Legal

Privacy Policy

Last updated June 7, 2026

This Privacy Policy explains how IndigeFish TideRead (“TideRead,” “we,” “us”) collects, uses, and shares information when you use our website and app at tideread.app (the “Service”). By using the Service you agree to this policy.

Information we collect

We collect the following so the Service can work:

  • Account information — your name, email address, and a password (stored securely, never in plain text), or, if you sign in with Google, your Google account email and basic profile.
  • Fishing activity — the spots you save, and the catches you log, including species, size, notes, date, photos you choose to add, and the location of a catch (captured from your device’s GPS or from a photo’s embedded location data, with your permission).
  • Billing information — if you subscribe to a paid plan, your payment is processed by Stripe. We do not store your card number; we store your Stripe customer and subscription identifiers and your plan tier.
  • Technical information — a sign-in session cookie (required to keep you logged in), and standard server logs such as IP address, browser type, and pages requested.

How we use your information

We use your information to provide and operate the Service: to create and secure your account, generate and personalize your bite forecasts and saved spots, store and display your catch log, process subscription payments, send you account and alert emails you’ve requested, and to maintain, debug, and improve the Service.

Public information — the community catch map

Catches you log are shown publicly on our community catch map at their recorded location, to help the broader angler community. This is described in the app when you log a catch. Catch locations and basic details (species, date) may be visible to anyone. If you do not want a catch shown publicly, do not log it with location enabled, and you can remove catches you have logged.

Service providers we share data with

We share information only with the providers that help us run the Service:

  • Supabase — authentication, database, and photo storage.
  • Stripe — subscription billing and payment processing.
  • Resend — sending account and bite-alert emails.
  • Google — optional Google sign-in; we also log new sign-ups (name, email, sign-up method) to an internal Google Sheet for product analytics.
  • Vercel — application hosting.
  • CARTO / OpenStreetMap — map imagery.

Our forecasts use public environmental data from NOAA, the National Data Buoy Center, and the National Weather Service. We do not send your personal information to those data sources. We do not sell your personal information, and we do not allow advertisers to pay to target you.

Cookies

We use a single essential cookie to keep you signed in. We do not use advertising or cross-site tracking cookies.

Data retention

We keep your information for as long as your account is active. If you delete your account, your profile, saved spots, catches, and alerts are removed; some records may persist briefly in backups or where required by law (for example, billing records).

Your choices and rights

You can view and update much of your information from your account page, remove catches you’ve logged, and manage or cancel a subscription through the Stripe customer portal. To request access to, correction of, or deletion of your personal information, contact us at the email below. Depending on where you live, you may have additional rights under laws such as the California Consumer Privacy Act (CCPA) or the GDPR.

Location data

Location is only captured when you log a catch and grant permission (via your device or a photo’s metadata). You can decline location access in your browser or device settings; catches logged without location simply won’t appear on the map.

Children

The Service is not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child has provided us information, contact us and we will delete it.

Security

We protect your data with encryption in transit, hashed passwords, and database access controls that restrict your data to you. No system is perfectly secure, but we work to safeguard your information.

Changes to this policy

We may update this policy from time to time. We’ll revise the “last updated” date above and, for material changes, provide additional notice.

Contact

Questions about this policy or your data? Email indigefish@gmail.com.

See also our Terms of Service.