ReadyPlan Privacy Policy

Welcome to the ReadyPlan by M.A.D. Gear LLC ("ReadyPlan," "we," "us," or "our") privacy policy. This Privacy Policy explains how we collect, use, store, protect, and disclose your information when you use our mobile application and related services (collectively, the "App").

Your privacy is of utmost importance to us. We are committed to protecting your personal data and ensuring transparency about our data practices.

1. Information We Collect

When you use ReadyPlan, we collect the following types of information:

Account Information: To create an account, we use Firebase Authentication. This service may collect or process identifiers such as your email address, phone number, or other credentials you provide for authentication purposes. We store your user authentication status.

User-Generated Content: Any data you voluntarily input into the App, including but not limited to information on your Condition/Plan sheets, EXFIL Plan sheets, PACE Plan sheets, Authentication Tables, Card of the Day entries, One-Time Pads, Inventory Lists, Go-Bag Packing Lists, Vehicle Checklists, and any other plans, notes, or data you create and store within the App ("User Data"). This data is stored in Firebase/Firestore.

Group Information: If you choose to use features that allow sharing plans or data with a group, we will store information about your group memberships and the data shared within those groups.

Analytics & Attribution Data (Amplitude and AppsFlyer):
To help us operate, improve, and understand how people discover and use the App, we collect analytics and attribution information using Amplitude (product analytics) and AppsFlyer (install and campaign attribution). The categories of data may include:

  • App usage events and interactions (e.g., screens viewed, feature usage, timestamps, session duration, crash/diagnostic events).

  • Device and app information (e.g., device model, OS version, app version, language, time zone, country/region derived from IP address).

  • Identifiers and attribution signals (e.g., Amplitude device/user IDs; mobile advertising identifiers such as IDFA on iOS or GAID/AAID on Android when available; IP address; referrer/campaign parameters; install timestamp).
    We do not include the contents of your plans or notes (“User Data”) in analytics or attribution events.

We do not knowingly collect precise geolocation unless you grant permission for features that require it.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve the App and its features.

  • To authenticate users and ensure the security of your account.

  • To store and display your User Data as directed by you.

  • To enable sharing of User Data within groups, if you choose to use such features.

  • To communicate with you about your account or updates to the App (e.g., security updates, changes to features), if necessary.

  • Analytics & Product Improvement (Amplitude): To understand feature adoption and app performance, diagnose issues, and guide improvements.

  • Attribution & Campaign Measurement (AppsFlyer): To understand how users discover ReadyPlan, attribute installs or events to marketing channels, and measure the effectiveness of our campaigns.

3. How We Store and Secure Your Information

We take the security of your data very seriously.

Data Storage: Your User Data is stored in Firebase Firestore, a cloud-hosted NoSQL database provided by Google. Your authentication information is managed by Firebase Authentication, also a Google service.

Data Encryption:
Data in Transit: All data transmitted between your device and our Firebase backend (Firestore and Authentication) is encrypted using HTTPS (Hypertext Transfer Protocol Secure).
Data at Rest: Firebase Firestore automatically encrypts all data at rest. Google uses multiple layers of encryption to protect data stored in its data centers.

Data Security Measures:

  • We utilize Firebase Security Rules to control access to your data in Firestore. These rules are configured to ensure that only authenticated users can access their own data or data explicitly shared with them through group features.

  • Firebase services are built on Google's robust infrastructure and benefit from Google's extensive security measures designed to protect data from unauthorized access, disclosure, alteration, and destruction.

  • We implement industry-standard best practices in our app development to further secure your data.

No Other User Access: No other individual user of ReadyPlan will have access to your personal User Data unless you explicitly share it with them through a designated group feature within the App.

No Third-Party Access to Firestore User Data: Outside of the necessary operational access by Google as the provider of Firebase services (governed by Google's own privacy policies and security commitments for Firebase), no other outside third parties are granted access to the raw data stored in our Firestore database. Analytics and attribution providers (Amplitude and AppsFlyer) receive event/metadata as described above, not the content of your plans.

4. Data Sharing and Disclosure

We do not share, sell, rent, or trade your personal information or User Data with any outside third parties for their marketing or any other purposes.

Service Providers:

  • Firebase (Google): Backend services including authentication and data storage.

  • Amplitude, Inc.: Product analytics services that process usage events and device/app metadata on our behalf to help us understand and improve App performance and features.

  • AppsFlyer Ltd.: Attribution services that process install and campaign-related signals on our behalf to measure the effectiveness of our marketing and user acquisition efforts.
    These providers act as processors/service providers and are contractually restricted from using your personal information except to provide services to us or comply with legal requirements.

Attribution Partners via AppsFlyer:
If you arrived at ReadyPlan via an advertisement, limited attribution data (e.g., an install or post-install event tied to an advertising identifier or campaign ID) may be shared with the relevant ad network or partner through AppsFlyer solely for measurement and fraud-prevention purposes. We do not permit partners to use this data to build independent profiles for their own marketing.

Group Sharing: If you choose to share your User Data with a group within the App, members of that group will have access to the specific User Data you have shared with them. You control what data is shared and with which groups.

Legal Requirements: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend our rights or property, (iii) act in urgent circumstances to protect the personal safety of users of the App or the public, or (iv) protect against legal liability.

International Transfers: Our service providers (including Google/Firebase, Amplitude, and AppsFlyer) may process data in the United States and other countries. Where required, we take steps designed to ensure appropriate safeguards for such transfers.

5. Data Retention

We store your User Data for as long as your account is active or as needed to provide you with the App's services.

