AlertView Privacy Policy

Last updated: February 2026

1. Overview

AlertView is an enterprise alert notification application designed for authorized personnel within healthcare facilities. This privacy policy describes how we collect, use, and protect your information when you use the AlertView mobile application and related services.

2. Information We Collect

• Account Information: Employee number, first name, last name, and username provided during registration.
• Device Tokens: Firebase Cloud Messaging (FCM) tokens and Expo push notification tokens, used solely for delivering alert notifications to your device.
• Site Subscriptions: The facility sites you choose to subscribe to for receiving alerts.
• Authentication Data: Hashed passwords and salts. We never store plaintext passwords.

3. How We Use Your Information

• To authenticate your identity and verify your authorization as an employee.
• To deliver real-time alert notifications relevant to your subscribed facility sites.
• To manage your notification preferences and site subscriptions.

4. Data Storage and Security

• User and alert data is stored in secured Redis and SQL Server databases.
• Alert data is cached with a limited retention period and automatically expires.
• Passwords are cryptographically hashed and never stored in readable form.
• Access to the system is restricted to employees validated against an authorized whitelist.

5. Data Sharing

We do not sell, trade, or share your personal information with third parties. Data is used exclusively within the AlertView system for operational purposes. Firebase Cloud Messaging (a Google service) is used to deliver push notifications; Google's privacy policy applies to the delivery mechanism.

6. Push Notifications

AlertView uses push notifications to deliver time-sensitive alerts. You may disable notifications at any time through your device settings. Disabling notifications does not delete your account or data.

7. Data Retention

• Alert records are retained for up to 30 days and then automatically removed.
• User account data is retained while your account remains active.
• Device tokens are removed when they become invalid or upon account deletion.

8. Your Rights

You may request access to, correction of, or deletion of your personal data by contacting your facility administrator.

9. Contact

For questions about this privacy policy or your data, please contact your facility's AlertView administrator.