Privacy Policy

01 Who this policy applies to

This Privacy Policy covers the Snoflo iOS app (the "App") and the website at snoflo.org (the "Site"), together referred to as "Snoflo", "we", "us", or "our". It applies to anyone who downloads the App or visits the Site.

Snoflo surfaces public snowpack, streamflow, weather, reservoir, avalanche, and recreation data from U.S. federal agencies. Browsing the map is anonymous — no account required. Saving favorites and configuring push alerts requires a free account, which collects only an email and a password (described below).

The free tier of Snoflo is supported by display advertising; a Premium subscription removes ads entirely. We do not sell user data to anyone, ever — including our ad partners. Section 06 covers exactly how the ads work and what they can and can't see.

02 Information we collect

We deliberately collect as little as possible. Here's the complete list of what we do receive — and the narrow technical reason for each.

Anyone using Snoflo (no account)

Only if you create a free account

Creating an account is optional. It unlocks favorites, push alerts, and a few other features. If you sign up, we collect:

03 Location data

The App has a "Nearby" feature and a recenter button that use your current location to show conditions around you. iOS will ask your permission the first time you use either. Here's exactly what happens when you do:

• iOS provides your device's coordinates to the App in memory.
• The App passes those coordinates to the Mapbox map view to recenter the camera, and to our `/api/nearby` endpoint to fetch the closest stations and gauges.
• Coordinates sent to our backend are used only to compute the nearby query result and are not stored or logged with your account.

We use the NSLocationWhenInUseUsageDescription permission, meaning location is only available while the App is open and visible. We do not request NSLocationAlwaysAndWhenInUseUsageDescription or any background-location access.

You can revoke location permission at any time from Settings → Privacy & Security → Location Services → Snoflo. The App still works fine without it — you just won't be able to one-tap recenter or use the Nearby feature.

04 Push notifications

Push alerts are off by default. They turn on when you (a) create a free account and (b) configure a threshold on a saved favorite (e.g. "tell me when Lower Boulder Creek crosses 200 cfs", "alert me on fresh snow above 6 inches at Berthoud Summit").

When you tap a station's "Alert me" button for the first time, iOS will ask permission to send notifications. If you grant it, your device gives us an opaque Apple Push Notification (APNs) token that we associate with your account. We use that token only to deliver the alerts you configured.

You can revoke notifications at any time from Settings → Notifications → Snoflo, or by removing the alert from inside the App. When you do, your device's APNs token becomes invalid and Apple drops it; we never receive a "you turned this off" event but we no longer have a working token to send to.

05 Third-party services

Snoflo uses a small number of third parties to deliver the maps and data. Each one is named here so you can read their privacy practices directly.

06 Advertising

Snoflo's free tier is supported by display advertising. Ads pay for the federal-data ingestion pipeline, the servers, the AI briefings, and the team — without making us reach for the more invasive funding model of selling user data.

What ads we show

Ads appear in the web app and (where applicable) in the iOS app for users on the free tier. They are typically standard display banners served via a reputable ad network. We do not run pop-ups, interstitials, autoplay video ads, or "sponsored" map pins disguised as data.

What our ad partners can see

The ad network can see what any web visitor or iOS app session can see at the network level: your IP address, the page or screen you're on, your device type and user-agent, and a non-identifying ad-network identifier (where one exists). They use that to serve a relevant ad and to measure delivery.

What they cannot see: your Snoflo account email, your saved favorites, your alert preferences, your search queries, or your precise location. We never pass account-linked data to ad partners.

Ad-free with Premium

Opting out

Even on the free tier, you have control. On iOS you can disable Apple's advertising identifier from Settings → Privacy & Security → Apple Advertising; on the web you can use any standard ad-blocker, and Snoflo will continue to function normally. You can also subscribe to Premium to remove ads entirely.

07 Cookies and tracking

On the Site we set a single first-party session cookie when you sign in to your account, used solely to keep you signed in. It is not shared with any third party, expires on logout, and contains no personal information beyond a session identifier.

