Privacy Policy

Effective date: 2026-05-13

This policy describes how Liftoff handles data on the website (get-liftoff.app) and in the Liftoff mobile app for iOS and Android. Plain language. No dark patterns.

Website data

The Liftoff website uses Vercel Web Analytics. Vercel Analytics collects aggregated, anonymous request metadata — page views, referrer, country, browser — with no cookies and no client-side fingerprinting. IP addresses are processed by Vercel infrastructure for request routing but not stored in the analytics dataset. No third-party advertising or marketing SDKs load on this site.

Mobile app data

The Liftoff mobile app collects the minimum data required to deliver and improve its features:

  • Firebase Cloud Messaging push token. Required to deliver T-24h, T-1h, and T-0 launch notifications. Stored by Firebase on Google infrastructure and associated with your device, not with a user account.
  • Notification topic subscriptions. Liftoff subscribes your app instance to launch-notification topics based on your notification settings.
  • Launch filter and app preferences. Provider, pad, notification, and display preferences you select. Stored locally on your device. Not sent to Liftoff servers.
  • Analytics events. Firebase Analytics records app interactions such as screen views, launch-detail views, settings changes, and telemetry-feature use. These events are used to understand whether the app works and which launch-day features need improvement.
  • Crash reports and diagnostics. Firebase Crashlytics collects crash stack traces, device/app version, and diagnostic keys such as the last app screen or launch identifier involved in an error. Used to fix bugs. No personal content from inside the app is included.
  • Remote Config fetches. Firebase Remote Config provides feature flags and kill switches. It uses Firebase installation metadata to deliver configuration values.

We do not collect an email address, a phone number, a name, contacts, photos, location, or any advertising identifier. There is no account. There is no login.

Third-party processors

  • Vercel — website hosting and analytics (website only).
  • Firebase (Google) — push notification delivery, analytics, crash reporting, Remote Config, and app installation identifiers (mobile app only).
  • Launch Library 2 — public launch data API. No personal data sent.

Children's data

Liftoff is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided data to us, contact us (see Contact below) and we will delete it.

Data retention

  • Push tokens and topic subscriptions are kept until you uninstall the app or disable notifications.
  • Crash reports are retained by Firebase Crashlytics for up to 90 days.
  • Analytics and Remote Config data are retained according to Firebase project settings.
  • Website analytics are retained by Vercel per their policy.

Your rights

Under GDPR and CCPA you have the right to access, delete, or port your data, and to opt out of analytics. Because we do not associate data with user accounts, most rights are exercised by uninstalling the app, disabling notifications, or contacting us from the device/email context you want us to review. You can also use browser Do Not Track or ad-blocking settings on the website.

International transfers

Data is processed in the United States (Vercel, Firebase). By using Liftoff you consent to this transfer.

Security

TLS everywhere. HSTS preload on the website. No secrets stored on the device beyond what the OS platform provides for push credentials.

Changes to this policy

We will update this page and change the effective date above when the policy changes.

Contact

Email hello@get-liftoff.app.