LogbookLitePrivacy Policy
Effective date: 10 May 2026
Version: 1.0
Who we are
LogbookLite is a digital pilot logbook operated by BluFlo Solutions Ltd, a company registered in England and Wales under company number 16412861, with its registered office at Office 17632, 182-184 High Street North, East Ham, London E6 2JA, United Kingdom.
For the purposes of UK GDPR and the Data Protection Act 2018, BluFlo Solutions Ltd is the data controller for the personal data described in this policy.
You can contact us about anything in this policy at ewan@bluflo.io.
What this policy covers
This policy explains what personal data we collect when you use LogbookLite, why we collect it, how long we keep it, who we share it with, and what rights you have over it.
It applies to your use of logbooklite.com and any services we provide there. It does not apply to third-party websites we link to.
What data we collect
Account data
When you sign up, we collect:
- Your email address (required, used to log in and contact you)
- A password (required, stored as a salted hash — we never see or store the plain password)
- Your name (required for licence-compliant logbook exports)
- Optional profile fields you choose to provide
Payment data
When you start a subscription, you provide payment card details directly to Stripe, our payment processor. We never see, store, or have access to your card details. Stripe sends us only:
- A customer ID
- Your subscription status (active, trialing, cancelled, etc.)
- Billing history (dates and amounts of payments)
Flight and logbook data
This is the operational data you create using LogbookLite:
- Roster CSVs you upload — these are processed on import and not retained long-term. We extract the flight records you choose to import; the original file is deleted after processing.
- Flight records — date, departure and arrival airports, off/on/in/out times, aircraft type and registration, flight number, hours by category (night, multi-pilot, instrument, cross-country, etc.), and any custom fields you choose to add.
- OOOI scan data — the OOOI scan runs entirely on your device. The image and extracted data never leave your phone. Only the flight record you save to your logbook is transmitted to our servers.
You own this data. You can export it at any time, in PDF or CSV format.
Technical data
Like most web services, we collect minimal technical data needed to run the service securely:
- IP address (logged for security and abuse prevention)
- Browser and device information (for compatibility and debugging)
- Session and authentication cookies (essential — required to keep you logged in)
We do not use marketing cookies, advertising cookies, or third-party analytics cookies.
Analytics and error data
- Umami (self-hosted by us in the EU) provides privacy-respecting web analytics — no cookies, no cross-site tracking, no personal data.
- GlitchTip (self-hosted by us in the EU) captures error reports if something breaks. Error reports may include your user ID and the page where the error occurred, but not your flight data.
Communications
We send transactional emails only:
- Account confirmation, password resets, billing notifications
- Optional alerts you specifically opt in to (e.g. expiry reminders for medical certificates, recency requirements, etc.)
We do not send marketing emails. We do not have a mailing list. If you opt in to alerts, you can opt out at any time from your account settings.
Customer support
If you contact us via the in-app chat (powered by Crisp, hosted in France), Crisp processes your messages and IP address to deliver the conversation. We use Crisp's data-minimisation settings; transcripts are retained only as long as needed to resolve your support issue.
How we use your data
We use your data only for the following purposes:
| Purpose | Lawful basis |
|---|---|
| Providing the LogbookLite service to you | Contract performance (Article 6(1)(b)) |
| Processing payments and managing subscriptions | Contract performance + legal obligation (HMRC record-keeping) |
| Sending transactional emails | Contract performance |
| Sending optional alerts you opted in to | Consent (Article 6(1)(a)) |
| Securing the service and preventing abuse | Legitimate interests (Article 6(1)(f)) |
| Complying with legal obligations | Legal obligation (Article 6(1)(c)) |
| Fixing bugs and improving reliability | Legitimate interests |
We do not use your flight data to train AI models, sell to third parties, or for any purpose other than running the service for you.
Where your data is stored
All LogbookLite data is hosted in the European Union:
- Servers and database: Hetzner, Helsinki, Finland
- Backups: Encrypted daily backups stored in a separate Hetzner EU region for disaster recovery, retained for 30 days
Your data does not leave the EU except for the limited international transfers described in the next section.
