IAPViewer Privacy Policy
Effective Date: April 14, 2026
Last Updated: May 31, 2026
Summary: IAPViewer does not collect or transmit any of your personal data or network information. The app may request your device location to centre the map feature (optional, never stored or transmitted). The app downloads public IEEE manufacturer databases for device identification, and fetches an AP compatibility matrix from this support site to keep hardware compatibility data current. Everything else stays on your device and your local network.
Platform
IAPViewer is an iOS/iPadOS application supporting iOS 16 and later. It runs natively on iPhone and iPad. On Apple Silicon Macs, the same iPad app can be installed from the App Store and runs as a "Designed for iPad" application — the privacy behaviour described in this policy applies to all three.
References to "your device" in this document mean the iPhone, iPad, or Apple Silicon Mac on which IAPViewer is installed.
Information Collection and Use
What We Don't Collect
IAPViewer does not collect, transmit, store, or process any of the following:
- Personal information (name, email, phone number, etc.)
- Network credentials or passwords (except locally in your device's Keychain)
- MAC addresses from your network
- Network topology or configuration data
- Client device information from your network
- Usage statistics or analytics
- Crash reports or diagnostics
- Device identifiers
What Is Stored Locally (On Your Device Only)
The following data is stored exclusively on your device:
- Site configurations: Virtual Controller IP addresses, site names, usernames, and site icons/categories (Home, Office, Campus, etc.)
- Credentials: Passwords stored securely in the system Keychain using Apple's Keychain Services
- App preferences: Display settings including:
- Colour palette selection (Default, Colour Blind, High Contrast)
- Font size preference
- Per-site settings (RF RSSI cutoff threshold, retry rate cutoff percentage, API call gap)
- Spectrum data toggle and other Settings preferences
- User-entered AP placement data:
- AP coordinates (latitude/longitude) — only if you manually place APs using the map feature
- Calculated centre point of all placed APs (used for RF propagation visualisation)
- This location data is optional, user-entered, stored only on your device, and never transmitted anywhere
- Client history: A local record of wireless clients seen connected to your cluster, used to populate the Offline Clients section. Retention is configurable in Settings (default 90 days). Stored only on your device and never transmitted.
- Bluetooth (BLE) discovery data: When you enable Load BLE Data, IAPViewer reads the list of nearby Bluetooth devices (asset tags and beacons) that your own access points already detect, by querying the Virtual Controller — the app does not use your device's Bluetooth radio and does not scan for Bluetooth itself. This data is shown in the app and cached locally for the session; it is never transmitted anywhere.
- Performance cache data: Cached network information for faster loading, including:
- Firmware version (derived from Virtual Controller)
- Last connection timestamp
- AP count for the site
This cached data is derived from your Virtual Controller responses and stored locally to reduce API calls and improve app performance.
- IEEE OUI database cache: Downloaded manufacturer identification databases (see Network Communication section)
- AP compatibility matrix cache: A downloaded copy of the AP hardware compatibility database (see Network Communication section)
Important: All of this data is stored exclusively on your device. It never leaves your device and is not accessible to the developer or any third party. Deleting a site from the app removes all associated data including any AP coordinates you entered and the client history for that site. Deleting the app removes everything.
Network Communication
Aruba Virtual Controller (Local Network)
IAPViewer communicates with your Aruba Virtual Controller over your local network:
- All communication occurs via HTTPS to your VC IP address on port 4343
- Data is transmitted only between your device and your Virtual Controller
- No network data is sent to external servers or third parties
IEEE OUI Database Downloads (Internet)
IAPViewer downloads public IEEE OUI (Organizationally Unique Identifier) databases to identify device manufacturers from MAC addresses:
- Sources:
https://standards-oui.ieee.org/oui/oui.txt (MA-L, 6-char prefixes, ~38K entries)
https://standards-oui.ieee.org/oui28/mam.txt (MA-M, 7-char prefixes, ~5K entries)
https://standards-oui.ieee.org/oui36/oui36.txt (MA-S, 9-char prefixes, ~6K entries)
- Frequency: Weekly automatic updates
- Data transmitted: Standard HTTPS GET requests only — no user data, device identifiers, or MAC addresses from your network are sent
- Storage: Downloaded databases are cached locally in the app's documents directory
- Usage: Manufacturer lookups are performed entirely offline using the cached databases
Important: No MAC addresses from your network are ever transmitted to IEEE or any external service. The OUI databases are public reference data downloaded once and cached for offline use. Your network data stays on your device.
AP Compatibility Matrix (Internet)
IAPViewer downloads an AP hardware compatibility matrix from this support site to keep firmware compatibility data current:
- Source:
https://iapviewer.bdlfoundry.dev/ap-capability-matrix.json
- Frequency: Once per app launch, only if a newer version is available
- Data transmitted: Standard HTTPS GET request only — no user data, device identifiers, network information, or credentials are sent
- Storage: The matrix is cached locally in the app's documents directory
- Usage: Used offline to display firmware support ranges and flag constrained AP models in the Upgrade Planner
Important: This request contains no information about you, your network, or your devices. It is equivalent to downloading a public JSON file from a website.
No Analytics or Tracking
IAPViewer does not use:
- Analytics services (Google Analytics, Firebase, etc.)
- Crash reporting services (Crashlytics, Sentry, etc.)
