Privacy Policy

Last updated: April 2, 2026

Redshift Software, LLC ("we," "our," or "us") operates the Flyby application and related services. This Privacy Policy explains how we collect, use, share, and protect your information when you use our satellite and launch tracking app (the "App").

1. Data Controller

Redshift Software, LLC is the data controller for your personal data. For any data-related requests, contact us at info@redshift.llc.

2. Information We Collect

Account Identifier: The App generates a random anonymous identifier (UUID) on your device. No name, email, or login credentials are collected.

Device Information: We collect your device's vendor identifier (for account recovery), platform, app version, and Apple Push Notification service (APNs) tokens for delivering notifications.

Precise Location: With your permission, we collect your GPS coordinates (latitude, longitude, altitude) and time zone to calculate satellite pass predictions and launch visibility for your area. Your location is stored on our servers to compute predictions and send timely push notifications.

Notification Preferences: Your chosen notification settings (launch alerts, satellite alerts, viewing window preferences, followed space agencies).

Subscription Information: If you subscribe to Flyby Pro, we store your subscription product ID, expiration date, and Apple transaction ID for subscription management. Payment processing is handled entirely by Apple.

User Feedback: If you submit feedback through the App, we store the feedback text and your app version.

Analytics Data (with consent for EU/EEA users): We use Firebase Analytics and TikTok Business SDK to understand how the App is used, including which features are popular, session duration, and navigation patterns. For users in the EU/EEA, analytics data is only collected after you provide explicit consent.

3. Legal Basis for Processing (EU/EEA Users)

We process your personal data on the following legal bases under GDPR Article 6:

Consent (Art. 6(1)(a)): Analytics tracking (Firebase, TikTok), precise location access. You can withdraw consent at any time.
Contract (Art. 6(1)(b)): Account creation, subscription management, and delivering the core App service (satellite predictions, push notifications).
Legitimate Interest (Art. 6(1)(f)): Security measures (device verification), service improvement, and maintaining service reliability.

4. How We Use Your Information

Calculate satellite pass predictions and launch visibility based on your location
Send push notifications about upcoming visible passes, launch updates, and Live Activities
Manage your subscription and premium features
Analyze usage patterns to improve the App (with consent for EU/EEA users)
Respond to support requests and feedback

5. Third-Party Services

We share data with the following third parties:

Apple Push Notification service (APNs): Device push tokens for notification delivery. See Apple's Privacy Policy.
Apple DeviceCheck: Device tokens for fraud prevention and device verification.
Apple App Store: Subscription transaction data for purchase verification.
Firebase Analytics (Google): App usage analytics. Data may be transferred to the United States. See Firebase Privacy and Google's Privacy Policy.
TikTok Business SDK: App usage analytics for advertising attribution. Data may be transferred to the United States and Singapore. See TikTok's Privacy Policy.

We do not sell your personal data. We do not display ads within the App.

6. International Data Transfers

Your data is processed on servers located in the United States. Third-party services (Google/Firebase, TikTok) may process data in the United States and other countries. For EU/EEA users, these transfers are made in reliance on Standard Contractual Clauses and the service providers' own compliance frameworks.

7. Data Retention

Account data: Retained while your account is active. Accounts with no activity for 90+ days are marked inactive and excluded from processing.
Notification history: Automatically deleted after 90 days.
Account deletion: When you delete your account (via the App or by contacting us), all data is permanently and immediately removed from our servers.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access: Request a copy of your data (use "Download My Data" in the App's Settings).
Erasure: Delete your account and all data (use "Delete My Account" in the App's Settings).
Portability: Export your data in a machine-readable format (JSON) via the App.
Withdraw Consent: Disable analytics tracking via the App's Settings at any time. Revoke location access via your device's Settings.
Restriction: Request that we limit processing of your data.
Rectification: Update your location, notification preferences, and followed agencies directly in the App.
Lodge a Complaint: You have the right to lodge a complaint with your local data protection supervisory authority.

To exercise any right not available in-app, contact us at info@redshift.llc. We will respond within 30 days.

9. Data Security

We protect your data using industry-standard security measures including encryption in transit (TLS) and secure server infrastructure. API authentication uses cryptographic bearer tokens. While no method of electronic storage is 100% secure, we take reasonable precautions to protect your data.

10. Children's Privacy

The App is not directed at children under 16 (or under 13 outside the EU/EEA). We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us so we can promptly address it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the "Last updated" date at the top of this page and, where appropriate, through an in-app notification.

12. Contact Us

If you have questions about this Privacy Policy, your data, or wish to exercise your rights, please contact us at info@redshift.llc.

Redshift Software, LLC
United States