Privacy Policy

1. Introduction

Safety For Generations LLC ("SFG," "we," "us," or "our") operates the Community Emergency Guide ("CEG") at ceg.sfg.ac. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, how long we keep it, and what rights you have.

By using CEG you agree to the practices described below. If you do not agree, please do not use the service.

2. Information We Collect

2.1 Account Information

• Email address (required for account creation and authentication).

2.2 Emergency Check-In Data

• Name and party size.
• Selected safe-zone location and check-in status during an emergency event.
• GPS coordinates (optional — collected only with your explicit permission for emergency dispatch purposes).
• Phone number, stored as a one-way SHA-256 hash for reunification lookups. The plaintext number is never persisted.

2.3 Field Care Card (FCC) Data

If you choose to create a Field Care Card for yourself or a household member, you may provide:

• Medications, allergies, medical conditions, and medical notes.
• Emergency contacts and their phone numbers.
• Code status and mobility information.
• Profile photos and emergency vault documents (Premium plan).

All FCC data is entered voluntarily by you. We do not obtain medical records from any external source.

2.4 CEG Band Scan Logs

• When a CEG Band (NFC wristband or QR code) is scanned, we log the scan type, IP address, and user agent for security and audit purposes.

2.5 Analytics and Diagnostics

• Page views and Web Vitals collected via Vercel Analytics.
• Error reports collected via Sentry. No protected health information (PHI) is transmitted to Sentry.
• Structured application logs aggregated via Axiom.

2.6 Technical Data

• IP addresses are logged temporarily for rate limiting via Upstash Redis and are not associated with your account long-term.

2.7 Offline Data

• If you use CEG while offline, check-in data is stored locally in your browser's IndexedDB outbox. This data is automatically synced to our servers when connectivity returns and is then cleared from your device.

3. How We Use Your Information

• Emergency operations: facilitating safe-zone check-ins, reunification lookups, and EMS triage.
• Household management: storing and displaying Field Care Cards for you and your household members.
• Communications: sending SMS alerts, temporary access codes, and transactional emails.
• Billing: processing Premium subscriptions and Band add-on purchases.
• Security: rate limiting, abuse prevention, and audit logging of Band scans.
• Improvement: analyzing anonymized analytics to improve CEG performance and usability.

4. Third-Party Services

We use the following third-party services to operate CEG. Each processes data only as necessary to provide its stated function:

5. Data Storage and Security

• All data is stored in Supabase-managed PostgreSQL databases hosted in the United States.
• Database access is enforced through PostgreSQL Row-Level Security (RLS) policies so users can only access their own data.
• All connections use TLS encryption in transit.
• Phone numbers used for reunification are stored as irreversible SHA-256 hashes.
• Supabase Auth manages sessions and password hashing using industry-standard bcrypt.

6. Data Retention

We retain data only as long as necessary for emergency operations and then automatically reduce it:

7. Data Sharing

We do not sell your personal information to third parties.

We may share data in the following limited circumstances:

• Emergency responders: Field Care Card data may be accessed by EMS personnel using a valid resident code, incident number, or patient care report number during an emergency.
• Caregivers: Users you designate as caregivers can view or edit your household's Field Care Cards.
• Service providers: Third-party services listed in Section 4 process data solely to provide their stated functions.
• Legal requirements: We may disclose information if required by law, subpoena, or court order.

8. SMS Communications

CEG may send you SMS messages for access alerts, temporary codes, and emergency notifications. Standard message and data rates apply.

You can opt out of SMS communications at any time by replying STOP to any message. Opting out of SMS will not affect your ability to use the CEG web application.

9. Your Rights

9.1 California Residents (CCPA)

If you are a California resident, you have the right to:

• Know what personal information we collect and how it is used.
• Request deletion of your personal information.
• Opt out of the sale of personal information (we do not sell your data).
• Non-discrimination for exercising your privacy rights.

9.2 Account Deletion

You can delete your account at any time from your Settings page. Account deletion triggers an 8-step cascade that removes your account, household members, Field Care Cards, vault files, caregiver links, access logs, Band registrations, and billing records.

10. Children's Privacy

CEG is not directed to children under 13. We do not knowingly collect personal information from children under 13. Parents and guardians may add minor dependents to their household Field Care Cards; the parent or guardian controls this data.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. For material changes, we will make reasonable efforts to notify you via email or an in-app notice.

12. Contact Us

If you have questions about this Privacy Policy or want to exercise your data rights, contact us at: