R
RailRadar
Back to home

RailRadar — Privacy Policy

Effective: August 15th, 2025

Who we are: RailRadar, Inc., ("RailRadar," "we")

Contact: privacy@railradar.online

Applies to: The RailRadar mobile app and website (collectively, the "Service").

1) Summary (TL;DR)

We collect account data you give us, device/usage data, optional foreground location, and community reports.

We use it to run the app, show crossing statuses, fight abuse, improve quality, and send alerts you opt into.

We don't sell personal data. We share limited data with service providers (e.g., Google Places, push/crash analytics).

You can export your data and delete your account in-app.

2) Data we collect

You provide

  • Account: name, username, phone (optional), town selection.
  • Reports: crossing chosen, status (open/blocked), movement (moving/stopped), note, media (photo/video, optional).
  • Reactions & feedback: 👍/👎, comments (if enabled), support emails.

Collected automatically

  • Device & usage: app/version, OS, device model, IP (approximate region), timestamps, crash logs, diagnostics.
  • Approximate location (only if you grant permission; foreground only).
  • Cookies/Similar tech on the website (not in the native app) for essentials/analytics.

From others/third parties

  • Place data (e.g., Google Places) for town/city metadata.
  • If links are shared, we may receive referral info (campaign, deep link params).

3) How we use data (purposes)

  • Provide and maintain the Service (accounts, towns, crossings, activity feed).
  • Display community reports and townwide status; compute helpful insights (e.g., ETA to clear).
  • Notifications you opt into (crossing changes, digests).
  • Quality/safety: rate limits, spam/fraud detection, moderation tools, abuse prevention.
  • Analytics & product improvement (aggregate trends, performance).
  • Legal compliance and to enforce Terms.

4) Legal bases (EU/UK)

  • Contract: to provide the Service you request.
  • Legitimate interests: safety/abuse prevention, analytics, product improvement.
  • Consent: notifications, foreground location, certain analytics/marketing (if any).
  • Legal obligation: to comply with law/enforcement requests.

5) Sharing your data

We don't sell your personal data. We share:

  • Service providers (processors): hosting, databases, crash analytics, push notifications, email, and place data services.
  • Other users: your reports and usernames are visible to others in the same town (community transparency).
  • Legal/security: to comply with law or protect rights, safety, or property.
  • Business transfers: if we merge, sell assets, or restructure.

6) Data retention

  • Account profile: kept until you delete your account or it's inactive for 24 months.
  • Reports & activity: retained to power history/ETA; may be anonymized/aggregated for analytics after 12–24 months.
  • Logs/crash data: 12 months.
  • Backups: 30–90 days typical rotation.

We'll keep data longer if required by law or to resolve disputes.

7) Your choices & rights

In-app controls

  • Enable/disable notifications; set Quiet Hours/Snooze.
  • Edit profile/town; manage subscriptions.
  • Delete account; request data export.

Privacy rights (by region)

EU/UK: access, rectification, erasure, portability, restriction, objection; lodge a complaint with your DPA/ICO.

US (CA/VA/CO/CT/UT): right to know/access, delete, correct, portability, and to opt out of "sale"/"sharing" (we don't sell; we use service providers). Residents of certain states may appeal a rights request decision—email privacy@railradar.online with subject "Appeal."

We'll verify your request and respond within applicable timelines.

8) Security

We use reasonable technical/organizational safeguards (encryption in transit, access controls, logging). No method is 100% secure; protect your account credentials.

9) Children

RailRadar is not for children under 13 (or the minimum age in your region). If we learn we collected data from a child, we'll delete it.

10) International transfers

If you're outside the U.S., your data may be processed in the U.S. We use appropriate safeguards (e.g., Standard Contractual Clauses) for EEA/UK transfers.

11) Permissions & sensors (mobile)

  • Location (Foreground only, optional): improves town accuracy and context; not required, not tracked in background.
  • Camera/Photos (optional): attach media to a report.
  • Notifications (optional): alerts about crossing changes and app updates.

You can change permissions in device Settings.

12) Do Not Track / GPC

Browsers' Do Not Track signals aren't standardized; we currently don't respond to DNT. Where Global Privacy Control (GPC) applies on the web, we will honor it for applicable opt-outs.

13) Third-party links

Links to other sites/apps aren't controlled by us; check their privacy policies.

14) Changes to this policy

We'll update this Policy as needed. Material changes will be noticed in-app or by email. Continued use after the effective date means you accept the updates.

15) Contact us

Questions about this privacy policy?