Privacy Policy
Effective date: December 20, 2025
1. Introduction
GTFS Lens (“the Application”) is operated by strada360 and is designed to help transit agencies, planners, analysts, and researchers explore, analyze, and visualize General Transit Feed Specification (GTFS) data. Protecting the privacy and confidentiality of our users and their data is a fundamental principle in the design and operation of this platform.
2. Scope of This Policy
This Privacy Policy describes how information is collected, used, stored, and protected when you access or use GTFS Lens. It applies to all users of the Application, including users accessing publicly available GTFS datasets and users uploading private GTFS data.
3. Information We Collect
GTFS Lens collects only the minimum information required to provide its services:
• Account Information: Information provided during sign-in or registration, such as name, email address, and identity provider (for example, Google, Microsoft, or Facebook).
• GTFS Data: GTFS datasets retrieved from publicly available agency sources or uploaded directly by users.
• Derived Analytical Data: Metadata and results generated through validation, transformation, and analysis of GTFS datasets.
4. Public and Private Data
GTFS Lens distinguishes clearly between public and private data:
• Public Data consists of GTFS feeds published by transit agencies and made publicly available. These datasets may be accessed by multiple users of the platform.
• Private Data includes GTFS files uploaded by individual users. Private datasets are accessible only to the uploading user and are isolated using identity-based access controls.
5. How We Process Data
GTFS Lens processes GTFS data to support validation, visualization, and analytical features. Where possible, data analysis may occur directly within your web browser using client-side technologies to reduce server-side data exposure and improve performance.
6. Data Storage and Security
Data is stored using secure, managed cloud services hosted on Microsoft Azure. Access to private datasets is restricted through authenticated identities and role-based authorization. Industry-standard security controls are used to protect data against unauthorized access, loss, or disclosure.
7. Data Retention and Deletion
Private GTFS datasets remain under the control of the user who uploaded them. When a user deletes a dataset, both the original files and associated derived data are permanently removed from the platform. Users may also request deletion of their account and associated information.
8. Data Sharing and Disclosure
GTFS Lens does not sell, rent, or trade private user data. Public GTFS datasets remain subject to the terms and conditions under which they were originally published by the relevant transit agencies.
9. Legal and Regulatory Considerations
GTFS Lens is designed with privacy-by-design principles in mind. Where applicable, the platform supports compliance with relevant privacy and data protection laws, including Canadian and international privacy regulations.
10. Changes to This Privacy Policy
This Privacy Policy may be updated periodically to reflect changes in functionality, legal requirements, or best practices. Continued use of the Application after changes indicates acceptance of the updated policy.
11. Contact Information
For questions regarding this policy, please use the contact form available on our website.
