Privacy Policy

1. Summary

We've written the detail below in full, but here is the short version:

• No account. You don't sign up or log in. We do not ask for your name, email, or phone number to use the App.
• Your survey data stays on your device. Measurements, saved sites, categories, notes, and settings are stored locally on your phone. We do not have a copy and cannot see them.
• Location is used to measure, not to track. GPS is used on-device to place points where you stand. We do not log your location history to our servers — we don't have servers that receive it.
• We use a few trusted providers to render maps, power search, process subscriptions, and measure aggregate app usage and crashes. These are listed in Section 7.
• You are in control. You can clear all App data at any time from Settings, and revoke location permission in your device settings.

2. Who we are

Acrea is operated by Acrea, the developer and operator of the Acrea mobile application (the "Operator", "we", "us" or "our"). For the purposes of the EU/UK General Data Protection Regulation (GDPR), where it applies, we act as the data controller for the limited processing described in this Policy. You can reach us at hello@dewmina.dev.

3. Data we process

Because Acrea has no account system and no content backend, most information you create is stored only on your device (see Section 4). The categories of data that may be processed — and where they go — are:

a. Location data

With your permission, the App accesses your device's GPS location so it can place a survey point at your current position, show your position on the map, and report GPS accuracy. Location is processed on your device. Coordinates are sent to a map provider only when needed to render the map view, perform a search, fetch directions, or generate a map image in a PDF report (see Sections 7 and 9). We do not transmit a continuous location history to ourselves.

b. Survey content you create

Measurements (boundary vertices and the coordinates, area, distance, bearings derived from them), site names, notes, categories, and saved places. This content is stored locally on your device. It is not uploaded to us. It leaves your device only when you choose to export or share it (see Section 8).

c. Search queries

When you search for a place or enter coordinates, the query text (and, for nearby results, an approximate location) is sent to our map/search providers to return results.

d. Usage and diagnostic data

To understand how the App is used and to fix crashes, we collect aggregated, event-level analytics (for example: that an onboarding slide was viewed, a measurement was saved, or an export was triggered) and crash diagnostics (stack traces, device model, OS version, and app version). These events record that an action happened and non-identifying parameters such as counts, the measurement type, the area value, or the chosen export format. They do not include your coordinates, the names you give your sites, your notes, or any directly identifying information. This data is keyed to a randomly generated installation identifier, not to your identity.

We also collect performance and reliability data via Firebase Performance Monitoring to find slow or failing operations. This measures things like app start-up time, screen rendering, and the response time, size, and success of network requests the App makes to the providers listed in Section 7. Network requests are recorded by their endpoint only, with query parameters stripped — so this never includes your search terms, coordinates, or access keys. To produce these measurements the tool also processes technical data such as your device model and OS, network connection and carrier type, and your IP address, which is used only to derive an approximate country and is not retained long-term (see Section 10). As with the analytics above, this data is keyed to a randomly generated installation identifier, not to your identity.

e. Purchase data

If you buy an Acrea Pro subscription, the purchase is handled by the Apple App Store or Google Play and our subscription provider (RevenueCat). We receive your subscription status and an anonymous subscriber identifier so we can unlock premium features and restore purchases. We never receive your full payment-card details — those are handled by the app store.

f. Device and technical data

Standard technical information such as device type, operating system version, language/region, and a non-persistent app-instance identifier, used by the diagnostic and analytics tools above and by the app stores.

4. Data stored on your device

The following are stored locally on your device only, in the App's private storage, and are not transmitted to us:

• Your measurements, saved sites, categories, and notes (local database).
• Your preferences and settings (units, coordinate format, theme, map style, onboarding state).
• Any offline map areas you download for field use.

Deleting the App removes this data from your device. You can also clear it at any time from Settings → Delete all data inside the App.

5. How we use data

• To provide the App's core functions — measuring, mapping, saving, searching, and exporting.
• To display maps and satellite imagery, and to return search and directions results.
• To unlock and restore Acrea Pro features for subscribers.
• To send local reminders you opt into (for example, a notice before a free trial converts) — these are scheduled on your device and are not sent from our servers.
• To diagnose crashes, monitor performance and reliability, and understand aggregate usage so we can improve the App.
• To comply with law, prevent abuse, and protect our rights and users.

We do not sell your personal information, and we do not use your survey content for advertising.

