Privacy Policy 隱私權政策
Last updated 最後更新: 2026-03-13
Overview 概述
CrewSync is a flight operations toolkit for airline crew members. We respect your privacy and are committed to protecting your personal data.
CrewSync 是一款航空組員飛行操作工具。我們尊重您的隱私,並致力於保護您的個人資料。
1. Data Accessed 存取的資料
With your explicit authorization via Google OAuth 2.0, CrewSync accesses your Google Calendar to read existing events and write flight roster events. The specific scope used is https://www.googleapis.com/auth/calendar (read and write access to Google Calendar).
經您透過 Google OAuth 2.0 明確授權,CrewSync 存取您的 Google 日曆以讀取現有事件及寫入飛行班表事件。使用的權限範圍為 calendar(Google 日曆讀寫權限)。
2. Data Usage 資料使用方式
- CrewSync uses your Google Calendar data solely to synchronize your flight roster: reading existing calendar events to avoid duplicate entries, and creating/updating calendar events based on your crew roster.
CrewSync 僅將您的 Google 日曆資料用於同步飛行班表:讀取現有事件以避免重複建立,並根據您的組員班表新增或更新日曆事件。
- CrewSync does not use your data for advertising, analytics, or any purpose other than the roster synchronization feature you initiated.
CrewSync 不會將您的資料用於廣告、分析或班表同步以外的任何用途。
Google API Services User Data Policy Compliance: CrewSync's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
符合 Google API 服務使用者資料政策:CrewSync 對於從 Google API 收到的資訊的使用和轉移,將遵守 Google API 服務使用者資料政策,包括其中的「受限使用」要求。
3. Data Sharing 資料分享
- CrewSync does not sell, share, or transfer your Google user data to any third party.
CrewSync 不會出售、分享或轉移您的 Google 使用者資料給任何第三方。
- No Google user data is used for advertising or shared with data brokers.
不會將 Google 使用者資料用於廣告或提供給資料仲介。
4. Data Storage & Protection 資料儲存與保護
- All user data (roster, settings, OAuth tokens) is stored locally on your device using browser localStorage. CrewSync does not store any personal data on its servers.
所有使用者資料(班表、設定、OAuth token)皆透過瀏覽器 localStorage 儲存在您的裝置上。CrewSync 不會在伺服器上儲存任何個人資料。
- OAuth tokens are stored only in your browser's localStorage and are never transmitted to or stored on our servers.
OAuth token 僅儲存於您瀏覽器的 localStorage,絕不會傳輸至或儲存於我們的伺服器。
- Data protection measures: all communication uses HTTPS encryption; OAuth 2.0 with PKCE (S256) is used for secure authorization; the server acts only as a proxy and does not retain any user data.
資料保護措施:所有通訊使用 HTTPS 加密;OAuth 2.0 搭配 PKCE (S256) 進行安全授權;伺服器僅作為代理,不保留任何使用者資料。
5. Data Retention & Deletion 資料保留與刪除
- Since all data is stored locally in your browser, you have full control over data retention. Data is retained only as long as it remains in your browser's localStorage.
由於所有資料皆儲存在您的瀏覽器本機,您對資料保留擁有完全控制權。資料僅在您瀏覽器的 localStorage 中保留。
- To delete all CrewSync data: clear your browser's localStorage for the CrewSync site, or use the app's built-in "Reset" functions.
刪除所有 CrewSync 資料:清除瀏覽器中 CrewSync 網站的 localStorage,或使用 app 內建的「重設」功能。
- To revoke Google Calendar access: visit your Google Account permissions and remove CrewSync. This immediately revokes all access to your Google Calendar data.
撤銷 Google 日曆存取權:前往 Google 帳戶權限設定 移除 CrewSync,即可立即撤銷所有 Google 日曆資料的存取權。
Third-Party Services 第三方服務
| 服務 Service | 用途 Purpose |
|---|
| Google Calendar API | 班表同步(需使用者授權)
Roster synchronization (user-authorized) |
| Aviation Weather APIs | METAR/TAF 航空氣象
Aviation weather data |
| atis.guru | D-ATIS 資料
D-ATIS data |
| CodeTabs CORS Proxy | 前端跨域代理
Frontend cross-origin proxy |
| OpenSky Network API | Live Radar 即時航機位置
Live aircraft positions |
| FlightRadar24 (unofficial) | FR24 航班追蹤
Flight tracking data |
| FlightAware (unofficial) | FR24 航班起訖地補充
Flight origin/destination supplement |
| Taoyuan Airport FIDS API | Gate Info 航班資訊顯示
Flight information display |
Google Calendar API accesses calendar data with user authorization (see "Data Usage" above). No personal data is sent in any other third-party requests.
Google Calendar API 經使用者授權後存取日曆資料,詳見上方「資料使用方式」。其餘第三方服務請求均不包含任何個人資料。
Contact 聯繫方式
If you have questions about this privacy policy, please contact us via GitHub Issues.
如有任何關於本隱私權政策的問題,請透過 GitHub Issues 聯繫我們。