Sign in

Privacy Policy

This comprehensive privacy policy outlines the data collection, usage, and protection practices for Flytime, a web application designed for skydivers to log jumps, manage gear, locations, aircraft, track licenses, view statistics, provide platform feedback, and submit feature requests. Flytime is committed to protecting your privacy and ensuring transparency regarding how your personal information is handled. Our policy is designed to comply with global privacy regulations including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable privacy laws worldwide. This document clarifies what information we collect, how we use it, your rights regarding your data, and our commitment to safeguarding your privacy.

Introduction to Flytime's Privacy Practices

Flytime operates as a specialized platform for skydivers available at flytime.io, without geographical restrictions, serving users across the globe. Our commitment to privacy begins with minimizing data collection to only what is necessary for providing our services effectively. We prioritize transparency in our data handling practices, ensuring users understand exactly what happens with their information when they use our platform. Flytime is dedicated to implementing robust security measures that protect user data from unauthorized access, alteration, disclosure, or destruction. The privacy policy presented here governs all interactions with the Flytime web application and associated services, establishing clear guidelines for how we manage user information

Each aspect of our privacy framework is designed with user trust as the central focus, recognizing that skydivers using our platform expect both excellent functionality and respect for their personal information. We have structured this policy to provide detailed information about our data practices while maintaining readability and accessibility for all users. Privacy legislation continues to evolve globally, and Flytime remains committed to staying current with legal requirements across jurisdictions. Our approach incorporates privacy by design principles, ensuring that privacy considerations are integrated into our development and operational processes rather than added as an afterthought.

Definitions and Key Terms

Before delving into specific privacy practices, it is important to establish clarity around key terms used throughout this policy. When we refer to "personal information" or "personal data," we mean any information that can identify you directly or indirectly, such as your name, email address, or online identifiers. The term "processing" encompasses any operation performed on personal data, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, or erasure. "Users" refers to individuals who access and utilize the Flytime application, regardless of registration status or activity level. "Cookies" are small text files stored on your device that help our application function properly and provide certain features.

We distinguish between "necessary data processing" (required for the application to function) and "optional data processing" (which users can control through preferences). The term "third parties" refers to entities other than Flytime and the user, such as our OAuth providers. When we mention "data controllers," we refer to ourselves as the entity determining the purposes and means of processing personal data, while "data processors" are entities that process data on our behalf. Understanding these terms facilitates clearer comprehension of our privacy practices and your rights regarding your personal information.

Information We Collect

Flytime collects several types of information to provide and improve our services for skydivers worldwide. When you register for Flytime, we collect basic account information necessary to create and maintain your account, including the information provided through our OAuth providers (Google and Discord), such as your name and email address. This information is essential for authentication purposes and to provide you with access to the platform's features. Additionally, we collect usage data related to your skydiving activities, including jump logs, gear management details, location information for skydiving sites, aircraft information, and license tracking data that you voluntarily provide to use the core features of our application.

The application also collects certain technical information automatically when you use Flytime, including your IP address, browser type and version, device information, operating system, and session information which enables us to provide a seamless user experience and maintain platform security. This information helps us understand how users interact with our application, identify and resolve technical issues promptly, and optimize the platform's performance across different devices and browsers. For analytics purposes, we implement the Umami analytics tool which collects anonymous usage data to help us understand general usage patterns and improve the platform's functionality without identifying individual users personally.

User-generated content, including feedback, feature requests, and communications with our support team, is also collected and stored to enhance our services and address user concerns effectively. This information provides invaluable insights into how we can improve Flytime to better serve the skydiving community. Any additional information you voluntarily provide through surveys, promotional activities, or while using specific features of the platform may also be collected and processed in accordance with this privacy policy. We maintain a commitment to minimizing data collection to only what is necessary for legitimate purposes related to operating and improving the Flytime platform.

Special Categories of Personal Data

Flytime does not intentionally collect any sensitive personal information or special categories of data as defined under various privacy regulations, including but not limited to information about racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning a person's sex life or sexual orientation. Our platform is designed to focus exclusively on skydiving-related information and activities without requiring sensitive personal details for functionality. In the event that any sensitive information is inadvertently submitted or collected, we treat such data with the highest level of security and confidentiality, and promptly take appropriate measures to delete or anonymize it unless legally required to retain it.

We explicitly request that users refrain from providing any sensitive personal information through our platform unless specifically requested and necessary for a legitimate purpose. For younger users, it's important to note that while Flytime does not impose specific age restrictions, the platform is not directed at children under 13 years of age, and we do not knowingly collect personal information from children. Parents or guardians who believe we may have inadvertently collected information from a child should contact us immediately at hello@flytime.io, and we will promptly remove such information from our records.

How We Use Your Information

Flytime utilizes the collected information primarily to provide and maintain our skydiving platform with its various functions and features. The personal data we process enables us to create and manage your user account, authenticate your identity through our OAuth providers (Google and Discord), and deliver the core services of jump logging, gear management, location tracking, and license management. This processing is essential for fulfilling our contractual obligations to you as a user of our platform. We continuously work to enhance and personalize your user experience by analyzing how you interact with different features, which helps us develop new functionalities that benefit the skydiving community and improve existing ones based on user behavior patterns and direct feedback.

Technical information and usage statistics help us monitor and improve the performance, security, and stability of the Flytime platform. By analyzing this data, we can identify and resolve technical issues promptly, optimize the application for different devices and browsers, and ensure the platform remains responsive and reliable for all users regardless of their location or equipment. This continuous improvement process is integral to providing a high-quality service that meets the evolving needs of skydivers worldwide. The anonymous analytics data collected through the Umami tool provides valuable insights into general usage patterns without compromising individual user privacy, allowing us to make data-driven decisions about feature development and platform enhancements.

Communication represents another important purpose for processing your information, as we need your contact details to respond to your inquiries, provide support, and share important updates about the platform. This includes sending service-related announcements, security alerts, and administrative messages necessary for the proper functioning of your account. Currently, Flytime does not engage in marketing email communications, but should this change in the future, we would implement appropriate consent mechanisms and provide clear opt-out options in compliance with relevant privacy regulations. We place a high value on user feedback and feature requests, which are carefully analyzed to guide our development roadmap and ensure the platform evolves in alignment with the needs and preferences of the skydiving community.

Legal Bases for Processing

For users in regions governed by the General Data Protection Regulation (GDPR) and similar privacy frameworks, we process your personal information based on several legal grounds. The primary legal basis is the necessity for performing the contract we have with you—providing the Flytime skydiving platform with its full functionality as described. When you create an account and use our services, we process your data to fulfill our contractual obligations and deliver the features you expect. Additionally, we process certain information based on our legitimate interests, which include improving and optimizing the platform, ensuring security, preventing fraud, and developing new features that benefit our user community. These legitimate interests are balanced against your fundamental rights and freedoms, and we implement appropriate safeguards to ensure this balance is maintained.

In specific instances, we may process your information based on your explicit consent, particularly when required by applicable law. In such cases, you have the right to withdraw your consent at any time, though this would not affect the lawfulness of processing based on consent before its withdrawal. Certain processing activities may also be necessary for compliance with legal obligations to which Flytime is subject, such as maintaining appropriate business records for tax purposes or responding to valid legal requests from public authorities. We regularly assess the legal basis for each processing activity to ensure compliance with applicable privacy laws across the jurisdictions in which we operate, maintaining documentation of these assessments as part of our commitment to accountability and transparency.

Information Sharing and Disclosure

Flytime maintains a strict policy regarding the sharing of personal information and does not sell, rent, or trade user data to third parties for marketing or advertising purposes. We highly value the trust users place in us and recognize the sensitive nature of personal information, especially in a specialized community like skydiving. The only instances where user information may be shared with third parties are for essential service provision, such as our OAuth providers (Google and Discord) for authentication purposes. These third-party services are governed by their own privacy policies, and users are encouraged to review those policies to understand how these providers handle personal information. Our relationships with these providers are structured to minimize data sharing to only what is necessary for authentication functionality.