Who we share your data with
We use a small number of trusted sub-processors to deliver the service. We share only the minimum data needed for each one to do its job.
| Sub-processor | Purpose | Location | Data shared |
|---|---|---|---|
| Hetzner | Hosting, database, backups | Helsinki, Finland (EU) | All service data |
| Stripe | Payment processing | Ireland (EU) and US (under SCCs / UK IDTA) | Email, name, card details (you provide directly to Stripe) |
| Resend | Transactional email delivery | Ireland (EU) | Email address, message content |
| Crisp | Customer support chat | France (EU) | Email, name, IP, message content (only when you contact support) |
| Anthropic | AI features (e.g. roster column mapping, natural-language queries) | US (under SCCs / UK IDTA) | Only the data needed to answer your specific request — typically column headers and sample rows. Anthropic retains API inputs and outputs for 30 days by default, after which they are automatically deleted; longer retention may apply to flagged content or certain features such as the Files API. Anthropic does not train its models on this data unless we opt in, which we do not. |
We do not share your data with any other third parties for any other purpose. We do not sell your data. We do not allow advertisers, data brokers, or marketing companies access to your data.
International transfers
Two of our sub-processors (Stripe and Anthropic) involve transfers to the United States. These transfers are protected by the UK International Data Transfer Agreement (IDTA) and Standard Contractual Clauses (SCCs), and supplemented by the technical and organisational safeguards each provider has in place.
How long we keep your data
| Data type | Retention |
|---|---|
| Account and flight data (active subscription) | Until you delete it or cancel your subscription |
| Account and flight data (after cancellation) | Hard-deleted from active systems within 30 days of cancellation, and removed from backups within a further 30 days. After day 60, no copy remains. |
| Roster CSV uploads | Deleted immediately after processing |
| OOOI scan images | Never transmitted to our servers — processed on-device only |
| Billing records | Retained for 6 years (legal requirement under HMRC rules) |
| Error logs and security logs | Retained for 90 days for debugging and abuse prevention |
| Support transcripts (Crisp) | Retained only as long as needed to resolve the issue |
Your rights
Under UK GDPR you have the following rights over your personal data:
- Right to access — get a copy of the personal data we hold about you
- Right to rectification — correct anything that's inaccurate
- Right to erasure— ask us to delete your data (“right to be forgotten”)
- Right to portability — receive your data in a structured, machine-readable format (CSV export is available at any time from your account)
- Right to restrict processing — limit what we do with your data
- Right to object — object to certain types of processing
- Right to withdraw consent — for any processing that relies on consent (e.g. opt-in alerts)
- Right to complain— to the UK Information Commissioner's Office (ICO) at ico.org.uk
To exercise any of these rights, email ewan@bluflo.io. We will respond within one calendar month.
Cookies
LogbookLite uses only essential cookies required to keep you logged in and to keep the service secure. We do not set marketing, advertising, or third-party tracking cookies.
Essential cookies do not require consent under the UK Privacy and Electronic Communications Regulations (PECR), so we do not display a cookie banner.
Children
LogbookLite is intended for licensed pilots and student pilots aged 18 and over. We do not knowingly collect data from anyone under 18. If you believe a child has signed up, contact us at ewan@bluflo.io and we will delete the account.
Security
We protect your data using industry-standard measures, including:
- TLS encryption in transit
- Encryption at rest for backups
- Salted password hashing (we never store passwords in plain text)
- Restricted access to production systems
- Regular security updates to all infrastructure
No system is perfectly secure. If we ever discover a personal data breach that affects you, we will notify you and the ICO within 72 hours as required by UK GDPR.
Changes to this policy
If we change this policy, we will update the “Effective date” at the top and, for material changes, notify active subscribers by email at least 30 days before the change takes effect.
Contact us
For any privacy questions, requests, or complaints:
BluFlo Solutions Ltd
Office 17632, 182-184 High Street North
East Ham, London E6 2JA
United Kingdom
Email: ewan@bluflo.io
You can also complain to the UK Information Commissioner's Office:
Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
ico.org.uk