ScoutView AI • OnSneak • OnTracks

Effective Date: April 23, 2026

Last Updated: April 23, 2026

1. Introduction

This Privacy Policy describes how Pat Sewall (“we,” “us,” or “our”) collects, uses, stores, and protects information when you use our mobile applications ScoutView AI, OnSneak, and OnTracks (collectively, the “Apps”). These Apps provide outdoor navigation, wildlife identification, route optimization, and GPS coordinate tools for hunters, wildlife observers, and backcountry recreationists.

We designed these Apps with a privacy-first architecture. The core functionality of our Apps operates entirely on your device without transmitting personal data to external servers. We believe your location in the backcountry, your biometric health data, and your hunting and wildlife observation activities are among the most private information you possess, and we treat them accordingly.

Our Apps offer optional premium features and subscriptions that are processed through Stripe, a PCI-certified payment processor. Payment processing is the primary exception to our on-device-only data model, and is described in detail in this policy.

2. Information We Collect

We categorize the information our Apps interact with into three groups: data that stays on your device, data processed by our payment provider, and other data that may leave your device.

2.1 Data That Stays on Your Device (Never Transmitted)

The following data is processed and stored exclusively on your device. We never collect, transmit, receive, or have access to this data:

Location Data. GPS coordinates, altitude, compass heading, barometric pressure readings, and all location history including waypoints, tracks, routes, and approach paths. All location processing—including route optimization, terrain graph construction, and navigation guidance—occurs on-device.
Biometric and Health Data. Heart rate, heart rate variability (HRV), blood oxygen saturation (SpO2), respiration rate, skin temperature, step cadence, caloric expenditure, and the computed Exertion Capacity Index (ECI). This data is acquired from paired wearable devices via Bluetooth Low Energy or platform health frameworks (Apple HealthKit, Google Health Connect) and processed entirely on your device. We never transmit, store, or access your biometric data.
Camera Images and Wildlife Identification Results. Photographs captured by or imported into the Apps, trail camera images loaded from SD cards, and all computer vision inference results including object detection bounding boxes, species classifications, and confidence scores. All neural network inference for wildlife identification executes on your device’s neural processing unit from locally cached models. No images or identification results are transmitted off-device.
Cached Map and Terrain Data. Downloaded vector tile data including digital elevation models, land cover classification layers, trail networks, contour data, and hydrographic features stored on your device for offline use. Once downloaded, this data is accessed only locally.
Regulatory and Ephemeris Data. Cached hunting regulation databases, legal shooting hours, and sunrise/sunset calculation data stored locally for temporal compliance features.
Route Optimization Data. All terrain traversal graphs, neural terrain cost computations, multi-objective optimization results, wind-scent geometry calculations, noise profile assessments, and visual exposure analyses. These computations execute entirely on your device’s processor and neural processing unit.
Personal Settings and Profiles. User-configured fitness profiles, age, activity preferences, species targets, route weight preferences, setup buffer times, minimum effective time settings, and haptic feedback configurations.

2.2 Payment Data Processed by Stripe

When you purchase a premium subscription, unlock a paid feature, or make any in-app purchase processed outside the Apple App Store or Google Play Store billing systems, payment is handled by Stripe, Inc., our third-party payment processor. The following describes how payment data is handled:

What You Provide to Stripe. When you enter payment information (credit card number, debit card number, expiration date, CVV/CVC, and billing postal code or address), this data is collected directly by Stripe’s payment form embedded in our Apps. Your full card number and CVV are transmitted directly from your device to Stripe’s PCI DSS Level 1-certified servers. We never see, receive, process, or store your full credit card number or CVV.
What We Receive from Stripe. After a successful transaction, Stripe provides us with a limited set of information: a unique transaction identifier, the last four digits of your card number, the card brand (e.g., Visa, Mastercard), the transaction amount, the transaction date, the subscription status (active, canceled, expired), and your billing email address if you provide one. We use this information solely to manage your subscription status, provide purchase receipts, and resolve billing disputes.
What We Store. We store your Stripe customer identifier, subscription status, transaction identifiers, and billing email address (if provided) on our payment management system. We do not store any credit card numbers, expiration dates, CVVs, or other sensitive payment credentials. Subscription status may also be cached on your device to enable offline access to premium features.
Apple App Store and Google Play Purchases. If you purchase a subscription through the Apple App Store or Google Play Store instead of through Stripe, your payment is processed entirely by Apple or Google under their respective privacy policies. We receive only a purchase receipt token confirming your subscription status. We do not receive any payment card or billing information from Apple or Google.

