Draft — Not Legally Reviewed

This is a placeholder privacy policy template and has not been reviewed by legal counsel. It is provided for informational purposes only and should not be relied upon as legal advice.

Privacy Policy

Last updated: March 2025

LoopString, Inc. ("LoopString," "we," "us," or "our") operates the LoopString IoT automation platform accessible at app.loopstring.io and this marketing website at loopstring.io (collectively, the "Service"). This Privacy Policy describes how we collect, use, and share information when you use our Service.

1. Information We Collect

Account Data

When you create an account, we collect your email address, display name, and authentication credentials (managed by Firebase Authentication). If you sign in with Google OAuth, we receive your Google account's email and profile information.

Device Telemetry

Sensor readings, actuator states, and system metrics sent from your connected Raspberry Pi devices are stored in Firebase Realtime Database (RTDB) and Firebase Firestore. This data is associated with your account and the devices you have registered.

Usage Analytics

We use Google Analytics and Google Tag Manager to collect anonymized usage data including pages visited, session duration, and browser/device information. This data helps us improve the product.

Billing Data

Subscription billing is processed by Stripe. LoopString never stores credit card numbers or payment instrument details. Stripe provides us with subscription status, plan tier, and customer identifier only.

2. How We Use Your Data

  • Provide and operate the LoopString platform
  • Display real-time sensor data and historical analytics in the dashboard
  • Send email alerts and notifications based on your configured thresholds
  • Process subscription payments via Stripe
  • Diagnose technical issues and improve platform reliability
  • Communicate product updates and support information

3. Data Storage

Your data is stored on Google Cloud infrastructure (Firebase RTDB, Firestore, and Firebase Hosting), which operates data centers primarily in the United States. Firebase services are SOC 2 compliant. All data is encrypted in transit via TLS and at rest.

4. Third-Party Services

  • Firebase (Google): Authentication, Realtime Database, Firestore, Cloud Functions, Hosting — see Firebase Privacy Policy
  • Stripe: Subscription billing and payment processing — see Stripe Privacy Policy
  • Tailscale: VPN mesh networking for secure device access — see Tailscale Privacy Policy
  • Google Analytics / Google Tag Manager: Anonymized usage analytics

5. Cookies and Tracking

We use session cookies required for authentication (Firebase Auth). Google Analytics uses cookies to track anonymized usage patterns. We do not use advertising cookies or sell your data to third parties for advertising purposes.

6. Your Rights

You have the right to:

  • Access: Request a copy of your account data and device telemetry
  • Deletion: Delete your account and associated data from your account settings or by contacting us
  • Export: Export historical sensor data from the analytics section of the dashboard
  • Correction: Update your account information via account settings

7. Data Retention

Account data is retained as long as your account is active. After account deletion, we retain anonymized usage data for up to 90 days for aggregate analytics purposes. Device telemetry in Firestore is subject to per-tier data retention limits as described in our subscription terms.

8. Children's Privacy

The LoopString Service is not directed at individuals under 16 years of age. We do not knowingly collect personal information from children under 16.

9. Changes to This Policy

We may update this Privacy Policy periodically. We will notify registered users of material changes via email or in-app notification. Continued use of the Service after such notice constitutes acceptance of the updated policy.

10. Contact

For privacy-related inquiries, data access requests, or deletion requests, contact us at:

LoopString, Inc.
Email: support@loopstring.io