Legal
Privacy Policy
Last updated: 1 May 2026
1. Data Controller
Johan Nzokam is the data controller responsible for the processing of your personal data within the meaning of the EU General Data Protection Regulation (GDPR) and the UK GDPR.
Wiesloch, Germany
2. Information We Collect
2.1 Information You Provide
- Account information: When you sign in via Google or Apple, we receive your name and email address. Authentication is managed by Clerk. We do not collect, receive, or store your password.
- Flight data: Routes, flight logs, roster entries, flight statistics, and user preferences you create within the App.
- Support communications: If you contact us at support@loxim.app, we retain the contents of your message.
2.2 Information Collected Automatically
- Device information: Device model, operating system and version, unique device identifiers, and App version.
- Usage data: Features accessed, screens visited, user interactions, session duration, and timestamps.
- Crash and performance data: Error logs, stack traces, and performance metrics.
2.3 Information We Do Not Collect
- Real-world location data (GPS).
- Payment or financial information. All payment processing is handled by Apple or Google.
- Contacts, photos, camera, or microphone data.
- Health, biometric, or sensitive personal data.
3. How We Use Your Information
- Providing the service: Storing your flight logs, generating statistics, enabling flight plan export to SimBrief, and creating shareable flight cards.
- Authentication: Verifying your identity through Google or Apple sign-in.
- Improving the App: Analysing anonymised usage patterns and crash reports to fix bugs and enhance the user experience.
- Communications: Sending essential service-related notifications. We will not send marketing communications without your prior consent.
- Legal compliance: Processing data where necessary to comply with legal obligations.
4. Legal Basis for Processing (GDPR)
If you are in the EEA, the UK, or Switzerland, we process your personal data under the following legal bases:
- Performance of a contract (Art. 6(1)(b) GDPR): Processing necessary to provide you with the LOXIM service.
- Legitimate interests (Art. 6(1)(f) GDPR): Analytics and crash reporting to maintain, secure, and improve the App.
- Consent (Art. 6(1)(a) GDPR): Where required, for example for marketing communications. You may withdraw consent at any time.
- Legal obligation (Art. 6(1)(c) GDPR): Where we are required to process data to comply with applicable law.
6. Third-Party Services
SimBrief
When you export a flight plan, LOXIM opens a SimBrief URL pre-filled with flight details. No personal data is transmitted to SimBrief by LOXIM. Your interaction with SimBrief is governed by SimBrief's own terms and privacy policy.
Social Media Platforms
When you share a flight card, LOXIM generates an image locally on your device. Sharing is handled by your device's native share functionality; LOXIM does not transmit data to social platforms.
7. Data Retention
- Account and flight data: Retained until you delete your account. Upon deletion, personal data is deleted within 30 days, except where retention is required by law.
- Crash and analytics data: Retained in anonymised or pseudonymised form for up to 24 months.
- Support communications: Retained for up to 36 months after the inquiry is resolved.
8. Data Security
We implement appropriate technical and organisational measures to protect your personal data, including encryption of data in transit (TLS/SSL) and at rest, secure authentication mechanisms, access controls, and regular security reviews.
No method of electronic transmission or storage is fully secure. While we take reasonable precautions, we cannot guarantee absolute security.
9. International Data Transfers
Your data may be processed by our service providers in countries outside the EEA, UK, or Switzerland. Where such transfers occur, we ensure appropriate safeguards are in place, including European Commission adequacy decisions or Standard Contractual Clauses.
You may request a copy of the safeguards by contacting support@loxim.app.
10. Your Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right of access (Art. 15): Request a copy of the personal data we hold about you.
- Right to rectification (Art. 16): Request correction of inaccurate or incomplete personal data.
- Right to erasure (Art. 17): Request deletion of your personal data, subject to legal retention obligations.
- Right to restriction (Art. 18): Request that we restrict the processing of your personal data.
- Right to data portability (Art. 20): Request your personal data in a structured, machine-readable format.
- Right to object (Art. 21): Object to processing based on legitimate interests.
- Right to lodge a complaint: In Germany: Landesbeauftragter für den Datenschutz Baden-Württemberg. In the UK: the ICO.
To exercise any of these rights, contact us at support@loxim.app. We will respond within 30 days.
11. Children's Privacy
LOXIM is not directed at children under 13. We do not knowingly collect personal data from children under 13. If we become aware that we have collected personal data from a child under 13, we will delete the data and the associated account promptly.
12. Automated Decision-Making
We do not use automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice within the App at least 14 days before the changes take effect. Your continued use of LOXIM after the updated Policy takes effect constitutes your acceptance of the changes.
14. Contact
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Johan Nzokam
Wiesloch, Germany