Privacy Policy

Sirena Seafarer · Effective 13 July 2026 · Replaces the version of 19 June 2026

This policy explains, in plain language and in detail, what data the Sirena Seafarer iOS app ("Sirena", "the app") and the website sirenaclub.io collect, why, where it is stored, for how long, and what rights you have. We built Sirena around a simple rule: your position belongs to you. Nothing about your location leaves your device unless you explicitly turn sharing on.

1. Who is responsible (data controller)

Sirena is operated by Anton Dimitrov, sole developer, Varna, Bulgaria. Contact for anything in this policy: privacy@sirenaclub.io.

2. The short version

3. What we collect, why, and for how long

DataWhenPurpose · Legal basisRetention
Email, name, boat name, home port; optional MMSI and call sign When you create an account (email or Sign in with Apple / Google) Provide the account, fleet identity, recovery on a new device · Contract (GDPR Art. 6(1)(b)) Until you delete the account
Live position, speed (SOG), course (COG) Only while Position sharing is set to Everyone or Fleet, and only while the app is open Show your boat on other sailors' charts (anonymously, or with your name to your fleet) · Consent (Art. 6(1)(a)) — the in-app switch Live entry expires automatically ~1 hour after your last update
Track backup (recorded points of your voyage) Uploaded roughly hourly, only while sharing is on Restore your track history · Consent Auto-deleted after 30 days
Fleet relationships (invites, member lists) When you send or accept a fleet invite Mutual position sharing with people you chose · Contract Until either side removes the connection or deletes the account
Sharing preference (Everyone / Fleet / Off) When you change the switch Enforce your choice server-side, including "sees nothing while sharing nothing" · Contract Until account deletion
Purchase entitlement (subscription active: yes/no) If you buy Sirena Premium Unlock paid features · Contract Life of the subscription. Payment itself is processed by Apple; we never see your card.
Waitlist / founding-list email If you join the list on sirenaclub.io Product news · Consent, withdrawable any time (unsubscribe link) Until you unsubscribe
Technical logs (IP address, request metadata, rate-limit counters) Automatically on any request to our servers Security, abuse and fraud prevention, keeping the service up · Legitimate interest (Art. 6(1)(f)) Short-lived (rate-limit counters expire within minutes; infrastructure logs per Cloudflare's standard rotation)

4. How position sharing works, precisely

5. What we deliberately do NOT collect

6. Where data is stored and who processes it

Our servers run on Cloudflare (Workers, KV, R2; EU/US network) under Cloudflare's data processing terms, which include the EU Standard Contractual Clauses for transfers outside the EEA. Charts are served from our own Cloudflare storage. Additional processors, engaged only for their stated function:

7. Your rights (GDPR and equivalents)

8. Security

All traffic is encrypted in transit (HTTPS). Credentials live in the iOS Keychain, not in app preferences. Presence storage uses one-way hashed identifiers. Access to production systems is limited to the operator. No system is perfectly secure; if we learn of a breach affecting your personal data we will notify you and the supervisory authority as required by law.

9. Children

Sirena is not directed at children. Do not create an account if you are under 16; where local law sets a lower digital-consent age, that age applies. We do not knowingly collect children's data and will delete it on notice.

10. Changes

We may update this policy as the app evolves. Material changes appear on this page with a new effective date; the app links here permanently. Previous versions are available on request.

← Back to Sirena · Terms of Use