6. Legal bases (GDPR)

Where the GDPR applies, we rely on the following legal bases:

• Consent — for access to your device location and for optional notifications. You can withdraw consent at any time in your device settings.
• Performance of a contract — to deliver the App and the Pro features you purchase.
• Legitimate interests — to keep the App secure, fix crashes, and understand aggregate usage, balanced against your privacy.
• Legal obligation — where we must process data to comply with applicable law.

7. Third-party services

We use the following service providers (sub-processors). Each processes only the data needed for its function and under its own privacy policy:

• Mapbox — map rendering, satellite imagery, geocoding/ search, directions, offline tiles, and static map images used in PDF reports. Receives map requests and the coordinates/queries involved. Privacy policy.
• Google Maps Platform & Google Places — map rendering on the free tier and place search/autocomplete. Receives map requests and search queries. Privacy policy.
• Google Firebase (Analytics, Crashlytics & Performance Monitoring) — aggregate usage analytics, crash diagnostics, and app performance/network timing, as described in Section 3(d). Privacy & security.
• RevenueCat — subscription management. Receives an anonymous subscriber ID and purchase/entitlement status. Privacy policy.
• Apple App Store / Google Play — app distribution and payment processing for subscriptions. Apple · Google.

Map and search providers may use the requests they receive in accordance with their own terms. We send them the minimum needed to render maps and return results.

8. Sharing & exports you create

Acrea lets you export and share your measurements — as a PDF report, or in formats such as KML, GeoJSON, CSV, DXF, or Shapefile, and as a metes-and-bounds legal description. When you do this, you are in control of the resulting file and where it goes (email, messaging, cloud storage, another app, etc.). Once you share a file, its handling is governed by the service or recipient you send it to, not by this Policy.

Exported files and PDF reports may contain precise coordinates and any names or notes you added. Please review what a file contains, and ensure you have the right to capture and share information about the land in question, before distributing it. See the Terms of Use for your responsibilities regarding consent and third-party land.

9. Location data

The App requests "while in use" location access. You can decline, and you can revoke access at any time in your device settings — the App remains usable for tap-defined and coordinate-defined measurements without it, though GPS-based features will be unavailable. We do not run a background location service and do not build a profile of your movements.

10. Data retention

• On-device data is retained until you delete it (per item, via "Delete all data", or by uninstalling the App).
• Analytics and crash data are retained by Firebase for the period set in our project configuration (by default, event data is retained for a limited window and then aggregated/deleted per Google's policies).
• Performance data is retained by Firebase Performance Monitoring on a rolling basis — IP-associated records for about 30 days, and de-identified performance data for about 60 days — before deletion, per Google's policies.
• Subscription records are retained by RevenueCat and the app stores for as long as needed to manage your entitlement and meet legal/financial obligations.

11. Your rights

Depending on where you live (including under the GDPR/UK GDPR), you may have the right to access, correct, delete, restrict, or object to the processing of your personal data, and to data portability. Because most of your data lives only on your device, you can exercise the most important of these directly: view it in the App, export it, or delete it via Settings → Delete all data. For data held by our providers (analytics, crash, subscription), contact us at hello@dewmina.dev and we will help action your request, including relaying it to the relevant provider. You also have the right to lodge a complaint with your local data protection authority.

12. US state privacy rights

If you are a resident of California or another US state with a comprehensive privacy law, you may have rights to know, access, delete, and correct personal information, and to opt out of its "sale" or "sharing". We do not sell or share your personal information as those terms are defined under the California Consumer Privacy Act (CCPA/CPRA) or similar laws, and we do not use it for cross-context behavioral advertising. To exercise any right, contact us at hello@dewmina.dev. We will not discriminate against you for exercising your rights.

13. Children

Acrea is intended for professional and general audiences and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us personal information, contact us and we will delete it.

14. Security

Keeping your data on your device by default is itself a strong privacy protection. For the limited data handled by our providers, we rely on their industry-standard security measures, including encryption in transit. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

15. International transfers

Our service providers may process data on servers located outside your country, including in the United States. Where required, these transfers are covered by appropriate safeguards (such as the European Commission's Standard Contractual Clauses) implemented by those providers.

16. Changes to this Policy

We may update this Policy as the App evolves or as the law requires. We will revise the "Last updated" date above, and for material changes we will provide a more prominent notice in the App or on this site. Your continued use of the App after an update means you accept the revised Policy.

17. Contact us

For any privacy question or request, contact us at hello@dewmina.dev. We will respond within a reasonable timeframe and in any case as required by applicable law.