Privacy Policy

Last updated: April 24, 2026

JetLens, operated by Jet Lens, LLC, a Florida limited liability company ("we", "our", "us"), provides a software platform for Part-145 maintenance organizations and Part-135 aircraft operators to manage compliance, personnel, audits, and related operations. This policy explains what personal data we collect, how we use it, and the rights you have over it.

1. Data we collect

  • Account data: name, email address, role inside your organization, authentication identifiers.
  • Organization data: aircraft records, personnel records, training + certification data, audit and discrepancy data, vendor information, fuel and maintenance activity. This is the data your organization uploads or generates while using JetLens.
  • Usage telemetry: pages visited, timestamps, action types (create / update / delete), device + browser metadata, IP address. Used for security, debugging, and product improvement.
  • Error reports: when the app crashes we capture the stack trace, route, and a short breadcrumb of recent user actions. Personally identifying values are scrubbed before upload.

2. Why we process it

  • To provide the service you or your organization signed up for (performance of a contract).
  • To secure the service — detect abuse, investigate incidents, audit admin actions (legitimate interest).
  • To improve the product through aggregated, de-identified usage analysis (legitimate interest).
  • To comply with legal obligations, including aviation-authority record-keeping requirements where applicable.

3. Subprocessors

We use the following third-party services to operate JetLens. Each has their own privacy policy; we contract them to process data only as instructed.

  • Supabase — database, authentication, file storage.
  • Vercel — application hosting, CDN, logs.
  • Resend — transactional email delivery.
  • Sentry — error tracking.
  • OpenAI / Mistral — AI-assisted document parsing and compliance extraction. Documents you explicitly submit for extraction are sent to these providers under their zero-retention data policies.

4. Retention

  • Your organization's operational data is retained for the life of your account and for up to 90 days after termination, at which point it is deleted unless regulatory retention rules require longer.
  • Platform admin audit logs are retained for up to 365 days.
  • Cron and system observability data is retained for 90 days.
  • On written request we will delete an individual's personal data, subject to obligations that require us to retain it (e.g. aviation regulators).

5. Security

Data is encrypted in transit via TLS and at rest via our infrastructure providers' standard encryption. Access is role-gated and scoped to the organization the user belongs to. Administrative actions are logged to an append-only audit trail.

6. Your rights

Depending on your jurisdiction, you may have rights to access, correct, export, or delete personal data we hold about you, and to object to certain processing. Email privacy@jetlens.io to exercise any of these. We respond within 30 days.

7. International transfers

JetLens infrastructure is primarily hosted in the United States. If you are located elsewhere, your data may be transferred to and processed in the US or other countries where our subprocessors operate.

8. Changes to this policy

We will post changes here with a revised "Last updated" date. For material changes we will notify affected users by email at least 30 days before they take effect.

9. Contact

Questions or requests: privacy@jetlens.io.