In certain circumstances, we may be required to disclose personal information in response to valid requests from public authorities, including to meet national security or law enforcement requirements. Such disclosures are made only when we believe in good faith that disclosure is necessary to protect our rights, investigate possible violations of our Terms of Service, address security or technical issues, or respond to governmental requests. We carefully evaluate each request for information to ensure it complies with applicable law and our own privacy commitments. In the event that Flytime is involved in a merger, acquisition, or asset sale, user information may be transferred as a business asset, but would remain subject to the promises made in this privacy policy.

Service providers represent another category of potential data recipients, as we engage trusted third parties to help us operate, maintain, and improve the Flytime platform. These service providers may include hosting services, database management, analytics, and customer support tools that require access to certain user information to perform their functions. We enter into appropriate data processing agreements with all service providers, ensuring they process user data only according to our instructions and implement adequate security measures to protect the information. We regularly review our service provider relationships to verify compliance with our privacy standards and applicable data protection laws. The principle of data minimization guides these relationships, ensuring that service providers only access the information necessary to perform their specific functions.

Data Storage, Security, and International Transfers

Flytime stores all user data on secure servers located within the European Union, aligning with strict European data protection standards and regulations. We implement comprehensive technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption of data both in transit and at rest, secure socket layer technology (SSL), regular security assessments, access controls, and authentication procedures. Our security framework is regularly updated to address emerging threats and vulnerabilities in the digital landscape. We maintain detailed security protocols and incident response plans to ensure prompt and effective action in the unlikely event of a data breach or security incident.

The retention period for your information is determined by the purpose for which it was collected and the legal requirements applicable to our operations. We store your personal data only for as long as necessary to provide you with the Flytime services, comply with our legal obligations, resolve disputes, and enforce our agreements. Once the retention period expires, personal information is securely deleted or anonymized in a manner that prevents reconstruction. User accounts remain active until explicitly deleted by the user or after prolonged inactivity, with appropriate notifications provided before any account deletion due to inactivity. Users can request deletion of their accounts at any time through the application settings or by contacting us directly at hello@flytime.io.

While Flytime primarily stores data in Europe, our global service availability means that data may occasionally be transferred to, and processed in, countries outside your country of residence. Any such transfers are conducted in compliance with applicable data transfer mechanisms and safeguards required by privacy laws, including Standard Contractual Clauses approved by the European Commission where appropriate. We take additional measures to ensure that your personal information receives an adequate level of protection in the jurisdictions in which we process it. Before transferring data internationally, we assess the data protection laws of the recipient country and implement appropriate safeguards when the country does not provide the same level of data protection as your home country.

Your Privacy Rights

Users of Flytime are entitled to various privacy rights regarding their personal information, with specific rights varying based on applicable privacy laws in different jurisdictions. Under the General Data Protection Regulation (GDPR) and similar privacy frameworks, users have the right to access their personal data, receiving a copy of the information we hold about them in a structured, commonly used, and machine-readable format. This access right enables transparency and allows users to verify the accuracy of their information. Additionally, users have the right to rectification, allowing them to request corrections to inaccurate personal data or complete incomplete information stored in our systems. The Flytime platform includes features that allow users to update much of their information directly through their account settings.

The right to erasure, often called the "right to be forgotten," permits users to request the deletion of their personal information under certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected. Users may also exercise their right to restriction of processing, which limits how we use their data without deleting it, particularly while resolving disputes about data accuracy or processing legitimacy. Furthermore, users have the right to object to processing based on legitimate interests and the right to withdraw consent previously given. When processing is based on consent, such withdrawal does not affect the lawfulness of processing before the withdrawal. We process all user requests regarding their privacy rights promptly and in accordance with applicable law.

For users in California, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide additional rights, including the right to know what personal information is collected, the right to delete personal information (with certain exceptions), the right to opt-out of the sale of personal information (though Flytime does not sell personal information), and the right to non-discrimination for exercising these rights. Users from other jurisdictions may have similar rights under their local privacy laws. To exercise any of these rights, users can contact us at hello@flytime.io with a clear description of their request. We may need to verify the identity of the requestor before fulfilling the request to protect user privacy and security. We respond to all legitimate requests within the timeframes specified by applicable law and provide information about the actions taken in response to the request.

