Effective date: June 29, 2026
Last updated: June 29, 2026
Canonical URL: https://getcrewmate.app/privacy/
CrewMate ("CrewMate," "we," "us," or "our") is a mobile application built for airline cabin crew and flight crew. CrewMate is operated by WeisMon Holdings LLC.
If you have any questions about this Privacy Policy or your data, contact us at support@getcrewmate.app.
This policy explains what personal information CrewMate collects, how we use it, who we share it with, how long we keep it, and the choices and rights you have.
This policy applies to the CrewMate mobile application and the services it connects to. It is written for our current launch audience in the United States. CrewMate is not directed to children under 13, and we do not knowingly collect personal information from children under 13. CrewMate is a professional tool for working aircrew. (If you believe a child under 13 has provided us personal information, contact support@getcrewmate.app and we will delete it.)
| Data | When collected | Where stored |
|---|---|---|
| Email address | Sign-up | Supabase Auth |
| Password | Sign-up | Supabase Auth (stored only as a salted bcrypt hash — we never store your plaintext password) |
| Display name | Sign-up | Supabase database (profile) |
| Crew role (e.g. Flight Attendant / Pilot) | Sign-up | Supabase database (profile) |
| Airline (optional) | Sign-up / settings | Supabase database (profile) |
| Home base airport (optional) | Sign-up / settings | Supabase database (profile) |
| Schedule data — trips, duty periods, flight legs, layovers, and off-duty events you enter | Manual entry in the app | Supabase database |
| Hotel name, address, and phone (for layovers) | Manual entry, optionally aided by a place-lookup field | Supabase database |
| Messages you send to "Eddie" (the in-app assistant) | When you chat with Eddie | Stored on your device only (see §3.4); each message is sent to our AI provider to generate a reply |
| Data | What it is | Where it goes |
|---|---|---|
| Product-analytics events | A fixed, governed set of in-app interaction events (for example: a screen was viewed, a tool tile was tapped, the assistant was opened). The full set is limited to 8 event types. | Stored in our Supabase database (analytics_events) |
| Crash and error reports | Diagnostic information generated automatically if the app crashes or hits an unexpected error | Sent to Sentry, our crash-monitoring provider |
About our analytics — what we deliberately do not do. Our product analytics are first-party and pseudonymous: each event is linked only to your account's internal user ID, never to your name or email within the event. The event payloads are restricted to a fixed allowlist and enforced by a database constraint, so no free-text and no personal information can be placed in them. We use no third-party analytics SDK, no advertising identifiers, and no cross-app or cross-site tracking. We use this data only to understand which features are used and to improve the app.
About our crash reports. Crash and error reports sent to Sentry are stripped of personal information before they leave your device — no email, no username, and no IP address are attached. The only identifier included is your account's internal user ID, used to group related reports.
| Feature | Data | How it is handled |
|---|---|---|
| Location-aware features (e.g. layover suggestions, assistant context) | Approximate location | Only collected if you grant permission. Reduced to a city/country (and, for nearby-place search, a coordinate) on your device and used transiently at the moment of the request. Not stored on our servers. |
| Translator / voice input | Microphone audio | Sent to Google Speech-to-Text to produce a transcript, then discarded. Not stored by CrewMate. |
| Translator photo/OCR | A photo you take for text recognition | Sent to Google Cloud Vision to extract text, then discarded. Not stored by CrewMate. |
| Flight lookup / watchlist | The airline code + flight number you look up | Sent to our flight-data provider to retrieve public flight information. The query contains no personal information. |
Your conversation history with the in-app assistant ("Eddie") is stored only on your device for up to 7 days and is not stored on our servers. Each message you send is transmitted to our AI provider to generate a response.
We do not collect: payment or financial-account information (CrewMate has no in-app purchases at launch); passport, visa, or government-ID data; health or biometric data; your contacts/address book; your photo library beyond a photo you explicitly hand to the Translator feature; advertising identifiers; or any third-party / behavioral-advertising analytics.
When you first open CrewMate, the onboarding experience is local to your device and manual — you add your first trip yourself. First-run onboarding does not sync your phone calendar and does not request calendar permission.
We use your information to:
We do not sell your personal information, and we do not use it for third-party advertising.
CrewMate relies on the following service providers, who process data on our behalf only to provide their service. We do not sell or rent your data to anyone.
| Provider | What they process | Purpose |
|---|---|---|
| Supabase | Account email, hashed password, profile, schedule, layover, and analytics data | Authentication, database, and backend functions (hosted in the US) |
| Google (Gemini) | Your messages to the assistant + transient location context (city/country) | Generating assistant replies |
| Google (Speech-to-Text) | Microphone audio (transient) | Voice transcription |
| Google (Cloud Vision) | Photos you submit to Translator (transient) | Text recognition |
| Google (Cloud Translation) | Text you submit for translation (transient) | Translation |
| Google (Places) | Coordinates / category for nearby-place search (no personal identity tied to the query) | Layover place suggestions, hotel lookup |
| AviationStack | Airline code + flight number (no personal information) | Flight information lookup |
| Frankfurter | Currency codes (no personal information) | Exchange rates |
| OpenWeather | City name (no personal information) | Weather lookup |
| Sentry | PII-stripped crash/error diagnostics (internal user ID only) | Crash and error monitoring |
Assistant AI provider. Your messages to the assistant are sent to Google's Gemini API to generate replies. The Gemini API is used through a billing-enabled Google project; under Google's paid-tier Gemini API terms, Google does not use those messages to train or improve its models. We retain Anthropic as an inactive fallback provider that is not used unless we switch providers; if it were ever activated, your assistant messages would be processed by that provider under its applicable terms. We will update this policy if the active assistant provider changes.
We may also disclose information if required by law, to enforce our Terms, or to protect the rights, safety, or property of CrewMate, our users, or others.
| Data | Retention |
|---|---|
| Account identity (email + hashed password) | Until you delete your account |
| Profile, schedule, layover, and event data | Until you delete your account |
| Product-analytics events | Until you delete your account — they are automatically and permanently deleted when your account is deleted (enforced at the database level by a cascade tied to your account record), and are not separately retained or anonymized afterward |
| Assistant ("Eddie") chat history | Up to 7 days, on your device only — auto-clears, or you can clear it manually at any time |
| Microphone audio / Translator photos | Not retained by CrewMate (transient) |
| Crash/error reports | Per Sentry's retention settings (PII-stripped before sending) |
If we expand to the EU/UK in the future, additional GDPR-specific rights and mechanisms will be added to this policy at that time.
We protect your information with:
No method of transmission or storage is 100% secure, but we work to protect your information using industry-standard measures.
CrewMate is a professional tool intended for adult aircrew and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, contact support@getcrewmate.app and we will delete it.
If we make material changes to this policy, we will update the "Last updated" date above and, where appropriate, notify you in the app. Your continued use of CrewMate after changes take effect means you accept the updated policy.
Questions, requests, or concerns about your privacy:
Email: support@getcrewmate.app
Operator: WeisMon Holdings LLC
Governing law: This policy is governed by the laws of the State of New York, USA.