YearnOut Privacy Policy

Last updated: 15 May 2026

YearnOut is an alerting tool for firefighter rotas. This policy describes what data the app collects, how it is used, and who it is shared with.

1. What we collect

When you join a rota through the app, we store:

• The display name you enter at sign-up.
• The rank you select.
• Your rota assignment (which rota you joined).
• A push notification token for your specific device (Apple Push Notification service for iPhones, Firebase Cloud Messaging for Android phones). This token is used solely to deliver turnout alerts to your phone.
• A session token identifying your active sign-in.
• A last-seen-at timestamp that updates whenever your app contacts the server.
• An audit log of each dispatch your account was targeted in, whether your device acknowledged it, and how long the acknowledgement took. This is used to surface reliability statistics in the operator dashboard.

2. What we do NOT collect

• No location data.
• No phone number, email address, or any other contact information.
• No contacts, calendar, camera, microphone, or photos.
• No SMS content. The optional Shortcuts automation that triggers a dispatch from an ACES SMS runs entirely on your phone via Apple Shortcuts; the SMS body is never transmitted to our server.
• No analytics or advertising trackers.

3. How the data is used

Data is used exclusively to operate the turnout-alert service: delivering pushes to the right phones when a dispatch fires, authenticating your sign-in, and showing reliability statistics to the operator who runs the rota.

4. Sharing

Your data is not sold, rented, or shared with third parties for marketing or advertising. The only third parties involved are the technical infrastructure providers strictly required to deliver pushes:

• Apple Push Notification service (Apple Inc.) — used to deliver pushes to iPhones. Apple's privacy policy applies.
• Firebase Cloud Messaging (Google LLC) — used to deliver pushes to Android phones. Google's privacy policy applies.
• Fly.io (the cloud host running the backend) — only receives data in transit while serving API requests. Data at rest sits in a private database accessible only to the operator.

5. Retention

Your account record and dispatch audit log are retained for as long as you remain enrolled in a rota. When you log out via "Log Out & Delete Profile" in the app, your user record is deleted and your session token is invalidated. Dispatch audit-log rows are denormalised at write time, so they survive your account's deletion in anonymised form for operator reporting; they contain your name and rank at the time of each dispatch but no longer link to a live user identity.

6. Security

All data is transmitted over HTTPS. Session tokens are 256-bit random values stored in your phone's secure keystore (iOS Keychain or Android EncryptedSharedPreferences). Push tokens are stored encrypted at rest on the server.

7. Children

YearnOut is not directed at children under 13. The app is an internal-use tool for adult professional firefighters.

8. Contact

Questions about this policy, or requests to delete your data ahead of an automatic deletion, can be sent to shahu.wagh@gmail.com.