Last updated: 2026-06-07
ReadySetServe ("we," "us") is an iOS app for posting and discovering local volunteering opportunities. This Privacy Policy explains what we collect, why we collect it, and how to control your data.
Account information. When you sign in with Apple or Google, we receive your email address, display name, and a unique user identifier from those providers. We store this in our backend at Supabase.
Profile content. Any display name, bio, profile photo, or interests you add to your profile.
User-generated content. Opportunities you post, registrations you create, posts and comments you write, follows you initiate, and photos you upload. Other users see this content according to your privacy settings.
Location. If you grant location permission, we use your coarse location ("when in use" only) to sort and filter opportunities by distance from you. We do not store your location server-side; it stays on-device for the duration of a session.
Device data. If you enable notifications, we receive an Apple Push Notification Service (APNs) token tied to your device. We use this only to deliver in-app notifications to you and remove it if your device rejects it.
We do not use your data for advertising and we do not sell it.
We rely on a small number of third-party services. Each receives only what it needs.
Supabase (backend). Stores your account, profile, posts, opportunities, and uploaded media. Operates as our data processor.
Google Cloud Vision SafeSearch (image safety). Every image you upload is sent through Google Cloud Vision's SafeSearch API before being persisted. The image bytes are sent over HTTPS along with the content type. Google returns a safety verdict (adult, racy, violence flags). Per Google's documentation, the bytes are not retained for model training and are not stored beyond the duration of the API call. On our side we retain only the SHA-256 hash of the image, the SafeSearch decision, and a timestamp, in our content_safety_checks audit log. This screening protects all users from sensitive content and is required for app submission.
Apple (Sign in with Apple, Push Notifications). If you sign in with Apple, Apple authenticates you and gives us an opaque user identifier (and optionally an email). For notifications, APNs is the transport that delivers a push from our servers to your device.
Google (Sign in with Google). If you sign in with Google, Google authenticates you and gives us your email address and display name.
Anything you post publicly — opportunities, posts, comments, your public profile fields — is visible to other signed-in users. You can block other users from your profile or in Settings; blocked users do not see your content and you do not see theirs.
If you report content or another user, your report (including any notes you add) is sent to our moderators. The reported content and your report are retained as part of our safety record. See our Terms of Service for moderation timing.
We retain your account and content for as long as you have an account. You can delete your account at any time from Settings → Delete Account; this hard-deletes your auth record and cascades to your posts, opportunities, registrations, follows, and uploaded media. Reports filed against you and moderation actions taken against your content are retained in our safety records after deletion.
ReadySetServe is not directed to children under 13. You must be at least 13 to use the app. If we learn we have collected data from a child under 13, we will delete it.
All traffic between the app and our backend is encrypted in transit (HTTPS). Data at rest is encrypted at our hosting provider. No service can guarantee absolute security, but we apply the safeguards we believe are reasonable for an app at this scale.
We will update this policy if our practices change. Material changes will be communicated in-app. The "Last updated" date above always reflects the current version.
Questions or requests? Email [email protected].