PRIVACY

Privacy Policy

Last updated: April 22, 2026

1. Who we are

WildDrops (wilddrops.me) is operated by the WildDrops team. For any privacy question or request, email privacy@wilddrops.me.

2. What we collect

The only data we keep is what we need to send you alerts and bill paid plans:

  • Email address (for login + alerts)
  • Phone number in E.164 format (only if you enable SMS alerts)
  • Home ZIP / approximate location + alert radius (to geofence kiosk alerts)
  • Discord user ID + webhook URL (only if you connect Discord)
  • Web-push subscription token (only if you enable browser push)
  • Your watch rules, alert history, and delivery status
  • Your kiosk sighting submissions (machine, state, notes, optional photo URL)
  • Scout reports if you participate in the scout network
  • Stripe customer ID + subscription status (we never see full card numbers)

3. What we don't collect

Passwords are only stored as salted bcrypt hashes — we never see your plaintext password. No payment card numbers (Stripe handles that). We don't sell your data. We don't rent your email to partners. We don't run third-party ad trackers on our app.

4. Where it goes

Your data is stored in Supabase (Postgres) in a US data center, protected by row-level security so only you and our service workers can read your rows. We rely on these third parties to run the service:

  • Supabase — database, auth, storage
  • Vercel — hosting & serverless functions
  • Resend — transactional & alert email delivery
  • Twilio — SMS delivery (only if you enable SMS)
  • Stripe — payment processing for paid tiers

Each of these processors has its own privacy policy and applies appropriate contractual + technical safeguards.

5. Cookies & analytics

We use a single first-party session cookie for authentication. We don't run Google Analytics or any third-party behavioural tracker on the app. Server logs keep standard request metadata (IP, path, status) for up to 30 days for abuse mitigation.

6. Email & SMS

Alert emails include a one-click unsubscribe link and the RFC 8058 List-Unsubscribe header. Reply STOP to any SMS to opt out instantly. Transactional emails (sign-in links, billing receipts) are exempt from broadcast unsubs per CAN-SPAM §316.5.

7. Retention

We keep account data while your account is active. Closed accounts are fully deleted within 30 days, except for minimal financial records Stripe requires us to retain for tax compliance. Alert delivery logs roll off after 90 days.

8. Your rights

You can export your data, correct inaccurate information, or delete your account at any time from your dashboard settings, or by emailing privacy@wilddrops.me. California (CCPA/CPRA), Virginia (VCDPA), Colorado (CPA), and EEA/UK residents have specific rights under their local laws — we honour them all through the same channel.

9. Children

WildDrops is not directed at children under 13 and we don't knowingly collect personal data from minors. If you believe a minor has created an account, email us and we'll delete it.

10. Security

All traffic runs over HTTPS/TLS. Production secrets live only in Vercel and Supabase environment stores. Row-level security isolates user data at the database layer. We encrypt email addresses at rest and HMAC-sign every unsubscribe token so someone with a list of addresses can't forge opt-outs.

11. Changes

If this policy changes materially we'll email active users at least 14 days in advance. For the full history of changes, see our GitHub.