SEAS Privacy Policy

Effective date: November 4, 2025
Last updated: November 4, 2025

At a glance

  • Operated by Appazzola LLC.
  • We collect only the identifiers needed to deliver alerts and support diagnostics.
  • No personal information such as names, email, contacts, photos, or precise location is collected.
  • Data is processed in the United States; you may request deletion at any time.

Scope

This policy covers the SEAS mobile application, supporting notification services, and any related infrastructure used to deliver emergency alerts.

Data we collect

  • Device identifiers
    • Expo push token used to deliver notifications to your device.
    • App-generated device ID (pseudonymous) used to correlate diagnostics and delivery attempts.
  • App preferences (stored locally on your device)
    • Notification toggles, refresh interval, county and municipality filters, incident-type settings, theme choice.
  • Server-synced notification profile (per device)
    • County enablement, global vs municipality mode, municipality selections, incident-type toggles.
  • Diagnostics and technical logs
    • Device/app metadata (platform, OS version, app version, network state), token registration status, timestamps, aggregate delivery metrics.
  • Not collected
    • No names, email addresses, precise GPS data, contacts, photos/media, payment data, health information, SMS, or calendars.

How we use information

  • Deliver push notifications you have enabled.
  • Prevent duplicate notifications using short-lived deduplication keys.
  • Route alerts according to the profile you configure (county, municipality, incident type).
  • Monitor service health and reliability through aggregated diagnostics.

Where data is stored

  • On device – App preferences, saved incidents, and notes remain on your device. Removing the app deletes this data.
  • Server-side (United States) – Push tokens, notification profiles, diagnostics, dedupe keys, and delivery metrics are stored in Google Firestore and related Google Cloud services.

Retention

  • Push tokens and profiles are retained while valid; inactive or invalid tokens are purged (typically within about 60 days).
  • Deduplication keys expire within roughly 24 hours and exist solely to prevent repeat alerts.
  • Diagnostics are retained as needed for reliability and are periodically pruned.
  • Aggregate delivery metrics are anonymized and retained for operational monitoring.

Legal basis (where applicable)

  • Legitimate interests – ensuring alerts reach subscribed users and preventing duplicate or erroneous notifications.
  • Consent – enabling push notifications; you can withdraw consent by disabling notifications in your device settings.

Your choices and rights

  • Disable notifications through your device OS settings at any time.
  • Adjust filters, refresh intervals, and other preferences directly in the app.
  • Request removal of your push token, associated profile, and diagnostics by emailing [email protected]. Include your device platform and, if available, your app-generated device ID (Settings → Diagnostics).
  • Uninstalling the app invalidates the push token during the next cleanup cycle.

Sharing and third parties

  • Apple Push Notification service (APNs) for iOS delivery.
  • Google Firebase, Cloud Functions, and Firestore for hosting, scheduling, and storage.
  • Expo Push Service for cross-platform token handling and routing.
  • We do not sell or rent your data. Disclosure happens only to provide the service, comply with law, or protect our rights.

Security

  • TLS encryption protects data in transit.
  • Firestore security rules and least-privilege service accounts restrict access.
  • Operational controls include token pruning and monitoring for delivery anomalies.
  • While no method is perfect, we apply reasonable safeguards aligned with industry best practices.

International transfers

Data is primarily processed in the United States. By using the app from outside the U.S., you consent to transferring and processing your information in the United States.

Children's privacy

SEAS is not directed to children under 13, and we do not knowingly collect personal information from them. If we become aware of such data, we will delete it promptly.

Policy changes

We may update this policy. Material changes will be highlighted in-app and by updating the dates at the top of this page.

Contact

Appazzola LLC
Email: [email protected]

Google Play Data Safety summary

  • Collected
    • Device or other IDs: Expo push token, app-generated device ID (diagnostics and delivery reliability).
    • App info and performance: device model, OS/app version, network state, token registration status.
  • Not collected
    • Personal info (name, email), location, contacts, health/fitness, financial, photos/media, files, calendar, SMS/phone data.
  • Data is not sold; it is used only for alert delivery, deduplication, and reliability monitoring.
  • Data is encrypted in transit. Request deletion via [email protected] or uninstall the app to invalidate the push token automatically.