Legal

Privacy Policy

This explains what Helm collects, why, and the choices you have — written in plain language, without the boilerplate.

Effective date: 5 July 2026 Last updated: 5 July 2026 Applies to: the Helm iOS app and helm.voyage

Overview

Helm ("Helm", "we", "us") is a voyage tracker and live AIS ship-tracking app for cruise passengers, crew, and ship enthusiasts. Helm is a standalone product — it isn't operated under, or affiliated with, any other brand — and this policy covers the Helm app and this website only.

Helm's guiding principle is simple: we collect what's needed to run the logbook, the planner, and live tracking — nothing that isn't. We never sell your data.

In short: we store your account, your voyages, plans, and budget entries on our servers so they sync across your devices. We do not track your real-world location — Helm shows you ships' positions via public AIS data, not your own location, and Helm never requests device GPS access.

Data we collect

What we collect depends on how you use the app.

Account identity

Voyage, planner & budget data

Voyages default to private. You choose, per voyage, whether to make it visible to people who follow you ("friends") or to everyone ("public") — see below.

Social features (opt-in)

These features are opt-in via your per-voyage visibility setting. Nothing is shared publicly by default.

Notifications

Helm's backend can store a device push token against your account for features like departure/arrival alerts and social notifications. Push notifications are not live yet in the current build — if/when they're enabled, we'll update this policy and the in-app settings, and you'll be able to disable them any time in iOS Settings.

Membership status

If you join the Watch, Apple's App Store/StoreKit gives our backend a signed transaction receipt, which we verify directly with Apple. From that we store which product you bought, whether your membership is active, and its expiry/renewal date. We never receive or store your card number, billing address, or other payment details — that's handled entirely by Apple.

Weather & ship-position lookups

When you view sea conditions or a tracked ship's position, the app sends coordinates (the ship's or a port's position — not your device location) to our backend, which relays them to our weather provider to fetch a marine forecast. We cache the result keyed to a rounded location grid and hour, not to you personally.

What we do not collect

Server logs

Like any web service, our backend produces routine operational logs (timestamps, endpoint paths, response codes, coarse error messages) to keep the service running and to debug failures. These are not used for analytics, profiling, or advertising, and are retained only as long as needed for operational and security purposes.

How we use it

Location & ship tracking, specifically

Helm's live tracking uses AIS (Automatic Identification System) data — the same public maritime transponder signals ships broadcast for navigational safety — sourced from AISStream (aisstream.io). This tells you where a ship is; it is not your personal location, and none of your personal data is sent to AISStream.

Helm does not request Location permission on iOS and does not access your device's GPS in the background. No on-device location is ever sent to our servers — only ship and port coordinates that are already public reference data.

Sharing

We share the minimum data necessary with these categories of third party. None of them may use your data for their own advertising purposes, and we do not use any advertising, marketing, or analytics third parties.

We do not sell your personal data, and we do not share it for cross-context behavioural advertising.

The Watch & payment data

The Watch ($49.99/year or $5.99/month, with a 14-day free trial) is sold and billed entirely through Apple's App Store — "subscription" is the term Apple's own purchase sheet uses, for platform-compliance reasons, but everywhere else we call it a membership. Apple — not Helm — collects and processes your payment details. Helm receives only a signed receipt confirming your entitlement status, which we verify against Apple's servers before unlocking Watch features on your account.

For how to manage, change, or cancel the Watch, see Support → The Watch.

Data retention

We retain your account and content for as long as your account is active. If you delete your account (see Support → Delete your data), we delete your personal data and user content within a reasonable period, except where we must keep limited records for legal, tax, fraud-prevention, or dispute-resolution purposes — for example, subscription transaction records Apple or tax law requires us to retain for a set period.

Cached weather data and vessel AIS position history are reference/operational data, not personal data, and are retained on an operational basis (for example, rolling windows) independent of any individual account.

Your rights & choices

Wherever you're located, you can email support@helm.voyage at any time to:

If you're in the UK or EEA, these are your rights under UK GDPR/GDPR (access, rectification, erasure, restriction, portability, and objection), and you can also lodge a complaint with your local data protection authority (in the UK, the Information Commissioner's Office, ico.org.uk) if you believe we haven't handled your data properly. If you're a California resident, you have similar rights under the CCPA/CPRA (know, delete, correct, and opt out of sale/sharing) — Helm does not sell or share personal data for cross-context advertising.

We respond to verified requests within a reasonable time and in any event within the time limits required by applicable law — see Support for details.

Security

We use industry-standard measures to protect your data, including encryption in transit (HTTPS/TLS) between the app and our backend, hashed/signed authentication tokens, server-side verification of all Apple identity tokens and StoreKit transactions (we never trust client-supplied purchase claims), and access controls on our database and hosting infrastructure. No method of transmission or storage is 100% secure, but we work to protect your information using measures appropriate to its sensitivity.

International data transfer

Our servers and database may be located in a different country from where you use Helm. Where we transfer personal data internationally (for example, from the UK/EEA to a hosting region outside it), we rely on appropriate safeguards such as the UK International Data Transfer Addendum or the EU Standard Contractual Clauses, or transfers to regions the UK/EU consider to provide adequate protection.

Children

Helm is not directed at children, and you must be at least 16 years old to create a Helm account. Helm's social features (public profiles, follows, "who's aboard") mean some content you post may be visible to other users, and we restrict the minimum age accordingly. If we learn we've collected personal data from someone under this age without appropriate consent, we'll delete that account and data.

Changes to this policy

We may update this policy from time to time, for example as we add features (like push notifications) or change providers. We'll update the "Last updated" date above, and for material changes we'll provide notice in the app or by email before the changes take effect.

Contact

Questions about this policy or your data? Email support@helm.voyage. We aim to respond to all privacy requests within a reasonable time and within any limits required by law.

Have a specific request?

Access, export, correction, or deletion — we handle these directly, no ticket queue.

support@helm.voyage