Crowd Supply

Borneo-IoT App Privacy Policy

Effective date: February 17, 2026

This Privacy Policy describes how the Borneo-IoT Client app (“the App”) collects, uses, and shares information when you use the App. The App is provided by Yunnan BinaryStars Technologies, Co., Ltd. (“we”, “us”, or “our”). The App currently controls aquarium devices locally over CoAP. Future releases may offer optional cloud-based remote control via MQTT and subscription services.

Summary

  • The App uses local CoAP communication by default — device commands and state remain on your local network unless you opt into cloud features.
  • Cloud remote control (MQTT/HTTPS/WebSocket) and backups are optional and require an account and explicit user consent.

Data We Collect

  • Local Device Control (CoAP): When you control devices locally, commands and device state are exchanged directly between your mobile device and your aquarium devices on your local network. The developer does not collect this local traffic unless you enable cloud features.
  • Account & Profile: If you sign up for cloud services, we may collect your name, email address, username, and profile preferences.
  • Device Identifiers & Configuration: Device IDs, device names, network configuration, and scheduling/state information necessary for device control and optional cloud syncing or backups.
  • Location Information (Optional): If you use BLE / Wi‑Fi provisioning or enable features such as sunrise/sunset and moonlight simulation, the App may request access to your device location (or approximate location) to scan/connect devices and/or calculate local sun/moon times. We do not use this permission for advertising tracking.
  • Usage Data & Diagnostics: If you enable diagnostics features, we may collect analytics, crash reports, and logs to help improve the App. You can turn these off in settings (if available in your version of the App).
  • Payment & Subscription Info: If we offer paid subscriptions, payment processing is performed by third-party payment processors or app stores. We do not store full payment card numbers; payment providers handle card data according to their policies.
  • Communications: Support requests and other messages you send to us.

How We Use Your Data

  • Provide device control, scheduling, and optional remote access features.
  • Process and manage subscription payments (via third-party payment processors).
  • Improve and debug the App using analytics and crash reports (only if enabled).
  • Provide customer support and respond to your inquiries.
  • Back up and restore device configurations if you opt in to cloud backup features.

Local vs Cloud

  • By default, the App operates locally using CoAP; this traffic stays on your local network and is not uploaded to our servers.
  • Enabling cloud features (MQTT/HTTPS/WebSocket) will transmit device state and commands to cloud servers to enable remote access and sync across your devices.

Third-Party Services

We may use third-party services for certain features, including payment processing, cloud hosting/MQTT brokers, and optional analytics/crash reporting. These providers have their own privacy policies — review them when enabling services. We only share information necessary for each provider to perform its service.

Data Sharing & Disclosure

  • We do not sell your personal information.
  • We may share data with:
    • Your consent (for example, to sync across your devices).
    • Service providers who process data on our behalf (payment processors, cloud hosts).
    • Authorities when required by law or to protect rights, safety, or property.

Data Retention

  • We retain account- and subscription-related information while your account is active and as necessary to comply with legal obligations or resolve disputes.
  • You may request deletion of your account and related data — see “Your Choices and Rights.” Deletion requests will be handled in accordance with applicable law.

Security

  • We use reasonable administrative, technical, and physical safeguards to protect your information.
  • Cloud communications are encrypted in transit (for example, TLS). Local CoAP traffic depends on your local network security — secure your Wi‑Fi and network devices accordingly.
  • No system can be 100% secure; please contact us if you discover a vulnerability.

Your Choices and Rights

  • Disable Cloud Features: You can choose not to enable remote cloud control — device control will remain local only.
  • Opt‑Out Analytics: Disable analytics and crash reporting in the App settings.
  • Access, Correction, Deletion: Contact us to request access to, correction of, or deletion of your personal data.
  • Cancel Subscriptions: Manage or cancel subscriptions via the App store or payment provider; contact support if you need assistance.

Children

  • The App is not intended for children under the minimum age required by your jurisdiction (commonly 13). We do not knowingly collect personal information from children below that age. If you believe we have collected information from a child, contact us to request deletion.

International Transfers

  • If you enable cloud features, data processed or stored outside your country (for example, by cloud services) will be governed by appropriate safeguards and applicable law.

Changes to This Policy

  • We may update this Privacy Policy from time to time. We will post the updated policy with a new effective date and, where appropriate, notify you through the App or email.

Contact

  • For questions, requests, or concerns: contact@binarystarstech.com
  • Address: Room 2, 34th Floor, Tower A, Kechuang Building, No. 505 Kexue Road, Wuhua District, Kunming City, Yunnan Province, China