Privacy Policy

1. Introduction

I Spy Ice ("we," "our," or "the Platform") is committed to protecting your privacy and maintaining your anonymity. This Privacy Policy explains how we collect, use, store, and protect your information when you use our service. We believe in transparency and have designed our system to minimize data collection while providing a functional community resource.

2. Our Privacy Principles

Our approach to privacy is guided by these core principles:

  • No User Accounts: We do not require registration or user accounts, ensuring you remain anonymous.
  • Minimal Data Collection: We only collect data necessary for the Platform to function.
  • Data Protection: We implement technical measures to protect the data we do collect.
  • Transparency: We are open about what data we collect and how we use it.
  • User Control: You control what information you share with us.

3. Information We Collect

3.1 Location Data

When you submit a report, we collect GPS coordinates (latitude and longitude) to display the report on the map. To protect your privacy:

  • Coordinates are rounded to 4 decimal places (approximately ±11 meters accuracy)
  • This prevents pinpointing exact addresses while maintaining usefulness
  • You can choose to provide location via address input instead of GPS
  • Location data is only collected when you actively submit a report

3.2 Device Identifiers

To prevent spam and abuse, we generate a device identifier that is:

  • Created locally on your device on first use
  • Stored in your browser's local storage
  • Hashed (one-way encrypted) before being sent to our servers
  • Used only for rate limiting (preventing multiple reports within 30 minutes)
  • Cannot be used to identify you personally or track you across websites

3.3 Report Content

When you submit a report, you may optionally provide:

  • Notes: Text descriptions you choose to include with your report

This content is entirely optional and under your control. Once approved by administrators, this content becomes publicly visible on the Platform.

3.4 Timestamps

We record timestamps (in UTC) for when reports are created and approved. These timestamps are necessary for the time-based filtering features of the Platform.

3.5 Local Storage Data

The following data is stored locally in your browser and never sent to our servers:

  • Terms and conditions acceptance status
  • Device identifier (before hashing)
  • Date filter preferences (time range and mode selection)
  • Display mode preferences (map or grid view)
  • View mode preferences (cluster or heatmap)

4. Information We Do NOT Collect

We explicitly do not collect:

  • Names, email addresses, or phone numbers
  • IP addresses (beyond what is temporarily required for web requests)
  • Browsing history or activity on other websites
  • Precise device information (model, operating system details, etc.)
  • Social media profiles or identities

5. How We Use Your Information

We use the collected information solely for the following purposes:

  • Display Reports: Location data and optional content are used to display reports on the public map and grid views
  • Rate Limiting: Device identifiers prevent spam by limiting report frequency
  • Content Moderation: Administrators review reports before they appear publicly
  • Platform Operation: Timestamps enable time-based filtering and automatic report expiration

We do not use your information for advertising, marketing, profiling, or any purpose other than operating the Platform.

6. Data Storage and Security

6.1 Where Data is Stored

Your data is stored using Firebase, a cloud service provided by Google:

  • Report data is stored in Cloud Firestore (database)
  • Data is encrypted in transit (HTTPS) and at rest

6.2 Security Measures

We implement several security measures:

  • All data transmission uses HTTPS encryption
  • Device identifiers are hashed using one-way encryption
  • Firebase security rules restrict data access appropriately
  • Admin authentication is required for report approval
  • Regular security updates to all platform components

6.3 Data Retention

Reports are retained indefinitely to maintain historical records. However, reports older than 1 hour are automatically hidden from the default "today" view.

Important: Once a report is approved and made publicly visible, it cannot be deleted or removed. By submitting a report, you acknowledge that the information becomes part of the public record and may be viewed, copied, or archived by other users or third parties. Please carefully consider what information you include before submitting a report.

7. Data Sharing and Disclosure

7.1 Public Information

Once approved by administrators, your reports (including location and notes) become publicly visible to all Platform users. This is the intended function of the Platform.

7.2 Third-Party Services

We use the following third-party services:

  • Firebase (Google): For database, storage, and authentication
  • Vercel: For hosting the web application
  • Google Analytics: For understanding how users interact with the Platform
  • Stadia Maps: For providing map tiles and visualization
  • OpenStreetMap: For map data and geographic information
  • Leaflet: For interactive map functionality

These services have their own privacy policies and may collect data as described in their respective policies. When you view the map, your browser makes requests to these map services which may include your IP address and general location information.

7.3 Legal Requirements

We may disclose information if required by law, such as in response to a valid subpoena or court order. However, given our minimal data collection, we have very limited information that could be disclosed.

7.4 No Sale of Data

We do not sell, rent, or trade your information to third parties for any purpose.

8. Your Rights and Choices

You have the following rights regarding your data:

  • Access: You can view all publicly approved reports on the Platform
  • Control: You choose what information to include in reports (notes are optional)
  • Deletion: You can clear your browser's local storage to remove locally stored data
  • Opt-Out: You can stop using the Platform at any time

Note on Public Data: Once a report is approved and published, it becomes part of the public record and cannot be deleted. Other users may have already viewed, copied, or archived the information. You do not have the right to request deletion of publicly shared reports.

9. Children's Privacy

The Platform is not intended for use by children under 13 years of age. We do not knowingly collect information from children under 13.

10. International Users

The Platform is hosted in the United States. If you access the Platform from outside the United States, your information may be transferred to, stored, and processed in the United States. By using the Platform, you consent to this transfer.

11. Cookies and Tracking

11.1 Local Storage

We use browser local storage (not cookies) to store:

  • Terms and conditions acceptance status
  • Device identifier for rate limiting

11.2 Google Analytics

In production environments, we use Google Analytics 4 to understand how users interact with the Platform. Google Analytics collects:

  • Page Views: Which pages you visit and how long you spend on them
  • Device Information: Browser type, device type, and screen resolution
  • Geographic Data: General location (city/region level, not precise coordinates)
  • User Interactions: Buttons clicked and features used

Google Analytics uses cookies to track your session. This data helps us:

  • Understand which features are most useful
  • Identify technical issues and improve performance
  • Make informed decisions about Platform improvements

Google Analytics data is subject to Google's Privacy Policy. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

11.3 No Advertising Tracking

We do not use advertising cookies, tracking pixels, or third-party advertising networks. Google Analytics is configured for analytics purposes only, not for advertising.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically. Continued use of the Platform after changes are posted constitutes your acceptance of the updated policy.

13. Summary

In summary, our privacy approach is:

  • We collect minimal data necessary for the Platform to function
  • We do not require user accounts or personal information
  • We protect your anonymity through technical measures
  • We do not sell or misuse your data
  • Approved reports are publicly visible (this is the Platform's purpose)
  • You control what information you share

Last Updated: January 2026