Privacy Policy

Last updated: May 2026

HivePulse is an open-source beekeeping app. This policy explains what data we collect, why we collect it, and the choices you have β€” including how you control whether your apiary appears on the public map.

1. Data we collect

When you register: your email address, chosen display name, and preferred language. When you use the app: apiary names and GPS coordinates (if you enter them), hive details, and inspection records you log. We do not collect device identifiers, advertising IDs, or precise location data without you explicitly entering coordinates in the app.

2. Public map β€” opt-in

The public map shows anonymised apiary pins to help visualise global beekeeping activity. Participation is strictly opt-in. By default every apiary you create is private β€” it never appears on the map and is never exposed via the public API. You can enable 'Show on public map' per apiary in the app settings at any time and disable it again just as easily. When enabled, the pin shows your apiary name, GPS coordinates, and hive count. No user identity or inspection detail is ever shared publicly.

3. How we use your data

Your data is used solely to run the app (authentication, storing and displaying your records) and, only if you opt in, to show your apiary pin on the public map and contribute aggregate counts to the global statistics (total apiaries, hives, inspections). We do not sell, trade, or rent personal data. We do not use it for advertising.

4. Legal basis (GDPR)

For EU/EEA users, we process your data on the basis of contract performance (Art. 6(1)(b) GDPR) for the core app features, and on the basis of your explicit consent (Art. 6(1)(a) GDPR) for public map participation. You can withdraw consent at any time by toggling the 'Show on public map' switch off.

5. Data retention

Your account data is kept for as long as your account is active. You can request full deletion by contacting us at the address below β€” we will delete your account and all associated records within 30 days. Anonymised aggregate statistics (total counts) that have already been served publicly cannot be retracted.

6. Your rights

Under GDPR you have the right to access, rectify, erase, and port your personal data, and to object to processing. To exercise these rights, contact us at privacy@HivePulse.app. If you believe your rights have not been respected, you may lodge a complaint with your national data protection authority.

7. Security

Passwords are hashed with bcrypt and never stored in plain text. API access requires a signed JWT token. Data in transit is encrypted via TLS. We review security practices regularly.

8. Contact

Questions about this policy or your data? Email us at privacy@HivePulse.app.