Last updated: 17 February 2026
This Privacy Policy explains how Okly Pty Ltd (ACN 641 341 460) ("Okly", "we", "us" or "our") collects, uses, stores and discloses personal information when you use the Okly Rider mobile application and related services (the "Services").
This policy complies with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
This policy applies to riders (passengers) and anyone who creates a rider account or otherwise uses the Services to request, manage or take trips.
If you use Okly as a driver, a separate privacy policy applies to driver accounts and driver use of Okly.
We collect information you provide, information generated while you use the Services, and limited technical information from your device (where permitted).
Okly collects precise location data to provide real-time rider services. Location data is used to:
Depending on your device permissions and settings, location may be collected while the app is in use. Where supported and permitted, location may continue to be collected in the background during an active trip (for example, to support safety features, trip verification, and incident response).
Location signals may include latitude/longitude and related data such as heading/compass direction, altitude, speed, movement status and accuracy metrics.
Note: Okly does not collect coarse/approximate location as an alternative to precise location.
Payments are handled by a payment provider. Okly does not store your full card details. We may store limited payment and transaction information necessary to process payments and support reconciliation and customer support, such as:
To protect platform safety and integrity and comply with legal requirements, Okly may request identity verification in some circumstances (for example, if we reasonably suspect fraud, misuse, or account compromise). This may include:
Where verification information includes sensitive information, we collect it with your consent (for example, when you submit documents through the app), unless an exception under Australian privacy law applies.
This includes information about how you use the Services, such as:
If you contact support, we collect the content of your support communications (including messages and any attachments you choose to provide).
We collect performance and diagnostic information to keep the Services reliable and secure. This can include:
We use personal information for the following purposes:
To create and manage rider accounts, set pickup/destination, match riders with drivers, facilitate trips, and enable core rider features.
To process trip charges, issue receipts, handle chargebacks and manage payment disputes.
To help prevent fraud and misuse, investigate safety incidents, enforce platform rules, and comply with legal obligations.
To respond to support requests and resolve disputes.
To monitor performance, troubleshoot issues, and improve features and reliability.
To send essential service messages (e.g. trip updates, account notices and support messages).
We do not sell or rent personal information. We do not use your data for third-party advertising, and we do not use data for tracking you across other companies' apps or websites for advertising purposes.
Okly uses automated processes to operate essential parts of the Services, including:
Where personal information is used for substantial automated decisions that significantly affect you (for example, account suspension based on algorithmic rating thresholds), Okly will disclose this. You may request that Okly review such decisions, and Okly will consider such requests in accordance with its internal review processes.
We may disclose personal information to:
To facilitate a trip and related features, drivers may be shown limited rider information such as:
Privacy protection: We do not disclose your personal phone number or email address to drivers. Any contact between riders and drivers is provided via in-app messaging/calling or a masked contact method, unless you choose to share your details or disclosure is required or authorised by law.
We may disclose personal information to service providers that support the Services, including:
| Service Provider | Purpose |
|---|---|
| Supabase | Authentication, database and file storage |
| Stripe | Payment processing |
| Firebase / Firebase Messaging | Push notifications |
| Firebase Performance | Performance monitoring |
| Intercom | In-app customer support |
| Google Navigation SDK | Turn-by-turn navigation |
| Google Maps/Places | Maps display, geocoding and place search |
| Sentry | Crash and error reporting |
We may disclose information to professional advisers (including insurers and auditors) and to law enforcement, regulators or courts where required or authorised by law.
We do not sell or rent personal information.
Some service providers may store or process information outside Australia. Where this occurs, we take reasonable steps to ensure your information is handled in a way that is consistent with this policy and the APPs, including through contractual protections where appropriate.
We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure, including:
We retain personal information for as long as necessary to provide the Services and for the purposes described in this policy. Retention periods vary depending on the type of information and why it is collected.
Account data: Retained while your account is active, then deleted or de-identified when you request deletion (subject to legal exceptions).
Trip and location data: Retained to provide trip history, safety features, customer support and dispute resolution, and may be retained until account deletion is requested (subject to legal exceptions).
Verification documents: Retained for compliance and platform integrity purposes (where collected).
Payment and financial records: Retained as required by law and for audit and tax purposes.
Following an account deletion request, we delete or de-identify data unless we need to keep it for:
Depending on your circumstances, you may have the right to:
You can also manage certain settings via:
The Services are not directed to children. You must be 18 or older to create an account and use the Services as a rider unless Okly expressly permits otherwise in writing.
If we suspect an eligible data breach, we will investigate and take steps to mitigate harm. Where required under the Notifiable Data Breaches scheme, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC).
To contact Okly, visit our Help Center at https://www.okly.com.au/help-center/
Use the search or browse the relevant category, then use the contact options shown to submit your request.
Tip: To help us respond faster, include the phone number and email associated with your Okly account (if any), and describe your request as a Privacy or Data request where relevant.
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at https://www.oaic.gov.au/
We may update this policy from time to time. If we make material changes, we will post the updated policy in the app and on our website, and update the "Last updated" date above.