Privacy Policy

Effective: March 14, 2026

1. Overview

Meshradar ("we", "our") operates the meshradar.io website and cloud platform, and distributes the Meshpoint edge software. This Privacy Policy describes what data we collect, how we use it, and your choices.

2. Data We Collect

Account Data

When you create an account, we collect your email address and authentication credentials (managed via AWS Cognito). We do not store passwords directly.

Device Data

When a Meshpoint connects to our cloud platform, it transmits:

• Device identifier, name, and firmware version
• Device location (latitude, longitude) as configured by you
• Heartbeat status and connection timestamps

Mesh Network Data

Meshpoints capture over-the-air LoRa packets and may relay decoded data to our platform, including:

• Packet metadata (source ID, protocol, type, signal strength, timestamps)
• Decoded payload contents (positions, telemetry, node names)
• Node identifiers and signal characteristics

This data originates from publicly broadcast radio transmissions. Meshpoints operate as passive receivers of over-the-air traffic.

Usage Data

We collect standard server logs including IP addresses, request paths, and timestamps for security and operational purposes.

3. How We Use Data

Purpose	Data Used
Provide the Service	Account, device, and mesh data
Display maps and analytics	Device locations, node positions, signal data
Fleet management	Device status, heartbeats
Service improvements	Aggregated usage patterns
Security and abuse prevention	Server logs, rate limiting data

4. Data Retention

• Packets: Automatically deleted after 7 days (DynamoDB TTL)
• Connection records: Automatically deleted after 24 hours
• Device and node data: Retained while your account is active
• Account data: Retained until you request deletion
• Analytics aggregates: Retained indefinitely in anonymized form

5. Data Sharing

We do not sell your data. We may share data only in these limited circumstances:

• Infrastructure providers: We use Amazon Web Services (AWS) to host the platform. Data is processed in the US-East-1 (Virginia) region.
• Legal obligations: If required by law, court order, or governmental request.
• Aggregated data: We may publish aggregated, anonymized mesh network statistics that cannot identify individual users or devices.

6. Security

We use industry-standard security measures including encrypted connections (TLS), AWS managed authentication (Cognito), API key authentication for device connections, and least-privilege access controls. However, no system is completely secure, and we cannot guarantee absolute security.

7. Your Rights

You may:

• Request a copy of the data we hold about you
• Request deletion of your account and associated data
• Disconnect your Meshpoint at any time to stop data transmission
• Run the Meshpoint software locally without connecting to our cloud

To exercise these rights, contact hello@meshradar.io.

8. Cookies

The Meshradar dashboard uses browser local storage for authentication tokens. We do not use third-party tracking cookies or analytics services.

9. Children

The Service is not directed at children under 13. We do not knowingly collect personal information from children.

10. Changes

We may update this Privacy Policy at any time. The effective date above indicates the latest revision. Continued use of the Service constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or requests, contact hello@meshradar.io.