Data and privacy
Privacy Notice
Last updated July 11, 2026
Scope
This notice describes how the Helm software platform processes information for transportation operators, their authorized team members, drivers, passengers, affiliate partners, and visitors to Helm product pages. Transportation companies using Helm remain responsible for their own customer-facing privacy notices and lawful instructions.
Information processed
- Account and business information, including names, contact details, roles, subscription status, and workspace settings.
- Trip information, including pickup and drop-off locations, schedule, flight details, passenger and booking-contact details, vehicle selection, notes, pricing, driver assignment, and trip status.
- Driver information, including profile, availability, vehicle eligibility, dispatch activity, and location only after explicit location consent.
- Affiliate-network information, including service areas, fleet capabilities, rate agreements, acceptance history, performance events, settlement status, and disputes.
- Technical and security information, including IP address, device and browser information, authentication events, audit history, error telemetry, and integration delivery status.
How information is used
Helm uses information to provide quoting, booking, dispatch, passenger communication, affiliate-network, billing, support, fraud-prevention, security, reliability, and product-improvement functions. Helm does not sell personal information.
Service providers and integrations
Information may be processed by infrastructure, database, mapping, payment, email, messaging, calendar, analytics, and error-monitoring providers when required to deliver configured features. Each operator controls which optional integrations it enables.
Retention and deletion
Records are retained for the period needed to provide the service, meet contractual and legal obligations, resolve disputes, prevent abuse, and maintain audit integrity. Location pings use a short operational retention period. Test records and expired authentication artifacts are scheduled for deletion. Workspace administrators may request export or deletion through Helm Support, subject to legal retention requirements.
Security
Helm uses tenant-scoped access controls, signed sessions and action links, encrypted transport, hashed credentials and reset codes, rate limiting, audit records, and restricted administrative operations. No system can guarantee absolute security; suspected incidents should be reported immediately through Helm Support.
Your choices
Depending on applicable law and the operator relationship, individuals may request access, correction, deletion, restriction, or portability. Passenger requests should normally begin with the transportation operator that collected the trip information.