2.3 Other Data That May Leave Your Device

The following data may be transmitted from your device in the circumstances described:

Map Tile Downloads. When you download map data for offline use, your device sends geographic bounding box requests to tile data providers (such as Mapbox or OpenStreetMap-based services). These requests necessarily include the geographic area you are requesting. We do not control the privacy practices of tile data providers. Once tiles are downloaded, no further network requests are made for that area.
App Store and Platform Analytics. If you have enabled analytics sharing with Apple or Google, those platforms may collect anonymized usage statistics, crash reports, and performance metrics. We do not receive personally identifiable information from these analytics. You can disable platform analytics in your device’s settings.
Satellite Communicator Data. If you pair a satellite communicator (such as a Garmin inReach) with our Apps and an emergency alert is triggered, the satellite communicator transmits your location and emergency message through its own service. This transmission is handled by the communicator’s service provider under their privacy policies, not by our Apps.
Voluntary Support Communications. If you contact us for technical support, you choose what information to share. We do not require you to share location, biometric data, or images for support purposes.

3. How We Use Information

Our Apps operate on a privacy-first, on-device architecture. We do not collect or use your personal data for any purpose beyond enabling App features on your device and processing payments. Specifically:

We do not use your data for advertising, marketing, or profiling.
We do not sell, rent, license, or share your personal data with any third party, except as required to process payments through Stripe as described in Section 2.2.
We do not use your data to train machine learning models. The neural network models in our Apps are pre-trained and cached on your device; they do not learn from or transmit your data.
We do not build user profiles, behavioral models, or analytics dashboards from your data.
We do not track your location or movements. Your device tracks your location for navigation purposes; we have no access to this data.
Payment data received from Stripe (transaction IDs, last four digits, subscription status, billing email) is used solely for subscription management, purchase receipts, and billing dispute resolution. It is never used for marketing, analytics, or profiling.

4. Data Storage and Security

4.1 On-Device Storage

All personal data—including location history, biometric data, images, and route data—is stored on your device using the platform’s native secure storage mechanisms. On iOS, sensitive data may be stored in the Keychain or protected data containers. Data is protected by your device’s passcode, biometric lock (Face ID/Touch ID), and hardware encryption.

4.2 Payment Data Security

All payment card data is handled by Stripe in accordance with Payment Card Industry Data Security Standard (PCI DSS) Level 1 compliance, the highest level of certification available. Stripe is independently audited and certified as a PCI Level 1 Service Provider. Key security measures include:

Your full credit card number and CVV are transmitted directly from your device to Stripe’s servers over TLS-encrypted connections. These values never pass through our servers or infrastructure.
Stripe tokenizes your payment method, replacing your card details with a non-reversible token. We interact only with these tokens; we cannot reconstruct your card number from a token.
We store Stripe customer identifiers and transaction metadata on systems that comply with industry-standard security practices including encryption at rest, access controls, and audit logging.
Billing email addresses, if provided, are stored alongside your Stripe customer record for receipt delivery and billing communications only.

4.3 Minimal Cloud Footprint

We do not operate cloud servers or databases that store your location data, biometric data, images, route data, or any on-device content. The only data we store outside your device is the limited payment and subscription information described in Section 2.2 and Section 4.2. Your outdoor activity data exists only on the device where it was generated. If you delete the App, all on-device data is deleted. To request deletion of your payment records, see Section 7.1.

4.4 Data Portability

You may export your data (waypoints, tracks, routes) in standard formats (GPX, KML, GeoJSON) at any time using the App’s export features. Exported files are saved to your device’s local storage or shared via the platform’s native share sheet. We have no access to exported files.

