PRIVACY POLICY

INTRODUCTION

ArmoryHub, operated by CowboyCode LLC ("we", "our", or "the app"), is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our firearms inventory management application.

INFORMATION WE COLLECT

ArmoryHub is designed with privacy as a core principle. We collect and store the following types of information:

• Account Information: Email address for authentication purposes
• Firearm Data: Information about your firearms including make, model, serial numbers, purchase information, and photos
• Accessory Data: Details about firearm accessories, optics, and related equipment
• Ammunition Data: Records of ammunition inventory and purchases
• NFA Items: National Firearms Act item details including ATF form information and tax stamp numbers
• Documents: Uploaded receipts, certificates, and other documents
• Photos: Images of firearms, accessories, and related items
• Maintenance Records: Service and maintenance logs
• DOPE Data: Ballistic and shooting data

ZERO-KNOWLEDGE ENCRYPTION

ArmoryHub uses zero-knowledge encryption, meaning your sensitive data is encrypted on your device before it ever reaches our servers:

• Client-Side Encryption: All your inventory data (firearms, serial numbers, photos, documents, etc.) is encrypted using AES-256-GCM in your browser or app before transmission
• PIN-Derived Keys: Your encryption key is derived from your PIN using PBKDF2. This key never leaves your device
• Encrypted Storage: Our servers only store encrypted binary blobs that are completely unreadable without your PIN
• We Cannot Access Your Data: Since encryption happens on your device and we never receive your PIN, we have no way to decrypt or view your data

HOW WE STORE YOUR DATA

Your data is stored securely using our cloud infrastructure:

• Cloud Storage: Encrypted data is stored on Supabase infrastructure with enterprise-grade security
• Cross-Device Sync: Your encrypted data syncs across all your devices (web, iOS, Mac)
• Encryption in Transit: All data is transmitted over HTTPS/TLS
• Encryption at Rest: Data stored on our servers is encrypted at the database level, in addition to your client-side encryption

HOW WE USE YOUR DATA

Your data is used exclusively for the following purposes:

• Providing inventory management functionality
• Generating reports and analytics for your personal use
• Synchronizing your encrypted data across your devices
• Creating backups for data recovery purposes
• Processing subscription payments (via Apple App Store or Stripe)

DATA SHARING AND DISCLOSURE

We do not share, sell, rent, or disclose your personal information to third parties.

Your firearm inventory data is encrypted before it reaches our servers, making it unreadable to us or anyone else. We only store encrypted blobs that cannot be decrypted without your PIN.

Legal Compliance: We may be required to respond to legal requests. However, due to our zero-knowledge architecture, we can only provide encrypted data that is unreadable without your PIN. We cannot decrypt your data even if compelled to do so.

DATA SECURITY

We implement multiple layers of security to protect your data:

• Zero-Knowledge Encryption: AES-256-GCM encryption with PIN-derived keys
• Secure Authentication: Email-based authentication with secure session management
• Biometric Protection: Optional Face ID/Touch ID for app access on supported devices
• Secure Infrastructure: Enterprise-grade cloud infrastructure with SOC 2 compliance
• Regular Security Audits: Ongoing security monitoring and updates

YOUR RIGHTS AND CONTROLS

You have complete control over your data:

• Access: You have full access to all data stored in the app
• Export: You can export your data at any time in multiple formats (JSON, CSV, PDF)
• Delete: You can delete individual items or request complete account deletion
• Portability: Your data is never locked in - export and take it anywhere

CHILDREN'S PRIVACY

ArmoryHub is not intended for use by individuals under the age of 18. We do not knowingly collect information from children under 18. Due to the nature of firearms ownership and legal requirements, this app should only be used by adults who are legally permitted to own firearms.

THIRD-PARTY SERVICES

ArmoryHub uses the following third-party services:

• Supabase: Cloud database and authentication infrastructure
• Apple App Store: For iOS/Mac app distribution and in-app purchases
• Stripe: For payment processing (web subscriptions)
• Resend: For transactional emails (welcome emails, password resets)

These services only receive the minimum information necessary for their function. Your inventory data remains encrypted and unreadable to these services.

CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of any changes by updating the "Last Updated" date at the top of this Privacy Policy. Continued use of the app after changes constitutes acceptance of the updated Privacy Policy.

CONTACT INFORMATION

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us at support@armoryhub.app or through our contact page.