Back to Map

Privacy Policy

Last Updated: May 27, 2026

1. Information We Collect

We are committed to minimizing the collection of personal data. We collect the following information to operate the Service:

  • Account/Verification Data: If you submit a WiFi network, we collect your email address solely to dispatch a double-opt-in confirmation link.
  • Crowdsourced Metadata: We collect network SSIDs, passwords (stored securely and isolated), and the geographic coordinates of submitted hotspots.
  • Location Data:
    • For Browsing: We request access to your device's location to center the 2D map on your current area. This lookup occurs client-side and is not sent to or stored on our servers.
    • For Voting: To verify your proximity to a hotspot (within 100 meters), we calculate the distance between your GPS coordinates and the hotspot coordinates. These coordinate sets are evaluated immediately to accept or deny the vote and are not permanently saved or linked to an identity.

2. How We Protect Your Data

We utilize a secure Zero-Exposure Security Architecture:

  • Publicly visible maps and metadata only contain SSIDs and coordinates.
  • Plaintext WiFi passwords are kept in an isolated database table behind PostgreSQL Row-Level Security (RLS). Passwords are never loaded onto the public map interface to prevent automated scraping. They are only fetched on-demand using secure serverless requests when a user clicks "Copy Password".

3. Third-Party Services

We partner with external service providers to handle mapping, geocoding, database management, and email dispatch:

  • Mapping/Geocoding: We use third-party mapping libraries (such as Mapbox or Google Maps) to display the interactive 2D map and handle search inquiries. These services may process anonymized location queries in accordance with their own privacy policies.
  • Database & Hosting: Our database is hosted securely with Supabase.
  • Transactional Emails: Email verification links are sent via Resend or other compliant email delivery providers.

4. GDPR & Global Privacy Compliance (Your Rights)

We adhere to privacy-by-design principles:

  • Right to Erasure (Takedown): Any network owner has the right to request the immediate erasure of their network credentials.
  • The Spatial Blacklist: When an owner exercises their right to erasure, we permanently delete the network records and place a spatial geofence over their coordinates to prevent future users from re-uploading the network.
  • Data Portability: You may request details about the minimal personal data associated with your email address at any time.

5. Contact Us

For privacy concerns, data deletion requests, or business opt-out submissions, please contact us at: privacy@valtrix.nl