5. Third-Party Services

Our Apps interact with the following categories of third-party services:

5.1 Stripe (Payment Processing)

Stripe, Inc. processes all credit card and debit card payments for our Apps. When you make a purchase, Stripe collects your payment card information directly through its embedded payment elements. Stripe’s collection, use, and storage of your payment data is governed by Stripe’s Privacy Policy (https://stripe.com/privacy) and Stripe’s Terms of Service. Stripe is certified as a PCI DSS Level 1 Service Provider.

Stripe may use your payment data for fraud detection, regulatory compliance, and to improve its services, as described in Stripe’s Privacy Policy. We do not control Stripe’s use of data it collects directly. We encourage you to review Stripe’s Privacy Policy.

We share the following with Stripe to facilitate transactions: the purchase amount, a description of the item or subscription being purchased, and your billing email address if you provide one. We do not share your location data, biometric data, images, or any on-device content with Stripe.

5.2 Apple App Store / Google Play Store (In-App Purchases)

If you purchase subscriptions through Apple’s App Store or Google’s Play Store, those purchases are processed entirely by Apple or Google. We receive only a purchase receipt token confirming your subscription status. We do not receive your payment information from these platforms. Apple’s and Google’s respective privacy policies govern the collection of your payment data in these transactions.

5.3 Map Tile Providers

When downloading map data for offline use, our Apps request vector tiles from providers such as Mapbox, OpenMapTiles, or similar services. These providers may log the geographic areas you download and your device’s IP address. After initial download, no further requests are made for cached areas.

5.4 Apple HealthKit / Google Health Connect

If you choose to connect a wearable health device, our Apps read biometric data through Apple HealthKit (iOS/watchOS) or Google Health Connect (Android). We access only the data categories you authorize. We do not write data back to these frameworks. All data read is processed on-device and never transmitted. You can revoke access at any time in your device’s Settings.

5.5 Bluetooth Devices

Our Apps may connect to wearable sensors and satellite communicators via Bluetooth Low Energy. Data received over Bluetooth is processed on-device. We do not transmit Bluetooth-acquired data to any server.

5.6 Satellite Communicators

Integration with satellite communicators (e.g., Garmin inReach) enables emergency communication features. Emergency messages are transmitted through the communicator’s satellite network, not through our infrastructure. We do not receive or store emergency communications.

6. Children’s Privacy

Our Apps are not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have inadvertently received payment information from a child under 13 without parental consent, we will delete that information and cancel the associated transaction. If you believe a child under 13 has made a purchase through our Apps, please contact us at the address in Section 12.

7. Your Rights and Choices

7.1 Data Access and Deletion

On-device data: Because all location, biometric, image, and route data remains on your device, you have complete control over this data. You can view, export, or delete it through the Apps’ settings. Uninstalling the App removes all on-device data.

Payment data: To request a copy of or deletion of the payment and subscription records we hold (Stripe customer ID, transaction history, billing email), contact us at the address in Section 12. We will process deletion requests within 30 days, subject to any legal obligation to retain records for tax, fraud prevention, or dispute resolution purposes. Deleting your payment records will cancel any active subscriptions.

7.2 Permissions

Our Apps request the following device permissions. All are optional except where noted:

Location (Required for Navigation). Used for GPS positioning, route navigation, and terrain analysis. Location data is processed on-device and never transmitted. You can revoke this permission at any time.
Camera (Optional). Used for wildlife photography and computer vision species identification. Images are processed on-device. No images are transmitted.
Health Data (Optional). Used to read biometric data from wearable devices via HealthKit/Health Connect. You authorize specific data categories individually. All processing is on-device.
Bluetooth (Optional). Used to communicate with paired wearable sensors and satellite communicators. Data received is processed on-device.
Local Storage (Required). Used to store cached map tiles, neural network models, and user data on your device.
Notifications (Optional). Used for temporal compliance alerts, departure reminders, and navigation guidance when the App is in the background.
Internet Access (Required for Purchases and Downloads). Used to download map tiles, neural network model updates, and to process payments through Stripe. No location, biometric, image, or route data is transmitted over the network connection.

