Outsync® Privacy Policy
Last updated: May 26, 2026
Version: 2.0
Our Commitment to Your Privacy
Outsync® is operated by Outsync LLC, a Massachusetts limited liability company. This Privacy Policy explains how we collect, use, share, and protect information when you use the Outsync mobile application and related services (collectively, the "Service"). It applies whether you sign in with Google, Sign in with Apple, or email and password.
This Privacy Policy is incorporated into our Terms of Service by reference.
Quick Summary
For a fast read of the highlights:
-
What we collect. Information you provide (account details, hiking preferences, ratings, notes, photos), information generated as you use Outsync (trails viewed, searches, scheduled hikes), and information from your device (location with permission, device type, app usage).
-
How we use it. To run Outsync, recommend trails based on your interests and activity, sync hikes to your calendar, send you informational updates about scheduled hikes, and improve the app over time.
-
What we share. We do not sell or rent your personal information. We share information with service providers who help us operate Outsync (such as Firebase by Google), with calendar providers when you choose to integrate, and as required by law.
-
Your control. You can delete your account at any time, control the visibility of content you upload, revoke calendar and location permissions, and request a copy or deletion of your personal information.
The full policy below is the authoritative version.
1. Information We Collect
1.1 Information You Provide
Account and authentication information. When you create an Outsync account, we collect:
-
Your email address (or Apple's private email relay address, if you choose Sign in with Apple)
-
Your name as provided by your authentication provider, or as you enter it
-
Your authentication method (Google, Apple, or email/password)
-
Account creation date and login activity
Profile and preferences. As you use the app, you may provide:
-
Hiking preferences (preferred trail types, difficulty, length, terrain, etc.)
-
A manually entered location, if you choose not to share device location
-
Optional profile information
User-generated content. Outsync allows you to create content within the app, including:
-
Trail ratings
-
Notes about your trail experiences
-
Photos you choose to upload
-
Visibility settings you apply to your content
1.2 Information Generated as You Use Outsync
-
Trails you view and how often
-
Trails you save, like, or bookmark
-
Search terms you enter
-
Trails you schedule and complete
-
Scheduling and completion history
-
Achievement and milestone history
-
In-app navigation, screens visited, time on screen, and interaction events
-
Errors and crash diagnostics
This information helps us provide personalized recommendations and improve the app.
1.3 Information From Your Device
With your permission, we collect:
-
Device location. Used to surface nearby trails and provide location-aware features. You can grant permission while using the app, deny permission, or revoke at any time through your device settings. If you do not share device location, you can manually set a location in your profile.
-
Notification token. A push notification token issued by Apple or Google that allows us to deliver notifications you have opted into.
We also automatically collect:
-
Device type, model, and operating system version
-
App version
-
Language and timezone settings
-
IP address (used to route traffic and for security purposes)
Mobile advertising identifiers (IDFA on iOS, Advertising ID on Android), only if you grant permission through your device's tracking prompts
1.4 Information From Third-Party Services
When you authorize integrations, we receive:
-
Google Calendar. Calendar event details for events you create or modify through Outsync, and authentication tokens that allow us to maintain the integration.
-
Apple Calendar. Calendar event details for events you create or modify through Outsync, and the necessary authorization to maintain the integration.
We only access calendar data necessary to provide the scheduling and sync features described in the Service.
1.5 Photos and Embedded Metadata
When you upload photos to Outsync, the photo file itself is stored. Photo files often include embedded metadata (EXIF data) that may contain information such as the date and time the photo was taken, camera settings, and in some cases location coordinates. You can remove EXIF data from photos before uploading using your device's standard photo tools if you do not want this information shared with Outsync.
2. How We Use Your Information
We use the information we collect to:
- Create, authenticate, and secure your account
-
Provide trail discovery, recommendations, scheduling, and informational updates
-
Sync scheduled hikes to your chosen calendar
-
Send notifications you have opted into, including hike reminders, weather forecast updates, and gear list updates
-
Personalize your experience based on your hiking preferences and in-app behavior
-
Display and manage your user-generated content according to your visibility settings
-
Improve the Outsync app, troubleshoot issues, and prevent abuse
-
Communicate with you about your account, security, and material changes to the Service
-
Comply with legal obligations and enforce our Terms of Service
We do not use your personal information to make decisions about you that produce legal or similarly significant effects without human involvement.
3. Google API Services and Limited Use Disclosure
Outsync uses Google API Services, including the Google Calendar API, to provide calendar integration features.
Outsync's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically, Outsync only uses data obtained from Google APIs to provide and improve the user-facing calendar integration features described in this Privacy Policy. We do not transfer this data to third parties for serving advertisements, do not use it to train generalized machine learning models, and do not allow humans to read this data except (a) with your explicit consent, (b) for security purposes such as investigating abuse, (c) to comply with applicable law, or (d) where the data has been aggregated and anonymized for internal operations.
You can revoke Outsync's access to your Google account at any time through your [Google Account permissions page](https://myaccount.google.com/permissions) or through the Outsync Integrations screen.
4. Sign in with Apple and Apple Calendar
When you use Sign in with Apple, you receive Apple's privacy protections, including the option to use Apple's private email relay. Outsync only receives the information you choose to share through the Apple authentication flow.
When you connect Apple Calendar, Outsync only accesses calendar data necessary to create, modify, and remove events related to your scheduled outdoor activities. You can revoke Outsync's calendar access at any time through your iOS device settings or the Outsync Integrations screen.
5. How We Share Your Information
We do not sell or rent your personal information. We share information only as described below.
5.1 Service Providers (Sub-Processors)
We use trusted third-party service providers to help us operate Outsync. These providers are bound by contract to use information only as needed to provide their services to us, and they are not permitted to use it for their own purposes.
Current sub-processors include:
-
Google LLC. Firebase Authentication, Cloud Firestore (database), Firebase Cloud Messaging (push notifications), Firebase Analytics, Firebase Crashlytics, and Google Calendar API.
-
Apple Inc. Sign in with Apple, Apple Push Notification service, and Apple Calendar.
-
Third-party weather data providers for forecast and historical weather information used in trail planning. The specific provider may change over time; we will update this Privacy Policy when finalized.
When you choose to integrate Google Calendar or Apple Calendar, your interaction with those services is also governed by the privacy policies of Google and Apple, respectively.
5.2 With Your Consent
We share information with third parties when you ask us to or affirmatively consent. For example, when you choose to enable a calendar integration, we share scheduled-hike details with that calendar service.
5.3 For Legal Reasons
We may share information when we believe in good faith that disclosure is necessary to:
-
Comply with applicable law, regulation, legal process, or governmental request
-
Enforce our Terms of Service, including investigating potential violations
-
Detect, prevent, or address fraud, security, or technical issues
-
Protect against harm to the rights, property, or safety of Outsync, our users, or the public
5.4 Business Transfers
We may share information when we believe in good faith that disclosure is necessary to:
-
Comply with applicable law, regulation, legal process, or governmental request
-
Enforce our Terms of Service, including investigating potential violations
-
Detect, prevent, or address fraud, security, or technical issues
-
Protect against harm to the rights, property, or safety of Outsync, our users, or the public
5.5 Aggregated and Anonymized Information
We may share aggregated or anonymized information that cannot reasonably be used to identify you. For example, aggregated trail rating averages may be displayed within the app or used in marketing.
6. Trail Ratings and Aggregated Content
Trail ratings you submit may be incorporated into anonymized, aggregated trail rating averages. These aggregated values do not contain personally identifiable information and may persist after you delete your account or remove your individual rating. This is consistent with the practice described in our Terms of Service.
7. Notifications and Communications
Outsync sends notifications and communications in the following categories:
-
Account and security notifications related to your account, security, and material changes to the Service. These are required to operate the Service and cannot be opted out of without closing your account.
-
Activity notifications including hike reminders, weather forecast updates, and gear list updates for scheduled hikes. These are informational and you can manage them through device notification settings.
-
Marketing or promotional communications if and when offered. You will be able to opt out at any time, and we will only send these where permitted by law.
Notifications are informational. Outsync does not direct you to take or avoid any specific action regarding outdoor activities. You are responsible for making your own decisions based on the information provided.
8. Data Retention
We retain personal information for as long as necessary to provide the Service and for legitimate business purposes, including legal compliance, dispute resolution, and enforcement of our Terms.
| Data type | Retention |
|---|---|
| Active account information | While your account is active |
| Account information after deletion request | Deleted or anonymized within 30 days |
| Authentication tokens | Until you sign out, revoke access, or the token expires |
| User-generated content (photos, notes) | Until you delete the content or your account |
| Aggregated trail ratings | Retained indefinitely in anonymized form |
| Analytics and usage data | Up to 26 months in identifiable form, then aggregated |
| Records required for legal compliance | As required by applicable law |
After account deletion, we may retain limited information where necessary for fraud prevention, security, legal compliance, or as part of anonymized aggregate data.
You can request to delete your data at anytime by emailing: privacy@outsync.io and providng your app email address and display name for account confirmation.
9. Data Security
We use industry-standard measures to protect your information, including:
-
TLS encryption for data in transit
-
Encryption at rest for data stored in Google Cloud and Firebase
-
Secure password handling through Firebase Authentication (passwords are never stored in plain text)
-
Access controls limiting which Outsync personnel can access user data
-
Logging and monitoring of system access
No system is perfectly secure. If we become aware of a security incident affecting your personal information, we will notify you and applicable authorities as required by law.
10. Your Rights and Choices
10.1 In-App Controls
Through the Outsync app you can:
-
View and edit your profile and preferences
-
Manage push notification settings
-
Manage location permissions (through device settings)
-
Connect or disconnect calendar integrations through the Integrations screen
-
Control the visibility of your user-generated content
-
Delete individual content items
-
Delete your account
10.2 Data Access and Deletion Requests
You can request:
-
A copy of the personal information we hold about you
-
Correction of inaccurate information
-
Deletion of your personal information
-
Deletion of account
-
A portable copy of your data
To make a request, contact us at privacy@outsync.io. We may need to verify your identity before fulfilling your request. Please provide your app email address and display name for account confirmation. We will respond within the timeframes required by applicable law (generally 30 to 45 days).