Cookies and Tracking Technologies

Flytime employs cookies and similar tracking technologies to enhance user experience and provide essential platform functionality. Cookies are small text files stored on your device that allow our application to recognize your browser and remember certain information, such as your login session. We primarily use session cookies for authentication purposes, which are necessary for the proper functioning of our platform and allow you to remain logged in as you navigate through different sections of Flytime. These session cookies are temporary and expire when you close your browser or log out of the application. Without these essential cookies, certain features of Flytime would not function correctly, including the ability to maintain your logged-in status throughout your visit.

In addition to session cookies, we utilize the Umami analytics tool, which is designed to respect user privacy while providing us with anonymous usage statistics. Unlike traditional analytics tools, Umami focuses on privacy-friendly analytics that minimize data collection and avoid tracking users across different websites. The analytics data collected through Umami helps us understand how users interact with our platform, which features are most valuable to the skydiving community, and where improvements might be needed. This information is processed in an aggregated and anonymized manner, meaning it cannot be used to identify individual users. The insights derived from this anonymous data guide our development efforts and help us create a better experience for all users.

Most web browsers allow some control over cookies through browser settings, enabling users to accept or reject cookies or choose which types of cookies to accept. You can typically modify your browser settings to decline cookies if you prefer, but this may prevent you from taking full advantage of the Flytime platform, particularly features that require you to be logged in. To manage cookies in your browser, you can usually access cookie settings in the "preferences" or "settings" menu. We recommend consulting your browser's help documentation for specific instructions on cookie management. It's important to note that certain cookies are essential for the functioning of our authentication system, and disabling these cookies may limit your ability to use the Flytime platform effectively.

Third-Party Integrations and Services

Flytime integrates with third-party services to provide essential functionality, most notably the OAuth authentication providers Google and Discord. These integrations enable users to create and access their Flytime accounts without needing to create separate credentials, enhancing security and convenience. When you choose to log in using one of these OAuth providers, certain information is shared between the provider and Flytime, typically including your name, email address, and a unique identifier. This information exchange is necessary for authentication purposes and establishing your Flytime account. Each OAuth provider operates under its own privacy policy, and we encourage users to review these policies to understand how these companies handle personal information. Google's privacy policy and Discord's privacy policy provide detailed information about their respective data practices.

Our use of the Umami analytics tool represents another third-party integration, chosen specifically for its privacy-centric approach to analytics. Unlike conventional analytics platforms that may track users across different websites or build detailed user profiles, Umami focuses on providing essential usage statistics while respecting user privacy. The tool collects anonymous data about how the Flytime platform is used, such as page views, session duration, and feature engagement, without identifying individual users. This approach aligns with our commitment to minimizing data collection while still gathering the insights needed to improve our platform. The information collected through Umami is used exclusively for understanding and enhancing the Flytime user experience.

If we introduce additional third-party integrations in the future, we will update this privacy policy to reflect these changes and maintain transparency about our data practices. Any new integrations would be carefully selected with privacy considerations as a priority, and we would implement appropriate data protection agreements with these providers. We regularly review our third-party relationships to ensure they maintain appropriate security standards and comply with applicable privacy regulations. Our principle of data minimization extends to these relationships, ensuring that any information shared with third parties is limited to what is necessary for the specific service being provided.

Updates to This Privacy Policy

The privacy landscape continuously evolves with new regulations, technological advancements, and changing business practices, necessitating periodic updates to our privacy policy. When we make significant changes to this policy, we will notify users through a prominent notice on the Flytime platform, and in cases of material changes, we may also send direct notifications to the email addresses associated with user accounts. These notifications will be provided prior to the changes taking effect, giving users time to review the modifications and understand how they might affect the handling of their personal information. The date of the latest revision will always be clearly indicated at the top of the privacy policy, allowing users to easily identify when updates have occurred.