User-Controlled Deletion: You can delete your User Data or your entire account from within the App. Upon deletion of your account, your associated User Data will be permanently deleted from our active Firebase/Firestore database in accordance with Firebase's data deletion processes. Please note that some data may remain in backups for a limited period as per Firebase's operational procedures before being fully expunged.

Analytics & Attribution Data: Event-level analytics and attribution data may be retained for operational and reporting needs consistent with the purposes described in this Policy. You can contact us to request deletion where applicable, and we will relay deletion requests to our processors as required.

6. Your Data Rights

Depending on your jurisdiction, you may have certain rights regarding your personal information. These may include the right to:

  • Access the personal information we hold about you.

  • Request correction of inaccurate personal information.

  • Request deletion of your personal information (as described in Section 5).

  • Object to or restrict certain processing of your personal information.

You can typically manage your User Data directly within the App. For requests related to your account or data that cannot be managed through the App, please contact us using the details below.

Device-level advertising controls (IDFA & Android Ad ID):
You can adjust system settings that limit the use of your device’s advertising identifier for attribution and measurement:

  • iOS: In Settings ▸ Privacy & Security, you can manage Tracking (turn “Allow Apps to Request to Track” on/off globally or per app) and adjust Apple Advertising preferences. These settings restrict access to your IDFA and may limit attribution.

  • Android: In Settings (path may vary by device), look for Privacy ▸ Ads to Delete advertising ID (Android 12+) or Opt out of Ads Personalization on earlier versions. These settings limit use of your Android advertising identifier.
    Note: OS menus and options vary by device and version; the controls are provided by Apple/Google and may affect analytics/attribution fidelity.

(Note: At this time, ReadyPlan does not provide an in-app setting to disable analytics or attribution events.)

7. Children's Privacy

ReadyPlan is not intended for use by children under the age of 13 (or a higher age threshold if stipulated by applicable local laws). We do not knowingly collect personal information from children under this age. If we become aware that we have collected personal information from a child under the relevant age without parental consent, we will take steps to delete that information.

8. AI-Powered Features and Data Processing

Overview of AI Services
ReadyPlan incorporates artificial intelligence features to enhance your emergency preparedness planning experience. These AI-powered tools, including our AI Chat Assistant, AI Planning Assistant and AI Inventory Assistant, are designed to provide personalized recommendations, generate content suggestions, and assist with planning activities. By using these features, you acknowledge and consent to the data processing practices described below.

Third-Party AI Service Providers
Our AI features are powered by OpenAI's technology, including but not limited to GPT models and associated APIs. When you interact with our AI features, your data may be processed by OpenAI and other third-party AI service providers. We have implemented appropriate safeguards with these providers to protect your profile information, but you should be aware that your conversational data will be transmitted to and processed by these external services.

Data Collection and Processing for AI Features
When you use our AI-powered features, we collect and process the following information: All messages, prompts, and responses exchanged between you and our AI assistants are collected and may be temporarily stored for processing purposes. This includes both your input text and the AI-generated responses.

Data Transmission and Security
Your conversations with AI assistants are transmitted securely using industry-standard encryption protocols (HTTPS/TLS). However, please be aware that: Data is transmitted to third-party AI service providers for processing. While we use encryption in transit, we cannot guarantee the security practices of third-party providers. You should avoid sharing sensitive personal information, passwords, financial details, or other confidential data in AI conversations.

Data Retention and Storage
Conversation History: Your AI conversation history may be stored locally on your device and/or on our secure servers for a limited period to maintain conversation context and improve user experience. You can clear your conversation history at any time using the clear/refresh function within the AI interface.
Processing Data: Data sent to third-party AI providers may be retained by those providers according to their own data retention policies. We recommend reviewing OpenAI's privacy policy and data usage policies for specific information about their data handling practices.

Data Sharing and Third-Party Access
AI Service Providers: Your conversation data is shared with our AI service providers (primarily OpenAI) for the purpose of generating responses and providing AI functionality. This sharing is necessary for the AI features to function.
No Marketing Use: We do not use your AI conversation data for marketing purposes or share it with third parties for advertising.
Aggregated Data: We may use aggregated, anonymized data derived from AI interactions to improve our services, but this data cannot be used to identify individual users.

International Data Transfers
AI processing may involve transferring your data to servers located outside your country of residence, including but not limited to the United States where OpenAI's servers are located. By using our AI features, you consent to these international data transfers.

Your Rights and Controls
You have the following rights regarding your AI-related data:
Conversation Management: You can clear your conversation history at any time using the built-in clear function in our AI interfaces.
Opt-Out: You can choose not to use AI features entirely. These features are optional and not required for basic app functionality.

Limitations and Disclaimers
AI-Generated Content: All AI responses are generated by artificial intelligence and may contain inaccuracies, outdated information, or "hallucinations" (false information presented as fact). You should verify important information from authoritative sources.
No Professional Advice: AI features do not provide professional medical, legal, financial, or emergency response advice. In actual emergencies, always contact appropriate emergency services and follow official guidance.
No Warranty: We provide AI features "as is" without warranties of accuracy, completeness, or fitness for any particular purpose.

Consent and Agreement
By using our AI features, you explicitly consent to the data processing practices described in this section. If you do not agree with these practices, please do not use the AI-powered features of our application.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new Privacy Policy within the App or through other communication channels. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted.

Contact

Should you have any questions about our privacy practices or this Privacy Policy, or if you would like to exercise any of the rights available to you, please call or email us at info@madgear.shop or contact us at 22335 Exploration Drive, Suite 2030, California, MD, 20653, US.

For the purpose of applicable data protection laws and if not explicitly stated otherwise, we are the data controller of your personal information.