Aurora Iceland — Privacy Policy

Last updated: March 26, 2026

This Privacy Policy describes how Aurora Iceland (“we”, “us”, “our”) collects, uses, and protects your information when you use our mobile application.

1. Information We Collect

Location Data
We collect your device’s GPS coordinates to calculate aurora visibility scores at your current location, sort viewing spots by distance, and determine drive times. Location data is processed in real time on our servers and is not permanently stored or linked to your identity.

Photos
When you share an aurora sighting, a photo is captured via your device’s camera and uploaded to our cloud storage provider (Supabase). Community photos are stored indefinitely until you or we remove them.

Account Information
When you sign in via Google OAuth or email magic link, we receive and store your user ID, email address, display name, and profile avatar from your authentication provider. You also choose a username within the app, which is stored on our servers.

Device Information
We store a push notification token on your device and on our servers if you opt in to aurora alerts. We do not collect device identifiers or advertising IDs.

Usage Analytics
We collect anonymous usage events (e.g. which features you interact with) and store them locally on your device. This data is not transmitted to our servers or any third party. It is used solely to help us understand which features are most useful and improve the app.

2. How We Use Your Information

We use your information solely to operate the app:

• Calculate and display aurora visibility scores based on your location
• Show nearby viewing spots sorted by distance and drive time
• Display your sightings on the community map and feed
• Deliver push notifications for aurora alerts you have scheduled
• Screen uploaded photos for inappropriate content
• Display your username alongside your community posts and comments

3. Photo Moderation

All uploaded photos are automatically screened by an AI-powered content moderation service (OpenAI) before being stored. Photos flagged as inappropriate are rejected and are not stored on our servers. The moderation service receives only the image data and does not receive your identity or account information.

4. Third-Party Services

We do not sell, rent, or trade your personal information. To operate the app, your data may be processed by the following third-party services:

• Supabase (authentication, database, and file storage)
• OpenAI (automated photo moderation)
• Google Maps (map display on Android devices)
• Apple Maps (map display on iOS devices)
• Open-Meteo (weather and cloud cover forecasts)
• Icelandic Meteorological Office / vedur.is (real-time cloud observations)
• NOAA Space Weather Prediction Center (aurora and solar wind data)

Each service processes only the minimum data necessary for its function.

5. Data Retention and Deletion

• Map sighting previews: automatically removed from the map after 12 hours
• Community feed posts and comments: stored until you delete them or delete your account
• Account data: stored until you delete your account
• Location data: processed in real time, not permanently stored

You can permanently delete your account and all associated data (posts, comments, likes, and profile) from Settings > Delete Account. Deletion is immediate and irreversible.

6. Data Security

We use industry-standard security measures including encrypted connections (HTTPS/TLS), secure authentication via Supabase Auth, and row-level security policies on our database. However, no method of electronic transmission or storage is 100% secure.

7. Children’s Privacy

Aurora Iceland is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The updated policy will be accessible within the app under Settings > Privacy Policy. Your continued use of the app after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy or your data, contact us at: aurora.iceland.app@gmail.com