We encourage users to review this privacy policy regularly to stay informed about how we protect their information and what choices are available regarding their data. When reviewing updates, particular attention should be paid to changes in the types of information collected, purposes of processing, and third-party integrations, as these aspects most directly impact user privacy. Minor revisions for clarity or grammatical corrections may be made without specific notification, but substantive changes affecting user rights or data handling practices will always be communicated transparently. Our commitment to privacy includes maintaining an archive of previous versions of this policy for reference purposes, which users can request by contacting us at hello@flytime.io.

If you continue to use Flytime after changes to the privacy policy have taken effect, this indicates your acknowledgment and acceptance of the updated terms. However, if significant changes affect how your personal information is processed and require fresh consent under applicable law, we will obtain your consent before implementing those changes. We value user feedback on our privacy practices and policy updates, and welcome questions or concerns about any aspects of our data handling procedures. Such feedback helps us refine our approach to privacy and ensure that our practices align with user expectations and legal requirements in the diverse jurisdictions where Flytime is available.

Contact Information and Dispute Resolution

For any questions, concerns, or requests regarding this privacy policy or our data processing practices, users can contact Flytime directly via email at hello@flytime.io. Our dedicated team is committed to addressing all privacy-related inquiries promptly and thoroughly, typically responding within 5 business days. When contacting us about privacy matters, providing specific details about your concern helps us investigate and resolve issues more efficiently. For account-specific inquiries, please contact us from the email address associated with your Flytime account to facilitate verification of your identity and expedite our response. We approach all privacy concerns with seriousness and respect, striving to resolve them in a manner that maintains user trust and complies with applicable regulations.

In the event that a privacy dispute cannot be resolved through direct communication with our team, users in certain jurisdictions have the right to lodge a complaint with their local data protection authority. For users in the European Union, information about your national data protection authority can be found on the European Commission's website. Similarly, users in other regions may have recourse to relevant regulatory bodies as provided by local privacy laws. While we hope that any concerns can be addressed directly, we respect your right to seek regulatory intervention if necessary. We are committed to cooperating with data protection authorities during their investigations and working constructively to resolve any compliance issues that may arise.

For users based in jurisdictions with specific privacy rights, such as those covered by the GDPR, CCPA, or other comprehensive privacy frameworks, we have implemented processes to handle requests to exercise these rights effectively. When submitting requests to access, correct, delete, or restrict the processing of your personal information, please be as specific as possible about the information concerned and the action requested. To protect user privacy and security, we may need to verify your identity before processing certain requests, particularly those involving access to or deletion of personal information. This verification process is designed to ensure that personal information is only provided to or modified by authorized individuals.

Conclusion

This privacy policy represents Flytime's ongoing commitment to transparency, security, and respect for user privacy in all aspects of our operations. We recognize that privacy is a fundamental right and that users entrust us with their personal information when using our skydiving platform. The policies outlined in this document reflect our dedication to honoring that trust through responsible data handling practices. As Flytime continues to evolve and introduce new features to serve the skydiving community better, our privacy framework will likewise adapt to ensure consistent protection of user information. We encourage users to familiarize themselves with this policy and to reach out with any questions or feedback that might help us improve our privacy practices further.

The global nature of privacy regulations presents both challenges and opportunities for services like Flytime that operate worldwide. We embrace these challenges by implementing privacy practices that meet or exceed the requirements of the most stringent regulations, thereby providing all users with strong privacy protections regardless of their location. This approach reflects our belief that robust privacy protection represents not just a legal obligation but a competitive advantage and ethical imperative in today's digital landscape. By prioritizing privacy in our design and operational decisions, we aim to build lasting relationships with users based on mutual respect and trust.

Finally, we view this privacy policy not as a static document but as part of an ongoing dialogue with our user community about privacy expectations and practices. As the Flytime platform grows and evolves, we remain committed to maintaining this dialogue, responding to emerging privacy challenges, and continuously improving how we protect and respect user information. Thank you for trusting Flytime with your skydiving journey, and we look forward to providing you with a secure, private, and exceptional platform experience.