ArcherEye Privacy Policy

Last updated: December 2025

ArcherEye is a student-created web application developed by Lasallian students for the DLSU community. Even though ArcherEye is not a registered company, we take your privacy seriously and are committed to protecting the personal data you share with us.

This Privacy Policy explains how we collect, use, store, and safeguard your information in accordance with the Data Privacy Act of 2012 (Republic Act No. 10173) and the National Privacy Commission (NPC) guidelines.

1. Data Controller

ArcherEye
Operated by ArcherEye developers
📧 contact@archer-eye.com

All inquiries, data deletion requests, or privacy concerns may be sent to this address.

2. Information We Collect

When you use ArcherEye and sign in via Google, we collect limited personal and academic information necessary to operate the platform securely and meaningfully.

2.1 From All Users (students and professors)

• Full name (as shown on your Google profile)
• Email address (used for authentication)
• Profile picture (link provided by Google)

2.2 Additional Data for Students

• Batch ID number (e.g., ID120, ID121)
• College (e.g., College of Computer Studies, College of Liberal Arts)

2.3 Additional Data for Professors

• Department affiliation (for display on the professor’s public profile page)

We collect this information only after you authorize Google Sign-In or when you voluntarily provide additional details (e.g., when editing your profile).

We do not request access to your password, Google Drive files, or other sensitive permissions.

3. Legal Basis for Processing

We process your personal data based on:

• Your consent, given when you sign in and use ArcherEye
• Legitimate interests, such as maintaining platform integrity, community verification, and feature improvement

4. Purpose of Collection and Use

We use the collected information only for purposes directly related to ArcherEye’s operation:

1. Identity and Eligibility Verification
   To confirm that users are legitimate members of the DLSU community (undergraduate, graduate, or professor). Batch ID, college, and department data help support moderation and prevent unauthorized use.

2. Profile and Attribution
   For students — Batch ID and college may be displayed as part of the reviewer profile (e.g., “ID121, CCS”).
   For professors — Department is shown on the public professor profile page for context.

3. Authentication and Access Control
   To allow secure login and prevent duplicate accounts or misuse.

4. Communication and Notifications
   We may use your registered email address to:

   • Send service notices (privacy policy updates, account issues
   • Respond to your requests (e.g., bug reports or data deletion)
   • Notify you about important moderation or security matters

We do not send marketing emails or promotional content.

5. Analytics and User Experience Improvement
   We use aggregated analytics to understand how users interact with the platform and improve features. No personally identifiable data is shared publicly.

5. Data Storage and Retention

Your data (name, email, profile picture, batch ID, college, and department) is stored securely in Supabase, a cloud service with industry-standard encryption.

We retain your data as long as your account remains active or until you request deletion via contact@archer-eye.com.

6. Data Sharing and Disclosure

ArcherEye does not sell, rent, or share personal data with third parties. We do not share user information with DLSU administration or professors unless required by law. Access to data is restricted to authorized student maintainers for maintenance and moderation only.

7. Third-Party Services

We use trusted providers to run ArcherEye securely:

• Google Sign-In – authentication and profile retrieval
• Supabase – encrypted data storage and database management
• PostHog – user experience and analytics tracking

PostHog collects anonymous usage data (e.g., page views, click paths) to help improve ArcherEye. We do not sell or expose personal information through analytics.

External Policies:

• Google → https://policies.google.com/privacy
• Supabase → https://supabase.com/privacy
• PostHog → https://posthog.com/privacy

8. Security Measures

We apply reasonable security practices, including:

• Encrypted HTTPS connections
• Data encryption at rest and in transit
• Role-based access for student maintainers
• Regular review of access logs and configurations

Although we take these steps, no system is 100% secure. In the unlikely event of a breach, we will follow NPC notification guidelines and contact affected users if necessary.

9. Your Data Privacy Rights

Under the Data Privacy Act, you have the right to be informed, access, correct, erase, object, and file a complaint with the NPC.

Requests can be made via contact@archer-eye.com.

10. Access Eligibility

ArcherEye is available only to DLSU undergraduate and graduate students, alumni, and DLSU professors.
Users must sign in through Google to verify eligibility and maintain platform integrity. Misuse or false representation may lead to account removal.

11. Student-Built Disclaimer and Liability

ArcherEye is a student-built application and is not an official DLSU system. While we strive for data security and platform stability, the application is provided “as is.”

To the extent permitted by law, ArcherEye and its student developers shall not be liable for incidental or consequential damages arising from use of the service or data loss beyond reasonable control.

12. Policy Updates

We may revise this Privacy Policy as we update features or third-party integrations. Significant changes will be posted on this page and, where feasible, communicated to registered users by email.

13. Contact Us

📧 contact@archer-eye.com
Subject: Data Privacy Concern – ArcherEye

We will strive to respond promptly, acknowledging that ArcherEye is maintained by a volunteer student team.