Last modified: 5 June 2026
Cloudbase ("Cloudbase App") is a skydiving logbook and social platform developed by Cloudbase App Ltd, a company registered in England and Wales (company number 17143982). The app is listed on Google Play and the Apple App Store under the name "Cloudbase App". You can reach us at hello@getcloudbase.com. References to "we", "us", or "our" mean Cloudbase. This privacy policy applies to all versions of the Cloudbase App, including the mobile app (iOS and Android), the Apple Watch app, the web app at getcloudbase.com, and the AltiReader desktop companion app.
We collect the following categories of data:
Your name and email address (provided via Google or Apple sign-in), your chosen username, profile photo, and Instagram handle if you add one.
Jump records from any source you connect or enter, including Burble sync, manual entry, altimeter imports (via AltiReader), GPS devices, and Apple Watch. This includes freefall times, altitudes, disciplines, aircraft type, canopy model, and formation size.
Cloudbase collects location data in the following ways:
Cloudbase does not collect background location data. GPS is only active during jump sessions initiated by you on the Apple Watch. The mobile app (iOS/Android) does not request or use location permissions.
If you use the Cloudbase Apple Watch app and grant the necessary device permissions, we collect heart rate, G-force readings, altitude profiles, accelerometer data, and gyroscope data during your jumps. This data is only collected when your device permissions allow it.
If you connect your Burble account, we use your Burble login once to obtain a long-lived access key and store only that key, encrypted at rest using AES-256-GCM. We do not store your Burble login or password. The key is used solely to sync your jump records on your behalf.
Your subscription tier and a billing identifier from the platform you subscribed through. We never store your card numbers. All payment processing is handled by the Apple App Store, Google Play, or our web billing provider (RevenueCat).
Posts, comments, reactions, follows, and campfire (drop zone chat) messages you create within Cloudbase.
IP address, device fingerprint, and push notification tokens. These are used for security purposes (including account sharing detection) and to deliver notifications.
API usage, screen views, and button presses, used to improve the app. This product analytics data stays within our own infrastructure; we do not use any third-party product-analytics SDKs (no Google Analytics, Mixpanel, Amplitude, or similar). Crash and error monitoring is handled separately by Sentry, see "Crash reports and session replay" below.
To find and fix bugs, we use Sentry, a third-party error-monitoring service. When the app hits an error or crash, Sentry receives a diagnostic report containing your account identifier and email address, device and operating-system details, and a technical stack trace. We also use Sentry Session Replay, which, only when an error occurs, attaches a short reconstruction of the app screens leading up to that error. Text, images and graphics are masked by default, and we additionally mask the map that displays your jump's GPS track. A replay therefore shows app layout and interactions rather than your personal text, photos, or recorded flight path. We do not record your session at any other time. Sentry stores this data in the EU (Germany).
BPA or USPA membership numbers, licence category, instructor ratings, and FAI number, verified during sign-up or added later in your profile.
We believe in collecting only what we need. Cloudbase does not collect or store:
We process your data under three legal bases:
To provide and maintain your logbook, manage your account, sync your jump records from Burble, and process your subscription.
To power the social features (feed, comments, reactions, leaderboards), run internal analytics, detect account sharing, maintain platform safety, and improve the quality of AI-powered features using anonymised prompt data (see section 7).
For health and sensor data from your Apple Watch, marketing emails, storing your Burble credentials, and AI-powered features. You can withdraw consent at any time.
You control who can see your profile and jumps. There are four levels:
You can change your visibility level at any time in Privacy Settings within the app.
Your core data is stored in the European Union.Our primary database and cache are hosted in Railway's EU-West region, so your jump records, profile, GPS tracks and logbook are held in the EU. We chose EU hosting to provide the strongest possible data protection. A small number of service providers process limited data outside the EU — for example transactional email and subscription billing in the United States — as listed below. Where personal data is transferred outside the UK or EEA, we rely on appropriate safeguards such as the UK Extension to the EU-U.S. Data Privacy Framework or Standard Contractual Clauses.
We share data with the following services to operate Cloudbase:
We use AI-powered development tools (currently Anthropic Claude) to build, debug, and support the platform. When we investigate a problem or support request that involves your account, your data may be processed by these tools in the course of that work. This is handled under the provider's commercial terms and is not used to train AI models.
Personalised AI analysis of your jump data is not currently offered. If we introduce features like this in future, they will be opt-in, and we will update this policy before any of your jump data is processed for them.
When you connect your Burble account, we use your login once to obtain a long-lived Burble access key, then use that key to fetch your jump records from Burble's systems. We do not store your Burble login or password — only the access key, which is encrypted at rest using AES-256-GCM and decrypted solely during the sync process.
We store a copy of your jump records. The originals remain in Burble. The sync is one-way — we read your records from Burble and do not send your Cloudbase data to Burble. You can disconnect your Burble account at any time and request deletion of all synced data.
Cloudbase is not affiliated with Burble Software Inc.
We use a single httpOnly session cookie (cb_token) to keep you signed in. That is it. We do not use tracking cookies, advertising cookies, or any third-party cookies.
Under data protection law, you have the right to:
To exercise any of these rights, email us at hello@getcloudbase.com.
You can request account deletion through Settings in the app or by emailing us. Once requested, there is a 30-day grace period during which you can cancel.
After 30 days, your account and all associated data are permanently deleted. Comments you made on other people's posts will be anonymised and displayed as "Deleted user".
Cloudbase is for users aged 18 and over. We do not knowingly collect data from anyone under 18. If we become aware that a user is under 18, we will delete their account and data.
If we make changes to this policy, we will notify you by email and with an in-app notice. Continued use of Cloudbase after notification constitutes acceptance of the updated policy. Material changes may require your explicit re-consent.
If you have questions about this policy or how we handle your data, get in touch at hello@getcloudbase.com.