Last Updated: January 1, 2025

1. Introduction

DiversionIQ ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide to us when you:

• Register for an account: Name, email address, phone number, airport affiliation
• Subscribe to our service: Billing information, payment details (processed securely by Stripe)
• Contact us: Name, email, phone number, message content
• Use our service: Airport codes, webhook URLs, notification preferences

2.2 Automatically Collected Information

When you access our Service, we automatically collect:

• Usage Data: Pages visited, features used, time spent, click patterns
• Device Information: IP address, browser type, operating system, device identifiers
• Log Information: Access times, error logs, performance metrics
• Cookies: Session cookies for authentication and functionality

2.3 Aviation Data

Our Service processes publicly available aviation data including:

• Aircraft diversion information from SWIM (System Wide Information Management)
• Airport operational data and statistics
• Flight routing and diversion patterns

3. How We Use Your Information

We use the collected information for:

• Service Provision: Delivering diversion alerts, analytics, and reporting
• Account Management: User authentication, subscription management, billing
• Communication: Service updates, billing notifications, customer support
• Improvement: Analyzing usage patterns to enhance our Service
• Compliance: Meeting legal obligations and resolving disputes
• Security: Detecting and preventing fraud, abuse, and security incidents

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

• Stripe: Payment processing and billing management
• Email Service: Transactional and notification emails
• Cloud Infrastructure: Hosting and data storage
• Analytics: Service performance and usage analysis

4.2 Legal Requirements

We may disclose your information when required by law, regulation, legal process, or government request.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Security

We implement appropriate technical and organizational security measures including:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication requirements
• Employee training on data protection practices
• Incident response and breach notification procedures

6. Data Retention

We retain your personal information for as long as necessary to:

• Provide you with our Service
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Meet legitimate business purposes

Account data is typically retained for 30 days after account cancellation, unless longer retention is required by law.

7. Your Rights and Choices

7.1 Account Access

You can review and update your account information at any time through your account settings.

7.2 Communication Preferences

You can opt out of marketing communications, but we may still send service-related notifications.

7.3 Data Portability

You can request a copy of your data in a structured, commonly used format.

7.4 Account Deletion

You can delete your account at any time, which will remove your personal information subject to legal retention requirements.

8. Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your login session
• Remember your preferences
• Analyze service usage and performance
• Provide security features

You can control cookie settings through your browser, but disabling cookies may affect service functionality.

9. Third-Party Services

Our Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers.

11. Children's Privacy

Our Service is not intended for individuals under 13 years of age. We do not knowingly collect personal information from children under 13.

12. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, and opt-out of the sale of personal information.

13. European Privacy Rights

If you are in the European Economic Area, you have rights under the General Data Protection Regulation (GDPR), including access, rectification, erasure, and data portability.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes via email or through our Service. Your continued use constitutes acceptance of the updated policy.

15. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

• Email: [email protected]
• Phone: 720-443-0014
• Address: DiversionIQ Privacy Officer

---

This Privacy Policy is effective as of January 1, 2025.