Sign In

PRIVACY POLICY

Stevenson Ridge-Halcyon Community Association App

Last updated: May 24, 2026

Summary of Key Points

What personal information do we collect? When you use our app, we collect information you provide directly (name, email, phone, address, password) and information collected automatically when you access the app (IP address, device type, usage data).

Do we process sensitive information? We collect and securely protect address information and incident/security request details. These are treated as sensitive and protected accordingly.

Do we collect information from third parties? No. We only collect information you provide directly or that is generated by your use of the app.

How do we process your information? We process your information to provide account access, deliver app features, communicate with you, comply with legal obligations, and improve our Services.

Who do we share your information with? We use service providers (Supabase for database hosting, Vercel for app hosting, and Resend for email) who are bound by confidentiality agreements. We do not sell or share your personal information with third parties for marketing purposes.

How do we keep your information safe? We implement technical and organizational security measures. However, no electronic transmission or storage system is 100% secure. We cannot guarantee protection against all unauthorized access.

What are your rights? Depending on your location, you may have the right to access, correct, or delete your personal information. Maryland residents have specific rights outlined below.

1. WHAT INFORMATION DO WE COLLECT?

Personal Information You Provide Directly

We collect personal information you voluntarily provide when you register, update your profile, submit service requests, or contact us:

  • First and last name
  • Email address
  • Phone number (optional)
  • Mailing address
  • Username and password
  • Profile preferences (directory visibility settings)
  • Security request details and attachments (photos, descriptions of incidents)

Information Automatically Collected

When you use our app, we automatically collect:

  • IP address
  • Device type, operating system, and browser information
  • Pages and features accessed
  • Date and time of access
  • Usage patterns and app performance data
  • Device name and unique device identifiers

This information is collected to maintain app security, diagnose technical issues, and understand usage patterns.

Sensitive Information We Collect

We collect and securely protect:

  • Home addresses (required for membership and service requests)
  • Incident and security request details (potentially sensitive community safety information)

2. HOW DO WE PROCESS YOUR INFORMATION?

We process your information for these purposes:

  • Account management: Creating your account, authenticating login, maintaining your profile and membership status
  • Service delivery: Processing your service requests (security concerns, escort requests, home checks), sending you updates and documents, managing payments and membership
  • Communication: Responding to your inquiries, sending administrative notices about the app or service changes
  • Security and fraud prevention: Protecting against unauthorized access, detecting misuse of the app
  • Legal compliance: Responding to legal requests, maintaining records as required by law
  • App improvement: Analyzing usage to identify trends, diagnose problems, and improve features

3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

Service Providers

We share your personal information with the following service providers who are bound by confidentiality agreements:

  • Supabase: Hosts our database and file storage (documents, request attachments)
  • Vercel: Hosts and deploys our application
  • Resend: Sends administrative emails (password resets, account notifications)

Role-Based Access

Our app has different user roles with different data access levels:

  • Residents (not enrolled): Can view public updates and documents. Cannot access security-related features or request services.
  • Members (enrolled): Can view all public content plus member content, submit security requests, and see their own request history.
  • Administrators: Can access all resident and member data, manage users, view all service requests and security logs, manage community content.
  • Security Officers: Can view assigned service requests, create and view incident logs, and access information related to their operational duties.

Each role can only access the data necessary for their function.

Other Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. We may share information when required by law or in response to legal process.

We may share information in connection with a business transfer, merger, or acquisition of our organization.

4. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar technologies (web beacons, pixels) to:

  • Maintain your login session
  • Remember your preferences
  • Prevent crashes and fix bugs
  • Collect analytics about app usage

We do not use cookies for targeted advertising. You can disable cookies in your browser settings, though this may affect app functionality.

5. HOW LONG DO WE KEEP YOUR INFORMATION?

General account data: We retain your account information while your account is active. After account termination, we delete most personal data within 6 months, except where required by law.

Security logs and incident records: We retain security logs, incident reports, and service request histories for 3 years to support community safety records, governance, and potential legal needs. These are retained separately from general account data.

Backup copies: Information may persist in backup systems for up to 30 days after deletion as part of our disaster recovery processes.

6. HOW DO WE KEEP YOUR INFORMATION SAFE?

We implement appropriate technical and organizational security measures:

  • Encrypted data transmission (HTTPS/TLS)
  • Database encryption at rest
  • Access controls limiting employee access to customer data
  • Regular security reviews and updates
  • Confidentiality agreements with all service providers

However, no electronic system is 100% secure. We cannot guarantee protection against all unauthorized access, hacking, or data loss. You use the app at your own risk and are responsible for maintaining the confidentiality of your password.

7. DO WE COLLECT INFORMATION FROM MINORS?

We do not knowingly collect information from individuals under 18 years of age. By using the app, you represent that you are at least 18 or that you are the parent/guardian of a minor and consent to their use. If we learn we have collected information from a minor, we will delete it promptly. Contact us immediately if you become aware of this.

8. WHAT ARE YOUR PRIVACY RIGHTS?

Right to Access

You can request a copy of the personal information we maintain about you.

Right to Correct

You can correct inaccurate personal information through your account profile or by contacting us.

Right to Delete

You can request deletion of your account and associated personal information, subject to legal retention requirements.

Right to Withdraw Consent

If we process your information based on consent, you can withdraw that consent at any time.

Right to Data Portability

You can request a portable copy of your personal information in a machine-readable format.

Exercising Your Rights

To exercise any of these rights, contact us at: mystevenson.org.hardened250@passmail.net

In your request, please specify which right you are exercising and provide sufficient information to identify your account. We will respond within 30 days of receiving a valid request.

9. MARYLAND RESIDENTS—SPECIFIC PRIVACY RIGHTS

If you are a Maryland resident, you have the following rights under state law:

  • Right to know: Whether we are processing your personal information and what categories we collect
  • Right to access: Request details about what personal information we maintain about you
  • Right to correct: Request correction of inaccurate information
  • Right to delete: Request deletion of your personal information (subject to legal retention requirements)
  • Right to data portability: Request a copy of your information in a portable format
  • Right to opt out: If we use your information for targeted advertising or profiling, you have the right to opt out

Note: This app is designed for Maryland residents only. If you are not a Maryland resident, you may not be able to use this app.

10. CONTROLS FOR DO-NOT-TRACK FEATURES

We do not currently respond to Do-Not-Track (DNT) browser signals. There is no industry standard for recognizing DNT signals. If a standard is adopted, we will update this policy accordingly.

11. DO WE MAKE UPDATES TO THIS NOTICE?

Yes. We update this policy as necessary to comply with applicable laws and reflect changes to our practices. Updates are effective immediately upon posting. The "Last updated" date at the top indicates when this policy was last revised. We encourage you to review this policy regularly.

12. HOW CAN YOU CONTACT US?

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact:

Stevenson Ridge-Halcyon Community Association, Inc.

Email: mystevenson.org.hardened250@passmail.net

Mailing Address: Stevenson Ridge-Halcyon Community Association 6 Harrow Ct Pikesville, MD 21208 United States

13. HOW CAN YOU REVIEW, UPDATE, OR DELETE YOUR DATA?

You can review and update your personal information through your account profile at any time. To request access to, correction of, or deletion of your data, please contact us using the information in Section 12 above.

End of Privacy Policy