The free tier of the Site additionally loads the ad network's standard cookies for ad delivery and measurement (described in section 06). These are set by the ad network under its own privacy policy. Premium subscribers do not load any ad cookies.

We do not use any third-party analytics tools (no Google Analytics, no Mixpanel, no Segment). The iOS app does not use the IDFA (Apple's advertising identifier) for first-party tracking and does not present its own App Tracking Transparency prompt; if the iOS ad SDK presents one, that disclosure is shown by Apple's framework, not by Snoflo.

08 How long we keep data

• Web server logs: rotated within 14 days, then permanently deleted.
• Crash reports: retained for as long as the bug exists, typically a few weeks; deleted once resolved.
• Account data (email, password hash, favorites, alert preferences): retained for the life of your account. Deleted within 30 days of account deletion.
• APNs push tokens: retained while you have at least one active alert configured. Tokens that fail to deliver three times in a row are pruned automatically.
• Email correspondence (if you contact us): retained until the conversation is closed, then archived for up to 12 months for reference, then deleted.
• Anonymous browsing data: nothing persists. Once a request is served and the log line ages out, it's gone.

09 How we protect data

All traffic between the App, the Site, and our backend uses HTTPS with TLS 1.2 or higher. Account passwords are stored as one-way salted hashes using an industry-standard algorithm — we cannot read your password, even with full database access.

We follow standard infrastructure hardening practices on our servers (least-privilege access, automatic security updates, no shared accounts, encrypted backups).

That said, no system is perfectly secure. If we ever detect or suspect a breach that affects user data, we'll publish a notice on this page within 72 hours of discovery and notify any affected account holders by email.

10 Your rights

If you've never created an account and never emailed us, we likely have nothing about you on file beyond ephemeral request logs — most data-subject rights are automatically satisfied. If you do have an account, you can:

• Access the data tied to your account via Account settings.
• Delete your account at any time, which removes your email, password hash, favorites, and alert preferences within 30 days.
• Export your favorites and alert preferences by emailing info@snoflo.org.

If you live in a jurisdiction with specific privacy rights (such as GDPR in the EU/UK or CCPA/CPRA in California), you have the right to:

• Know what personal information we have about you (most likely just an email + favorites).
• Correct inaccurate information.
• Request deletion of any such information.
• Opt out of "sale" or "sharing" of personal information (we never sell or share).
• Lodge a complaint with your local data-protection authority.

To exercise any of these rights, email info@snoflo.org. We respond to verifiable requests within 30 days.

11 Children's privacy

Snoflo is rated 4+ on the App Store and contains nothing inappropriate for children. That said, the App is designed as a climate intelligence tool for adults (skiers, paddlers, anglers, ranchers, water managers), and we do not knowingly collect personal information from anyone under the age of 13. Our account-creation flow does not ask for age, and we do not target the App to children.

If you believe a child has provided us with personal information, please email info@snoflo.org and we will delete the account and any associated data promptly.

12 International users

Snoflo is operated from the United States. The data layers in the App are U.S.-focused (the underlying federal agencies cover the U.S. and its territories). If you use the App from outside the U.S., your tile and search requests will be routed to U.S.-based or Mapbox-region servers as required to deliver the maps.

Where required by local law, we rely on standard contractual clauses or equivalent mechanisms with our service providers to lawfully transfer the minimal data described in this policy.

13 Changes to this policy

If we update this Privacy Policy, we'll change the "Last updated" date at the top of this page. For material changes (e.g., a new third-party service, a new category of data collected, a meaningful change in retention), we'll surface a notice in the App on next launch and on the Site's homepage for at least 30 days. Account holders will receive an email summarizing the change.

14 Contact us

Questions, complaints, or data-subject requests? Reach out at info@snoflo.org.

For general feedback about the App, you can also email info@snoflo.org or use the feedback button inside the App.