amazon S3 is a secure and scalable cloud storage service provided by Amazon Web Services (AWS).NovaSync configures Amazon S3 with strict access control policies to prevent unauthorized access.S3 buckets are not publicly accessible unless explicitly required.Public file listing is disabled.Access to stored files is restricted through secure permissions and role-based policies.Only authorized NovaSync services and administrators are permitted to access stored content.