Privacy Policy
How Roostini handles your information.
This page explains what data Roostini may use, why it is used, who may process it, and the choices available to you. Last updated: July 16, 2026.
Privacy at a glance
What Roostini stores
Account details plus the roster, location, flight, document, sharing, and financial data you choose to use.
No advertising tracking
Roostini does not sell personal data, serve third-party ads, or track you across other companies' apps or websites.
When permissions are used
Calendar, camera, photo, location, and notification permissions are used only for the related features you request.
How to contact us
Privacy requests, support questions, and deletion requests all go to hello@roostini.com.
1. Scope
This policy explains how Roostini handles personal data when you use the Roostini mobile app, its account and sharing features, or the public Roostini website. Roostini is operated from the United States, is designed for professional flight crew, and is not a replacement for an airline's official systems.
2. Data Roostini handles
- Account and identity data: name, email address, Firebase user ID, sign-in provider, authentication timestamps, and information returned when you choose Sign in with Apple or Google Sign-In.
- Professional profile data: role, rank or position, airline, home base, aircraft type, and an optional profile/avatar image. If you upload an avatar, Roostini stores the image itself, not only its filename or metadata.
- Roster and operational data: flights, schedules, routes, airports, trip and duty times, standby entries, leave or availability, flight status, aircraft and gate information, calendar identifiers, logbook data, layover notes, saved spots, hotel or pickup details, packing/readiness choices, and other notes you enter.
- Address and location data: saved commute, hotel, pickup, or other addresses; address-search text and place identifiers; and precise or approximate device coordinates when you explicitly choose to use your current location for a one-time traffic estimate.
- Financial data: pay and per-diem rates, currency, tax settings, earnings estimates, expenses, reimbursement-related details, and generated tax or pay summaries. Roostini is not designed to collect payment-card or bank-account credentials.
- Health and professional-document data: passport number, nationality, visa information, medical or vaccination information, licences, ratings, certificates, training or recency records, document identifiers, issue and expiry dates, notes, and reminders.
- Photos, scans, and files: complete images you choose for a profile photo or document attachment, complete images or PDFs you choose for roster import, and related file metadata.
- Sharing and crew-presence data: roster or availability details included in a share link and, if you opt in to same-flight crew visibility, your display name, role or position, flight number, route, date, and visibility-expiry time.
- Device and notification data: app-installation and device identifiers, Apple push and Expo push tokens, notification preferences, app version, operating-system information, device model, language, and time zone where supplied by the notification or platform services.
- Support, security, and usage data: support messages, feature actions, request timestamps, account-linked rate-limit counters, App Check or device-attestation results, authentication and account-deletion security records, response codes, and limited error or diagnostic details. Some operational, security, and error records are linked to your account so Roostini can protect the service, investigate issues, and provide support. They are not used to build an advertising profile.
- Website data: ordinary hosting and security information such as request time, browser or device type, and IP address that may be processed by the website host.
Some app information is also cached on your device so the app can load faster or continue to show data when connectivity is limited.
3. How Roostini uses data
- Authenticate users, maintain sessions, secure accounts, and process account deletion.
- Save, sync, display, import, export, and restore the roster, flight, logbook, standby, document, financial, profile, and preference data you choose to use.
- Provide flight, airport, weather, map, address-search, traffic, OCR, sharing, crew-presence, calendar, and notification features.
- Calculate planning information such as duty, rest, commute, pay, per diem, tax, document-readiness, and expiry reminders.
- Prevent abuse, apply per-account and provider rate limits, verify genuine app requests, investigate errors, and maintain service reliability.
- Respond to support and privacy requests and comply with applicable legal obligations.
Roostini does not sell personal data, serve third-party advertising, or use personal data for tracking you across apps or websites owned by other companies. Roostini does not use collected data for third-party advertising, advertising measurement, or marketing profiling.
4. Location, Places, Routes, and Maps
Location access is optional. When you tap Use current location once, Roostini obtains the device's current precise or approximate coordinates and sends them through Roostini's Firebase backend to Google Routes to calculate a traffic-aware journey. The resulting route data and request details may be held temporarily in operational or provider caches and logs.
If you save a commute start, hotel, pickup point, or other address, that address remains in your Roostini account until you change it, clear it, delete the related item, or delete your account. Address searches and selected place identifiers are processed through Google Places. Map views, directions, or map links may use Google Maps or Apple Maps; opening an external mapping app also subjects the request to that provider's privacy practices.
Location permission is not required for Roostini's core roster and document features.
5. Photos, documents, and roster OCR
Camera and photo-library access is optional and is used only when you choose a related feature. Selected profile images and document attachments may be uploaded to Firebase Storage and linked to your account. When you choose roster scan or OCR, the selected image or PDF is sent through a protected Firebase Cloud Function to Google Cloud Vision for text extraction. The extracted roster text and any flights you confirm may then be stored with your account.
Do not upload information about another person unless you have permission to do so.
