Privacy Policy for Dumpy Pro
Last updated: March 23, 2026
This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.
Dumpy Pro is designed to collect as little data as possible. All survey, drainage, and job data You create is stored locally on Your device and never transmitted to Us. The only exception is the optional Site Comms feature, described below.
The words whose initial letters are capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.
For the purposes of this Privacy Policy:
Affiliate means an entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
Application refers to Dumpy Pro, the software program provided by the Company.
CCPA and/or CPRA refers to the California Consumer Privacy Act (the "CCPA") as amended by the California Privacy Rights Act of 2020 (the "CPRA").
Company (referred to as either "the Company", "We", "Us" or "Our" in this Privacy Policy) refers to Dumpy Pro.
For the purposes of the GDPR, the Company is the Data Controller.
Consumer, for the purpose of the CCPA/CPRA, means a natural person who is a California resident.
Country refers to: United Kingdom
Data Controller, for the purposes of the GDPR (General Data Protection Regulation), refers to the Company as the legal person which alone or jointly with others determines the purposes and means of the processing of Personal Data.
Device means any device that can access the Service such as a cell phone or digital tablet.
GDPR refers to EU General Data Protection Regulation.
Personal Data (or "Personal Information") is any information that relates to an identified or identifiable individual.
For the purposes of GDPR, Personal Data means any information relating to You such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity.
For the purposes of the CCPA/CPRA, Personal Data means any information that identifies, relates to, describes or is capable of being associated with, or could reasonably be linked, directly or indirectly, with You.
We use "Personal Data" and "Personal Information" interchangeably unless a law uses a specific term.
Service refers to the Application.
Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service or to provide the Service on behalf of the Company. For the purposes of the GDPR, Service Providers are considered Data Processors.
You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.
Under GDPR, You can be referred to as the Data Subject or as the User as you are the individual using the Service.
We do not require You to create an account or provide any personally identifiable information — such as Your name, email address, or phone number — to use the Service. No such information is collected by Us.
All survey readings, job records, drainage grades, as-built results, and app settings You create are stored locally on Your Device using standard iOS storage. This data is never transmitted to Us and remains entirely under Your control. It is deleted when You delete the app.
The Site Comms feature allows two devices to communicate in real time during a surveying session. When You choose to use this feature:
Google Firebase infrastructure may process connection metadata (such as IP addresses) as a standard part of operating its network. This processing is subject to Google's Privacy Policy (policies.google.com/privacy) and is not under Our control.
We do not collect, access, or retain any analytics, usage statistics, crash reports, advertising identifiers, or device identifiers.
The limited data involved in Site Comms sessions is used solely for the purpose of transmitting real-time survey information between two devices at Your request. It is not used for any other purpose, and it is not retained after the session ends.
We do not sell, share, or disclose Your data to any third parties for commercial, marketing, or analytical purposes.
The only third-party infrastructure used is Google Firebase (Google LLC), which hosts Site Comms session data temporarily as described above. Google processes this data as a Service Provider under Our instruction, solely for the purpose of relaying session data between devices.
You have full control over Your local app data and can delete individual jobs, readings, or all data at any time from within the app. Uninstalling the app removes all locally stored data from Your Device.
For Site Comms data, deletion is automatic and no action is required on Your part.
Under certain circumstances, the Company may be required to disclose data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency). Given that We retain no personal data beyond active Site Comms sessions, there is very little that could be subject to such requests.
The Company may take action in the good faith belief that such action is necessary to:
Local app data is protected by Your Device's built-in iOS security. Site Comms session data is transmitted over encrypted connections to Google Firebase servers. While We strive to use commercially reasonable means to protect Your data, no method of transmission over the Internet is 100% secure.
The only processing We are involved in under GDPR is the temporary handling of Site Comms session data. The legal basis for this processing is:
When You use Site Comms, data is processed on Google Firebase servers, which may be located outside the European Economic Area ("EEA") and the United Kingdom ("UK"). Google LLC participates in appropriate cross-border data transfer frameworks and its processing is governed by Google's Privacy Policy.
You may contact Us using the details in the "Contact Us" section for further information about the safeguards in place for such transfers.
You have the right under this Privacy Policy, and by law if You are within the EU, to:
You may exercise Your rights by contacting Us. We will try our best to respond to You as soon as possible. We generally respond within one month, and may extend by two further months where necessary, in accordance with applicable law.
You have the right to complain to a Data Protection Authority about Our collection and use of Your Personal Data. For more information, if You are in the European Economic Area (EEA), please contact Your local data protection authority in the EEA.
This privacy notice section for California residents supplements the information contained in Our Privacy Policy and it applies solely to all visitors, users, and others who reside in the State of California.
The following is a list of CCPA/CPRA categories of personal information and whether they are collected by Us:
Category A: Identifiers.
Examples: A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name.
Collected: No. We do not collect names, emails, account identifiers, or device identifiers. Google Firebase may process IP addresses as infrastructure metadata subject to Google's own privacy policy.
Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).
Collected: No.
Category C: Protected classification characteristics under California or federal law.
Collected: No.
Category D: Commercial information.
Collected: No.
Category E: Biometric information.
Collected: No.
Category F: Internet or other similar network activity.
Examples: Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.
Collected: No. We do not use analytics, advertising SDKs, or activity tracking. Firebase Analytics is disabled in the app.
Category G: Geolocation data.
Collected: No.
Category H: Sensory data.
Collected: No.
Category I: Professional or employment-related information.
Collected: No.
Category J: Non-public education information.
Collected: No.
Category K: Inferences drawn from other personal information.
Collected: No.
Category L: Sensitive personal information.
Collected: No.
Under CCPA/CPRA, Personal Information does not include:
The only data We are involved in processing is Site Comms session data that You directly and voluntarily transmit when choosing to use that feature.
Site Comms session data is used solely to relay real-time survey information between two devices. It is not used for any commercial, analytical, or marketing purpose.
We have not disclosed any categories of personal information for business or commercial purposes in the last twelve (12) months, other than the temporary relay of Site Comms session data through Google Firebase infrastructure as described above.
We do not sell or share personal information as defined under the CCPA/CPRA. No personal information has been sold or shared in the last twelve (12) months.
Site Comms session data is deleted automatically upon session end or within 24 hours. Local app data is retained on Your Device until You delete it or uninstall the app.
We do not knowingly collect personal information from anyone under the age of 16. If You are a parent or guardian and You believe Your child has used the Service in a way that has resulted in data being transmitted, please contact Us.
The CCPA/CPRA provides California residents with specific rights regarding their personal information. If You are a resident of California, You have the following rights:
To exercise any of Your rights under the CCPA/CPRA, You can contact Us:
Our Service does not track Your browsing activities and does not respond to Do Not Track signals.
Our Service does not address anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under the age of 16. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us.
Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
If you have any questions about this Privacy Policy, You can contact us: