Privacy

Privacy Policy for IAWS

This privacy policy explains how International Aerial Wildfire Suppression processes data for the website, Mission Control, Responder app, Government Portal and operational support workflows.

Last updated: June 27, 2026

Controller and contact

The responsible organization is International Aerial Wildfire Suppression. Privacy and security requests can be sent to it@iaws-fire.org.

Data we process

IAWS may process account and role data, contact and ticket data, mission data, location data for assets and authorized users, device information, push tokens, uploaded media, audit logs and technical security records.

Purposes

Data is used to operate authentication, role-based access, common operational pictures, mission control, UAV and vehicle tracking, alerts, support workflows, documentation, security and legal accountability.

Legal bases and consent

Processing may rely on contract performance, legitimate operational and security interests, legal duties, vital interests during emergencies and explicit consent, for example for location sharing or contact requests.

Recipients and processors

Data may be shared with authorized IAWS users, incident command, partner authorities and technical processors such as hosting, database, email, mapping, weather, push notification and analytics providers where required for operation.

Retention

Personal data is retained only as long as necessary for operations, support, security, audits, legal claims or statutory retention. It is then deleted or anonymized.

Your rights

Individuals may request access, correction, deletion, restriction, portability and objection. Consent can be withdrawn for the future unless overriding operational or retention duties apply.

Security

IAWS uses access controls, role-based permissions, Row Level Security, audit logs, transport encryption, server-side secret management and organizational safeguards. Operational emergency functions may be logged for safety reasons.