- Advertising networks or trackers
- Third-party SDKs that collect data
Location Data
Device Location Access
IAPViewer may request access to your device's location services for the following optional feature:
- Map centring: When you open the RF Location map feature, the app may request your current location to centre the map on your position for convenience
- Frequency: Only when you open the map feature
- Storage: Your device location is never stored — it's used only to centre the map and then discarded immediately
- Transmission: Your device location is never transmitted to any server or third party
iPhone and iPad
On iPhone and iPad, the app prompts for location permission when you first open the RF Location map. You can grant or deny this at the prompt, and change it later in iOS Settings → IAPViewer → Location. If denied, the map will centre on a default region instead. The app functions normally without location access.
Apple Silicon Mac (Designed for iPad)
When the app is installed on an Apple Silicon Mac from the App Store, macOS may prompt for location permission depending on your system configuration. If you grant access, macOS determines your position using available network signals rather than GPS hardware — location is used only to centre the map and is never stored or transmitted. You can revoke this at any time in System Settings → Privacy & Security → Location Services → IAPViewer.
AP Placement Coordinates (User-Entered)
When you use the "Place APs" feature to manually mark AP locations on the map:
- You tap the map to place each AP at its physical installation location
- These coordinates (latitude/longitude) are stored only on your device
- The app calculates an approximate centre point of all placed APs for RF propagation visualisation
- This centre point is also stored only on your device
- None of these coordinates are ever transmitted to any server or third party
Data Security
Credential Storage
All Virtual Controller credentials are stored using Apple's Keychain Services:
- Passwords are encrypted by the operating system
- Credentials are protected by your device passcode/biometric authentication
- Keychain data is backed up to iCloud Keychain (if enabled) using Apple's end-to-end encryption
- The developer cannot access your credentials
Network Security
Communication with your Virtual Controller:
- Uses HTTPS with TLS encryption
- Accepts self-signed certificates (common for local network devices)
- Does not validate certificates against public Certificate Authorities (by design for local use)
Third-Party Services
IEEE Standards Organization
IAPViewer downloads public manufacturer databases from the IEEE Standards Association:
- Service: IEEE Standards Association (
standards-oui.ieee.org)
- Purpose: Download publicly available OUI/manufacturer reference databases
- Data transmitted: Standard HTTPS GET requests only (no personal data, no device identifiers, no MAC addresses from your network)
- Frequency: Weekly automatic updates
- Privacy impact: None — this is equivalent to downloading a public file from a website
IAPViewer Support Site (Cloudflare Pages)
IAPViewer fetches an AP hardware compatibility matrix from the developer's support site:
- Service: Cloudflare Pages (
iapviewer.bdlfoundry.dev), hosted by Cloudflare, Inc.
- Purpose: Download the current AP firmware compatibility matrix for use in the Upgrade Planner feature
- Data transmitted: Standard HTTPS GET request only (no personal data, no device identifiers, no network information)
- Frequency: Once per app launch, only when a newer matrix version is available
- Privacy impact: None beyond a standard web request. Cloudflare's own privacy policy applies to their server logs: Cloudflare Privacy Policy
No Other Third-Party Services
IAPViewer does not integrate with or transmit data to any other third-party services, including:
- Cloud storage providers
- Analytics platforms
- Advertising networks
- Social media platforms
- Email services
Data Sharing
We do not share, sell, rent, or trade any data with third parties because we do not collect any data.
Children's Privacy
IAPViewer is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. The app is designed for network administrators and IT professionals.
Your Rights
Data Access and Deletion
Since all data is stored locally on your device:
- Access: You have full access to your data through the app's interface
- Deletion: Delete individual sites within the app to remove all associated data (including AP coordinates and client history), or delete the app entirely to remove everything
- Export: Data can be exported from within the app (site configurations, reports)
- Location permissions: Manage in iOS Settings → IAPViewer → Location on iPhone/iPad, or System Settings → Privacy & Security → Location Services → IAPViewer on Apple Silicon Mac (if prompted)
No Data Portability Issues
Because no data is stored on external servers, there are no data portability concerns. Your data belongs to you and stays on your device.
California Privacy Rights (CCPA)
Under the California Consumer Privacy Act (CCPA), California residents have certain rights. However, since IAPViewer does not collect any personal information (device location is accessed but not stored or transmitted), these rights do not meaningfully apply. We have no personal data to disclose, delete, or opt-out from selling.
European Privacy Rights (GDPR)
Under the General Data Protection Regulation (GDPR), EU residents have certain rights regarding their personal data. Since IAPViewer accesses device location but does not store or transmit it, and all other data remains local to your device, GDPR's primary obligations do not apply to our app's operation. You maintain full control over all data through iOS settings and the app interface.
Changes to This Privacy Policy
We may update this privacy policy from time to time. Any changes will be posted at this URL with an updated "Last Updated" date. Continued use of the app after changes constitutes acceptance of the updated policy.
Material changes will be reflected in the app version notes on the App Store.
Contact
If you have questions about this privacy policy, contact:
Email: support@bdlfoundry.dev
Typical response time: 1–2 weeks for non-critical issues
Priority: Critical bugs affecting core functionality first, then everything else
See also: Support · Documentation · API Reference · Terms of Use
IAPViewer is developed independently and is not affiliated with, endorsed by, or sponsored by HPE, Aruba Networks, or any of their subsidiaries.
Aruba and Aruba Networks are registered trademarks of Hewlett Packard Enterprise.
IEEE is a registered trademark of the Institute of Electrical and Electronics Engineers, Inc.