10.3 Communication Preferences
You can manage marketing communications through any unsubscribe link in those messages or by contacting us. Account and security communications are not subject to opt-out.
11. US State Privacy Rights
Residents of certain US states, including California, Colorado, Connecticut, Virginia, Utah, Texas, Oregon, Montana, Iowa, Indiana, Tennessee, Florida, Delaware, New Jersey, and New Hampshire, have additional rights under their state's privacy laws. These rights generally include the right to access, correct, delete, and obtain a portable copy of personal information, and the right to opt out of certain types of processing.
To exercise any of these rights, contact us at privacy@outsync.io.
California Residents (CCPA/CPRA)
If you are a California resident, you have the following rights:
-
Right to know what personal information we collect, the sources, the business or commercial purposes, and the categories of third parties we share with.
-
Right to delete personal information we have collected from you, subject to limited exceptions.
-
Right to correct inaccurate personal information.
-
Right to opt out of sale or sharing. We do not sell your personal information and we do not share it for cross-context behavioral advertising. There is nothing to opt out of, but if this changes, we will provide a clear opt-out mechanism.
-
Right to limit use of sensitive personal information. Precise device location is treated as sensitive personal information under California law. We use precise location only to provide the location-aware features you request, and we do not use it to infer characteristics about you.
-
Right to non-discrimination. We will not discriminate against you for exercising your privacy rights.
You may submit requests through privacy@outsync.io. You may also designate an authorized agent to make a request on your behalf, subject to verification.
We do not knowingly sell or share the personal information of consumers under 16 years of age.
Categories of personal information collected (last 12 months)
For California residents, the table below summarizes the categories of personal information we have collected, consistent with the categories defined in the CCPA:
-
Identifiers (email, account ID, IP address, device identifiers)
-
Customer records (name, contact information)
-
Internet or network activity (app usage, search history, interaction with content)
-
Geolocation data (device location with consent)
-
Visual information (photos you upload)
-
Inferences drawn from the above (preferences and recommendations)
-
Sensitive personal information (precise location, account credentials)
Other US States
Residents of other states with comprehensive privacy laws have substantially similar rights. Contact us at privacy@outsync.io to exercise them.
12. Children's Privacy
Outsync is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are a parent or legal guardian and believe your child has provided personal information to Outsync, please contact us at privacy@outsync.io and we will delete the information promptly.
Users between 13 and 18 (or the age of majority in their jurisdiction) should use Outsync only with the permission of a parent or legal guardian.
13. International Users
Outsync is intended for users in the United States. The Service is hosted and operated in the United States, and information you provide is processed and stored in the United States. Outsync is currently not offered for use outside the United States, and we do not actively make the Service available to users in the European Economic Area, the United Kingdom, or other regions outside the US.
If you access Outsync from outside the United States, you do so on your own initiative and are responsible for compliance with local laws.
We may expand availability to additional regions in the future. When we do, we will update this Privacy Policy to reflect the additional rights and disclosures applicable to those regions.
14. Tracking Technologies and Mobile Identifiers
Outsync is a mobile application and does not use traditional web browser cookies. However, we and our service providers use technologies that perform similar functions, including:
-
Mobile advertising identifiers (IDFA on iOS, Advertising ID on Android), used only if you grant permission through your device's tracking prompts
-
Software development kits (SDKs) from Firebase that collect app usage and crash information
-
Device identifiers used to maintain your session and provide app functionality
You can control mobile advertising identifiers through your device settings. On iOS, you can use App Tracking Transparency to limit tracking. On Android, you can reset your Advertising ID or opt out of personalized advertising in Google settings.
15. Future Features
We may, in the future, introduce features that involve additional data practices, including:
-
Health and fitness platform integrations such as Apple Health or Whoop, which would require your explicit consent and be subject to the additional rules of those platforms
-
Community and social features allowing you to connect with other users and share content
-
Advertising-supported services in which advertisements may be shown within the app
When these features launch, we will update this Privacy Policy and notify you of material changes before the changes take effect.
16. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
-
Post the updated Privacy Policy on our website and within the app
-
Update the "Last updated" date at the top of this policy
-
Provide notice through the app or by email when the changes are material
Your continued use of the Service after the effective date of an updated Privacy Policy constitutes acceptance of the changes.
17. Contact Us
For privacy-related questions, requests, or concerns, please contact us:
-
Privacy: privacy@outsync.io
-
Support: support@outsync.io
-
Mailing address:
Outsync LLC
68 Harrison Ave Ste 605 982827
Boston MA 02111
We will respond to privacy-related inquiries within 30 days, or sooner where required by applicable law.
Outsync® is a registered trademark of Outsync LLC.