7.3 Opt-Out

You can disable any individual device permission at any time through your operating system settings. If you do not wish to provide payment information, you may use the free features of the Apps without making any purchase. If you have an active subscription and wish to cancel, you may do so through the App, through your Stripe billing portal, or through the App Store/Play Store, depending on how the subscription was purchased.

8. California Privacy Rights (CCPA/CPRA)

Under the California Consumer Privacy Act and California Privacy Rights Act, California residents have the right to know what personal information is collected, request deletion, opt out of sales or sharing, and not be discriminated against for exercising these rights.

On-device data: We do not collect, store, transmit, sell, or share any on-device data (location, biometrics, images, routes). These rights are satisfied by the architecture of our Apps.

Payment data: We collect limited payment-related information as described in Section 2.2. We do not sell or share this information. You may request disclosure or deletion of your payment records by contacting us at the address in Section 12. We will respond within 45 days as required by law.

9. International Users (GDPR)

For users in the European Economic Area, United Kingdom, and Switzerland:

Data Controller. For on-device data, we do not act as a data controller because we do not collect or process this data. For payment data processed through Stripe, we act as a data controller and Stripe acts as a data processor. Stripe may also act as an independent controller for fraud prevention and its own business purposes as described in Stripe’s Privacy Policy.
Legal Basis. For on-device processing: your consent (you installed and use the App) and legitimate interest (enabling requested features). For payment processing: performance of a contract (you purchased a subscription) and legal obligation (tax and financial record-keeping requirements).
Data Transfers. On-device data is never transferred. Payment data is processed by Stripe, which may transfer data to the United States and other jurisdictions. Stripe relies on Standard Contractual Clauses and other transfer mechanisms as described in its Privacy Policy.
Your Rights. You have the right to access, rectify, erase, restrict processing of, and port your personal data. For on-device data, these rights are exercised directly on your device. For payment data, contact us at the address in Section 12. You also have the right to lodge a complaint with your local data protection authority.
Data Protection Officer. For privacy inquiries, contact us at the address in Section 12.

10. Data Retention

On-device data (location, biometrics, images, routes, settings) is retained on your device until you delete it or uninstall the App.

Payment and subscription data is retained as follows:

Active subscription records: retained for the duration of your subscription plus 30 days after cancellation.
Transaction records (transaction ID, amount, date, last four digits): retained for 7 years as required for tax and financial record-keeping obligations.
Billing email address: retained while your subscription is active and for 30 days after cancellation, unless retained as part of a transaction record.
Stripe customer identifier: retained as long as any associated transaction record is retained.

You may request deletion of payment records at any time by contacting us. We will delete all records except those we are legally required to retain.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes—particularly any changes affecting what data leaves your device or how payment data is handled—we will notify you through the App or through App Store/Play Store update notes. The “Last Updated” date at the top indicates the most recent revision. Continued use after a policy update constitutes acceptance.

Our commitment to on-device, privacy-first architecture for outdoor activity data is a foundational design principle. Any future changes will maintain or strengthen our data minimization practices for location, biometric, and wildlife observation data.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy, our data practices, or your payment records, please contact us:

Pat Sewall

Boise, Idaho, United States

Email: privacy@scoutviewai.com

Summary: What Data Goes Where

For quick reference:

Data Type	Where It Goes
GPS / Location	On-device only. Never transmitted.
Heart rate, HRV, SpO2	On-device only. Never transmitted.
Camera images	On-device only. Never transmitted.
Species ID results	On-device only. Never transmitted.
Routes & waypoints	On-device only. Exportable by you.
Neural model inference	On-device NPU. No cloud processing.
ECI / fitness data	On-device only. Never transmitted.
Wind / scent calculations	On-device only. Never transmitted.
Temporal compliance	On-device only. Never transmitted.
Credit card number / CVV	Sent directly to Stripe. We never see it.
Last 4 digits / card brand	Received from Stripe. Stored for records.
Billing email	Stored for receipts. Deleted on request.
Transaction IDs / amounts	Stored for tax/legal (7 years).
Subscription status	Stored by us + cached on your device.
Map tile downloads	Tile provider receives area request.
Crash reports	Only if you enable platform analytics.
Emergency SOS	Via satellite comm. provider, not us.