Effective date: September 30, 2025
Applies to: armylbo.com (marketing site) and app.armylbo.com (the application)
Who we are: Army Leaders Book Online ("Army LBO," "we," "us," or "our") provides software to help military leaders track readiness and unit information. We are not affiliated with the U.S. Department of Defense.

Plain‑English summary (1 minute): We collect only the data needed to run Army LBO (account details, unit and soldier records your organization enters, and basic device logs). We never sell your data. We use trusted vendors (for example, Google Firebase for hosting, Stripe for payments, and SendGrid for email). You can access, correct, export, or delete your data. We keep data while your account is active and then purge it on request or after a grace period. We encrypt data in transit and at rest and restrict access by role. Do not upload classified/CUI, PHI/medical records, Social Security Numbers, or anything outside the fields this system is designed to store.
 

This Privacy Policy explains how we collect, use, disclose, and protect personal data when you visit armylbo.com, use app.armylbo.com, contact us, or otherwise interact with Army LBO. By using our services, you agree to this Policy.

The information we collect depends on how you use Army LBO.

• Account & profile: name, email, (optional) phone, rank, MOS, unit, platoon, role, and other profile fields you choose to add.
   
• Authentication: password (hashed), or identity tokens when you sign in with Google/Apple.
   
• Organization & soldier records: data entered by you or your unit admins (e.g., DODID, training/licensing status and dates, APFT/ACFT/AFT data, weapons qualification, counseling summaries/documents you upload, attendance notes, readiness flags). Each unit controls which fields they track.
   
• Payment details (via Stripe): subscription status, plan, billing email, and last 4 digits/card brand if you enter them in Stripe’s secure forms. We do not receive full card numbers.
   
• Support & feedback: content of messages, file attachments, and metadata.
   

• Device & log data: IP address, approximate location from IP, browser/OS, pages viewed, timestamps, referring URLs, crash logs, and basic analytics (aggregated and de‑identified where possible).
   
• Cookies and local storage: to keep you signed in, remember settings (e.g., theme), and measure site performance.
   

• Login providers: Google/Apple provide account identifiers we use to authenticate you.
   
• Payment processor: Stripe provides billing events and subscription status.
   

• Government identifiers: Some units store DODID for canonical identity. We treat DODID as sensitive personal data and protect it accordingly.
   
• We do not intend to collect: Social Security Numbers, protected health information (PHI), classified information, Controlled Unclassified Information (CUI), or other sensitive categories unless strictly necessary and explicitly supported in the product. Uploading classified/CUI/PHI/SSN is prohibited.
   

• Provide and secure the service: account creation, authentication, role‑based access, unit roster and readiness tracking, notifications, device compatibility, and fraud/abuse prevention.
   
• Operate our business: billing and account management, customer support, troubleshooting, service improvements, quality assurance, and audits.
   
• Legal & compliance: enforce terms, comply with lawful requests, protect rights, safety, and integrity of users and the service.
   

No sale or targeted advertising: We do not sell your personal information. We do not share personal information for cross‑context behavioral advertising as defined by the California Consumer Privacy Act (CCPA/CPRA).

If you are in the European Economic Area or the United Kingdom, we process personal data under these legal bases: Contract (to deliver the service you requested), Legitimate Interests (to secure and improve our services), Consent (where required, e.g., certain cookies), and Legal Obligation (to comply with laws).

We disclose personal data only as described below:

• Service providers / processors acting on our behalf, bound by contract to protect your data and use it only for our instructions. Typical providers include:
   
  • Hosting & database: Google Cloud / Firebase (Authentication, Firestore, Functions, Hosting)
     
  • Payments: Stripe
     
  • Email delivery: SendGrid (or equivalent)
     
  • Monitoring & error reporting: e.g., Sentry or similar (if enabled)
     
  • Analytics: e.g., privacy‑respecting analytics or Google Analytics (if enabled)
     
• Authentication providers: Google and Apple if you choose those options.
   
• Enterprise admins: Within your organization, data is visible according to your unit’s role‑based permissions.
   
• Legal & safety: To comply with law, lawful requests, or to protect the rights, property, and safety of Army LBO, our users, or others.
   
