Privacy Policy

Last updated: December 11, 2025

1. Introduction

WindTrackr respects your privacy and is committed to protecting your personal data. This privacy policy describes what personal information we collect, how we process it, for what purpose, and what your rights are in relation to your data.

2. Data We Collect

2.1 Account Data

  • Username/full name: Provided during registration
  • Email address: Used for authentication and essential communications
  • Profile picture: Image URL provided through Google account sign-in
  • Unique user identifier: Automatically generated by the authentication system

2.2 Application Usage Data

  • Saved stations: Weather stations marked as favorites
  • Wind alerts: Wind speed thresholds configured for notifications
  • User preferences: Interface theme, language, measurement units
  • Subscription plan: Active plan type (Free or Premium)

2.3 Analytics Data (Anonymous)

  • Visited pages: Stations viewed, interactive map usage
  • Usage events: Creation and deletion of alerts, progressive web app installation
  • Performance metrics: Loading times, Web Vitals (LCP, FID, CLS)
  • Device information: Device type, web browser, operating system
  • ℹ️ This data is collected in aggregate and anonymously through web analytics services.

2.4 Data We DO NOT Collect

  • ❌ We do not collect exact GPS location
  • ❌ We do not access camera or microphone
  • ❌ We do not read contacts or messages
  • ❌ We do not sell personal data to third parties
  • ❌ We do not use third-party advertising tracking cookies

3. How We Use Your Data

  • Authentication: User identification during application access
  • Service functionality: Storage of favorite stations, configured alerts and user preferences
  • Essential communications: Email verification, sending wind alert notifications
  • Service improvement: Analysis of usage patterns to detect errors and optimize user experience
  • Legal compliance: When required by law or competent authority

4. Storage and Cookies

4.1 Local Storage

Browser local storage is used for:

  • Weather data cache for offline operation
  • Interface preferences (light/dark theme) and language settings
  • Authentication session token
  • Progressive web app installation status

4.2 Cookies

Strictly necessary cookies are used for the operation of the authentication system. Third-party advertising tracking cookies are not used.

5. Third-Party Services

Service Infrastructure

Cloud infrastructure services provided by Google Firebase are used for:

  • User authentication system
  • Real-time database for user information storage
  • Usage analysis and performance metrics
  • Web application hosting

These services comply with the General Data Protection Regulation (GDPR).More information →

AEMET (State Meteorological Agency)

Weather data is obtained from AEMET public sources. No user personal data is shared with this entity.

6. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), users have the right to:

  • Access: Request a complete copy of their personal data
  • Rectification: Correct incorrect or incomplete information (available in Account Settings)
  • Erasure: Request deletion of their account and associated data (option available in the application)
  • Portability: Receive their data in a structured, commonly used format (JSON)
  • Object: Object to data processing for statistical analysis
  • Restriction: Request restriction of their personal data processing

To exercise these rights, you can contact us at:

devbyborja@gmail.com

Your request will be addressed within a maximum of 30 days.

7. Data Security

The following security measures are implemented to protect personal data:

  • ✅ Connection encryption via HTTPS protocol (SSL/TLS)
  • ✅ Secure authentication system using OAuth 2.0 standards
  • ✅ Password storage via hash functions (never in plain text)
  • ✅ Data access control through database security rules
  • ✅ Email verification for new accounts

However, no security system is completely infallible. If you detect suspicious activity on your account, immediately contact support.

8. Data Retention

  • Active account: Personal data is retained while the account remains active
  • Deleted account: All personal data is deleted immediately upon deletion request
  • Analytics data: Retained anonymously for a maximum of 14 months
  • Security logs: Kept for up to 90 days for audit and security purposes

9. Children's Privacy

WindTrackr is not directed at children under 13 years of age and does not intentionally collect personal information from children under that age. If a parent or legal guardian discovers that a minor has provided personal data, they should immediately contact the service to proceed with its deletion.

10. Changes to this Policy

This privacy policy may be updated occasionally. Users will be notified of significant changes through:

  • Email to the registered address
  • Prominent notification in the application
  • Update of the "Last updated" date in the header of this document

11. Contact

For inquiries about this privacy policy or about personal data processing:

WindTrackr

Email: devbyborja@gmail.com

Website: windtrackr.com

This privacy policy complies with the General Data Protection Regulation (GDPR) of the European Union.