​Catalina Mobile - Privacy Policy

Effective Date: 05/19/2025
Last Updated: 06/30/2025

Catalina Mobile Application (“Catalina”, “we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy outlines how Catalina handles user data, with specific emphasis on data used for student and staff identification through our integration with the Orbund Student Information System (SIS), including the Catalina Timeclock biometric attendance functionality.

1. No Local Data Storage
Catalina does not store, maintain, or cache any personal user data on the device or within local storage. All data processing occurs securely in memory and is never persisted.

• No persistent storage of personal information (e.g., names, email addresses, biometric data).
• No caching or saving of session data, login credentials, or sensitive academic records on the device.
• Catalina Timeclock also does not store biometric templates or identity logs locally.

2. Data Access and Use

Catalina accesses student and staff information solely for the purpose of providing real-time functionalities enabled by the Orbund SIS integration. These include:

• Viewing academic, attendance, or schedule data.
• Biometric clock-in/out functionality using fingerprint readers.
• Secure login, session verification, and identity validation.

All data access is:

• Read-only and transient
• Conducted over HTTPS (SSL/TLS encrypted) API calls
• Immediately discarded after the action is completed

3. Biometric Data Handling

• Catalina does not store or retain any biometric data, including fingerprint images or templates, on the device or in app storage.
• Fingerprints are used exclusively to identify and validate a user’s identity via Orbund.
• Catalina serves only as a secure passthrough to transmit biometric input for real-time verification.
• All biometric communication is conducted using encrypted transmission protocols.
• Confirmation events (e.g., successful clock-in or clock-out) may log timestamps within Orbund for attendance records, but never include fingerprint data.

4. Authentication & User Sessions
User authentication is processed securely via Orbund’s systems. Catalina:

• Does not store login credentials or authentication tokens persistently.
• Uses in-memory session handling only.
• Automatically discards all session-related data when the app is closed or the session ends.

​5. Third-Party Services
Catalina does not integrate with or share data with third-party services outside of Orbund.

6. Data Security
We follow industry best practices to ensure secure handling of all user and biometric-related data:

• SSL/TLS encryption for all communication between Catalina and Orbund servers.
• Use of token-based authentication where applicable.
• No biometric data is ever written to disk.
• All transient data (e.g., fingerprint scans, sessions) is purged from memory immediately after each operation.

7. Compliance with Google & Apple Guidelines Catalina complies with:
- Google Play User Data Policy: https://support.google.com/googleplay/android-developer/answer/10787469
- Apple App Store Data Collection and Storage Guidelines: https://developer.apple.com/app-store/app-privacy-details/

Key compliance measures:

• No user data is sold or used for advertising.
• Catalina only requests the minimum necessary permissions (e.g., fingerprint scanner access).
• No biometric data is used outside of the immediate authentication process.
• Full transparency is provided to users regarding data usage.

 

8. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact:

Catalina Support Team
Email: [email protected]
Phone: (727) 261-7103