CCPA / CPRA Notice

Last updated: March 13, 2026

This notice supplements the PocketNOC Privacy Policy and applies to California residents, as required by the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).

Categories of Personal Information Collected

• Identifiers: Device identifiers (iOS Vendor ID, Android ID), email addresses, license keys
• Commercial information: Subscription and purchase records, Stripe customer IDs
• Internet or electronic network activity: App usage data via Firebase Analytics (app opens, screen views, feature usage), push notification tokens
• Professional or employment-related information: To the extent included in SolarWinds monitoring data viewed through the App (e.g., node names, alert text containing usernames or hostnames)

Purpose of Collection

License key validation and device registration, subscription and billing management, push notification delivery, service improvement through anonymous analytics, and service security and abuse prevention.

Consumer Rights

California residents have the right to:

• Know what personal information is collected, used, and disclosed
• Delete personal information we hold about you
• Correct inaccurate personal information
• Opt out of the sale or sharing of personal information (PocketNOC does not sell or share personal information)
• Non-discrimination for exercising these rights

To submit a request, please use our contact form.

Sale or Sharing

PocketNOC does not sell personal information. We do not share personal information with third parties for cross-context behavioral advertising. We do not use sensitive personal information for purposes beyond what is necessary to provide the Service.

Data Retention

Personal information is retained only for as long as necessary to fulfill the purposes described above:

• Licensing data (email, device ID, license key): While the license is active, plus a reasonable period after expiration for reactivation support
• Billing data (Stripe IDs): Per applicable tax and financial record-keeping requirements
• Analytics data: Retained by Firebase per Google's data retention policies; anonymized and not linked to your identity
• Push notification tokens: While the device registration is active

Account-level data is deleted upon verified request or license expiration.

Third-Party Service Providers

We use service providers to operate the Service, including:

• Cloudflare — Hosting, Workers runtime, D1 database (licensing infrastructure)
• Apple — Push notification delivery (APNs) and App Store distribution
• Google — Firebase Cloud Messaging (FCM), Firebase Analytics, and Play Store distribution
• Stripe — Payment processing for license key purchases

These providers process personal information only as necessary to perform services on our behalf and are contractually prohibited from using it for other purposes.

Verification

When you submit a consumer rights request, we may ask you to verify your identity by confirming the email address associated with your license key or subscription. We will respond to verified requests within 45 days, or notify you if we need additional time as permitted by law.

Contact

For privacy-related questions or to submit a consumer rights request, please use our contact form.