• Business transfers: If we undergo a merger, acquisition, or asset sale, we will provide notice and continue to protect data consistent with this Policy.
   

We do not permit providers to sell your data or use it for their own marketing.

We retain personal data only as long as necessary for the purposes described in this Policy:

• Account & profile: kept while your account is active. If you delete your account or your admin requests deletion, we queue the record for deletion and remove backups within ~35 days.
   
• Unit/soldier records: retained while the sponsoring organization maintains the workspace. On workspace termination or admin request, we begin deletion and remove backups within ~35 days. Some audit logs may persist up to 12 months for security and legal purposes.
   
• Billing records: retained as required by tax and accounting law (often 7 years in the U.S.).
   

We use administrative, technical, and physical safeguards appropriate to the data we process, including:

• Encryption in transit (TLS) and at rest (via our cloud providers)
   
• Hardened infrastructure on reputable cloud platforms (e.g., Firebase/Google Cloud)
   
• Role‑based access control and least‑privilege permissions
   
• Firestore security rules and server‑side validation
   
• Audit logging and alerting
   
• Regular backups and disaster recovery
   

No system can be 100% secure. If we learn of a breach, we will notify affected users consistent with applicable law and coordinate with unit admins.

Your available privacy rights depend on where you live and your role in a workspace. In all cases, you can:

• Access & export your data
   
• Correct inaccurate data
   
• Delete data (subject to legal and organizational requirements)
   
• Object / restrict certain processing
   
• Withdraw consent where processing is based on consent
   

How to make a request: Email privacy@armylbo.com with your name, account email, and a description of your request. If your data is controlled by your unit (e.g., soldier records), we may direct you to your organization’s admin, who is the “controller” for those records within the workspace. We will not discriminate against you for exercising your rights.

• We do not sell personal information and do not share it for targeted advertising.
   
• You may request to know, access, correct, or delete personal information and to appeal a denial (where applicable). To appeal, reply to our decision email with “Appeal” in the subject.
   
• We honor authorized agent requests as required by law.
   

• You may lodge a complaint with your local supervisory authority (e.g., ICO in the UK) if you believe we have not complied with data protection laws.
   

We use:

• Strictly necessary cookies/local storage (e.g., session tokens, CSRF protection, feature preferences). These are required to operate the app.
   
• Optional analytics (if enabled) to understand aggregate usage and improve performance. Where required, we request your consent.
   

You can control cookies through your browser settings. Disabling required cookies may prevent the app from working.

We store most data in the United States. If we transfer your personal data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent mechanisms.

Army LBO is intended for use by adult service members and supporting personnel. We do not knowingly collect personal data from children under 13 (or the minimum age required in your jurisdiction). If you believe a child has provided personal data, contact privacy@armylbo.com and we will delete it.

Army LBO is not an official U.S. Government information system. Do not upload classified information, Controlled Unclassified Information (CUI), PHI/medical records, Social Security Numbers, or other restricted data. Army LBO is designed for unclassified readiness and administrative data only.

Because there is no common industry standard, Army LBO does not currently respond to browser Do Not Track signals. We will honor Global Privacy Control (GPC) signals for opt‑out where legally required and technically feasible.

We may update this Policy from time to time. We will post the revised Policy here and update the “Effective date.” If changes are material, we will notify account holders (e.g., by email or in‑app notice) before they take effect.

Questions or requests?
Email: privacy@armylbo.com
(If you prefer a postal address, include your organization’s mailing address here.)

This list is representative; your deployment may vary. We will maintain an up‑to‑date list upon request.
 

• Google Cloud / Firebase — hosting, database, authentication
   
• Stripe, Inc. — subscription billing and payments
   
• Twilio SendGrid — transactional emails
   

• Account & profile: retained while active; delete on request; backups cleared within ~35 days
   
• Unit/soldier records: retained while workspace active; delete on admin request; backups cleared within ~35 days
   
• Security logs: up to 12 months (to investigate abuse/security issues)
   
• Billing/tax records: 7 years (or as required by law)
   

• Workspace admin (your organization): determines what fields to track; manages roles and access; responds to member/soldier data requests for records stored in the workspace.
   
• Army LBO (processor for workspace data): processes data under the admin’s instructions; secures the platform; supports data subject requests and incident response.