· LEGAL
Privacy Policy
LAST UPDATED · 20 APR 2026
PEREGRINE ("the App") is built for individual pilots by an individual pilot. The policy below describes what data the App handles, where it lives, and who can see it. If anything is unclear email hello@peregrinelogbook.com and I'll explain in plain English.
1. Data we collect
Logbook data you create or import
Flights, duty periods, off-duty periods, aircraft tails, crew names, certificates, remarks, and any notes you attach. This data originates from your keyboard or from CSV files you import (LogTen Pro, ecrew schedule reports).
Health data (optional)
If you enable the Apple Health integration, the App reads sleep sessions, heart-rate variability (SDNN), and resting heart rate from your HealthKit store. This data is used locally to compute your SAFTE fitness-to-fly score and is never written to our servers or shared with third parties.
Account data
If you sign in with Email, Apple, or Google: your email address plus a provider-generated user ID. Used solely to sync your logbook across your own devices. No marketing, no profiling, no re-sale.
Device / diagnostic data
Crash reports and anonymous usage telemetry via Firebase Crashlytics (can be disabled in iOS Settings → Privacy → Analytics & Improvements). No advertising IDs collected.
2. Where data lives
On your device first. The App uses a local SQLite database (Drift). Your logbook is fully readable offline, and export (PDF / CSV) works without any network.
Cloud sync (optional). When signed in the App mirrors your logbook rows to Google Firebase Firestore so a second device of yours sees the same data. Firebase servers are operated by Google under Google's standard terms. Your logbook is tied to your user ID — no one else can read it, including me.
AI briefing calls. When you tap "Get Briefing" the App sends route metadata (ICAO codes, flight date, cruise FL, alternate list) to Anthropic's Claude API to generate the dispatcher analysis. This request is stateless; no logbook-wide information, no personal identifiers, no health data are included.
Weather / NOTAM / map data. Fetched from public aviation data sources (AeroDataBox, AviationWeather.gov, FAA SWIM). Your ICAO queries are sent in plain text to those providers as part of the API request.
3. What is never shared
- Your Apple HealthKit data (sleep, HRV, resting HR).
- Your off-duty periods / vacation whereabouts.
- Your crew names and roster.
- Your radiation dose history.
These stay on your device and — if you enable sync — in your Firestore partition bound to your user ID.
4. Third-party services
- Firebase Authentication + Firestore (Google) — cross-device sync.
- Anthropic Claude — AI briefing text generation.
- AeroDataBox — airline schedule lookup.
- AviationWeather.gov / FAA SWIM — METAR, TAF, SIGMET, NOTAM.
- OpenStreetMap — briefing map tiles.
- Apple HealthKit — opt-in local read-only access.
No analytics SDKs, no advertising SDKs, no social-media SDKs.
5. Your rights
Delete your account and data
Settings → PILOT → Delete Account. One tap wipes your Firestore record, signs you out, and clears the on-device database. Nothing recoverable.
Export
Logbook screen → Export. Produces a standard PDF or CSV of your flights.
Access / correction
Everything the App holds about you is visible and editable inside the App itself. If you want a raw Firestore dump email me and I'll send you the JSON.
6. Children
The App is not directed at users under 16. If you believe we received data from a child, email me and I'll delete it immediately.
7. Contact
Questions, requests, or complaints: hello@peregrinelogbook.com. I respond personally — usually within a day or two between flights.
8. Changes to this policy
If I materially change what data the App collects or where it goes I will update the date at the top of this page and push an in-app notice on first launch after the change. Existing data never changes treatment retroactively without your consent.