NextStation
Sign InGet Started

Privacy Policy

Last updated: March 3, 2026 · Effective: March 3, 2026

NextStation ("we," "us," or "our") operates the NextStation mobile and web application. This policy explains how we collect, use, store, and protect your information, and your rights regarding that information.

Information We Collect

Information You Provide

  • • Email address and password (account registration)
  • • Name, military branch, rank category, and pay grade
  • • PCS move details: origin/destination locations, dates, orders information
  • • Questionnaire responses about your move situation
  • • Documents and files you upload to the Document Vault
  • • Community posts and messages (Pro users)
  • • Payment information (processed by Stripe — we do not store card numbers)

Information Collected Automatically

  • • Device type, operating system, and browser
  • • App usage data: pages visited, features used, session duration
  • • IP address (used for security and fraud prevention only)
  • • Error logs and crash reports

Children's Privacy (COPPA)

NextStation is not directed to children under 13. We do not knowingly collect personal information from anyone under 13. If you believe we have inadvertently collected such information, contact us at [email protected] and we will delete it promptly.

How We Use Your Information

  • • To create and manage your account
  • • To generate personalized PCS task checklists based on your profile
  • • To power your timeline, budget tracker, and document vault
  • • To process payments and manage your plan
  • • To send transactional emails (account confirmation, password reset, receipts)
  • • To provide customer support
  • • To improve the platform through aggregated, anonymized usage analytics
  • • To comply with legal obligations

We do not sell, rent, or trade your personal information to third parties for marketing purposes. Ever.

Data Sharing and Third Parties

We share your data only with:

Supabase — Our database and authentication provider. Data is stored in the United States with encryption at rest and in transit.
Stripe — Payment processing for Pro subscriptions. Stripe handles all card data; we only receive a payment token and subscription status.
Cloudflare — Hosting and DDoS protection.
Law enforcement — Only when required by valid legal process (subpoena, court order) or to protect safety.

Data Security

  • • All data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
  • • Row-Level Security (RLS) ensures you can only access your own data
  • • Passwords are hashed using bcrypt and never stored in plain text
  • • We conduct regular security reviews and promptly patch vulnerabilities

No system is 100% secure. In the event of a data breach affecting your personal information, we will notify you within 72 hours via email as required by applicable law.

Data Retention

We retain your data for as long as your account is active. When you delete your account:

  • • Your profile, moves, tasks, and documents are deleted within 30 days
  • • Payment records are retained for 7 years as required by tax law
  • • Anonymized, aggregated analytics data may be retained indefinitely
  • • Community posts may be retained in anonymized form

Your Rights and Choices

You have the right to:

  • Access — Request a copy of your personal data
  • Correct — Update inaccurate or incomplete information via Settings
  • Delete — Delete your account and data via Settings → Account → Delete Account
  • Portability — Request an export of your data in a machine-readable format
  • Opt out — Unsubscribe from marketing emails at any time
  • CCPA — California residents may request disclosure of data sharing and opt out of any future sale of personal information

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

Cookies and Tracking

We use only essential cookies required to maintain your authenticated session and preferences. We do not use third-party advertising cookies, tracking pixels, or behavioral advertising. You can clear cookies at any time through your browser settings; this will sign you out.

International Users

NextStation is operated in the United States. If you access the service from outside the US (including OCONUS military installations), your data will be transferred to and processed in the United States. By using NextStation, you consent to this transfer.

Contact Us

For privacy-related questions, data requests, or concerns:

We may update this Privacy Policy periodically. Material changes will be communicated via email or an in-app notice at least 14 days before taking effect. Your continued use after the effective date constitutes acceptance.