6. Sharing and same-flight visibility
Roster sharing is optional. When you create a public share link, anyone who has its unguessable URL can view the flight, trip, roster, or availability details included in that link without signing in. A Roostini roster share link becomes inaccessible seven days after creation. That access expiry is not a promise that the underlying share record is physically deleted at that exact time, and a recipient may already have copied or captured the information.
Same-flight crew visibility is also optional. If you enable it for a flight, other signed-in Roostini users who have enabled visibility for the same flight can see your display name, role or position, flight number, route, and flight date. Visibility lasts until you turn it off or, at the latest, through 36 hours after the flight's departure time. The end of visibility does not necessarily mean the underlying record is physically deleted at that moment.
7. Notifications and calendar
With your permission, Roostini may:
- Schedule local reminders for duties, commute timing, documents, qualifications, or airport information.
- Register an Apple/Expo push token and send operational notifications through Expo's push service and Apple Push Notification service.
- Create, update, or remove Roostini flight events in a device calendar.
Push providers process the device token and notification content needed to deliver a message. Granting calendar access does not by itself upload your unrelated calendar content to Roostini. You can disable these features in Roostini or revoke the permissions in device settings.
8. Service providers and data disclosures
Roostini uses service providers only as needed to operate requested features:
- Google Firebase and Google Cloud: Authentication, Firestore database, Cloud Storage, Cloud Functions, App Check/device attestation, Firebase Hosting, reCAPTCHA protection for public share pages, and supporting infrastructure.
- Apple: optional Sign in with Apple, device calendar and location services, Apple Maps or MapKit links and platform services, and Apple Push Notification service.
- Google identity and feature services: optional Google account sign-in plus Google Maps, Places, Routes, and Cloud Vision.
- Expo: push-notification routing and app-platform services.
- FlightAware AeroAPI: flight schedules, live status, gates, aircraft assignment, and timetable information.
- AVWX and FAA data services: airport weather, METAR, TAF, and airport-status information where available.
- Email delivery providers: the email service you use and Roostini's configured mailbox provider process messages you choose to send to support.
Requested flight numbers, routes, dates, airports, addresses, coordinates, images, files, device tokens, support messages, and ordinary network metadata may be sent to the relevant provider when necessary to perform the feature. Roostini requires providers that process personal data on its behalf to provide privacy and security protections equivalent to those described in this policy, subject to their applicable terms and contractual commitments. Providers may also process data under their own policies where they act independently, such as when you use an identity provider or open Apple Maps or Google Maps directly.
Roostini may disclose information if reasonably necessary to comply with law, protect users or the service, investigate fraud or security issues, or complete a business transfer subject to appropriate confidentiality and data-protection safeguards.
9. Storage, security, and international processing
Roostini uses access controls, authenticated requests, Firebase Security Rules, App Check, rate limiting, and encryption in transit and at rest where supported by the platform and service providers. No system can guarantee absolute security.
Data may be processed in countries where Roostini's service providers operate. Where applicable law requires it, Roostini uses appropriate safeguards for international transfers.
10. Retention and deletion
Account data is generally kept while your account is active and as needed to provide the features you use. You can edit or delete many records inside the app. Feature-specific access periods, such as the seven-day public share-link window and the same-flight visibility window through 36 hours after departure, limit visibility but do not promise immediate physical erasure of the related record.
To delete your account, open Settings > Delete Account in the app and confirm the permanent deletion. A recent sign-in may be required, and an Apple-linked account may require confirmation with Sign in with Apple. If the app cannot confirm completion immediately, the account is locked and the deletion can finish securely in the background. If you cannot access the app, contact hello@roostini.com from your account email where possible.
Account deletion removes the authentication account and sweeps account-linked profile, flight, layover, saved-spot, standby, expense, document, qualification, roster-import, share-link, push-token, same-flight-presence, and uploaded-file data under Roostini's control. Limited records may be retained for the time reasonably necessary to complete deletion, protect against fraud or abuse, resolve disputes, maintain security, meet legal obligations, or age out of backups, caches, and provider systems.
Deletion cannot remove copies that you exported, placed in your personal calendar, shared with another person, or stored outside Roostini. Review those copies separately.
11. Your choices and rights
Depending on applicable law, you may have rights to request access, correction, deletion, restriction, objection, or portability of your personal data, and to withdraw consent where processing relies on consent. You can:
- Update profile, preferences, addresses, records, and documents in the app.
- Turn off sharing, same-flight visibility, notifications, calendar sync, and other optional features.
- Revoke camera, photo, calendar, location, or notification permission in device settings.
- Delete individual records or delete the account.
- Contact hello@roostini.com with a privacy request.
Roostini may need to verify your identity before completing a request. You may also have the right to complain to your local data-protection authority.
12. Children
Roostini is intended for professional flight crew and is not directed to children. Roostini does not knowingly collect personal data from a child who cannot lawfully consent to the processing. If you believe a child has provided personal data, contact hello@roostini.com so it can be reviewed and deleted where appropriate.
13. Changes and contact
This policy may be updated when Roostini's features, providers, or legal obligations change. The current version and its update date will remain available on this page.
Contact Roostini
Roostini is operated from the United States. For privacy questions, rights requests, or account-deletion support, contact hello@roostini.com.