English · Español
PRende Privacy Policy
1. Who We Are
SENDA LLC ("we", "our", "Senda") is a limited liability company organized under the laws of the Commonwealth of Puerto Rico, with a mailing address at:
410 Avenida Montesol, Ste 14 #2078 Fajardo, Puerto Rico 00738
Senda LLC is responsible for the PRende mobile application (the "App"). This Privacy Policy explains what information we collect when you use the App, how we use it, with whom we share it, and what rights you have over it.
If you have questions about this Policy, write to us at support@sendapr.com.
2. At a Glance
So that this policy doesn't require a lawyer to understand, these are the most important points:
- We collect only what is necessary for the App to work: your location when you report an outage, the receipts you upload for your claim, and the contact details you choose to associate with your account.
- We do not sell your personal information to advertisers or data brokers, and we never will.
- Our public database (the outage map) contains no personal identifiers. It is mathematically impossible to reconstruct an individual user's history from the public map.
- You can view the map and report without registering: the App creates an anonymous account automatically. You sign in with Google or Apple only to make a purchase or sync your data across devices.
- The App is free and shows ads (Google AdMob), which use your device's advertising identifiers. You can remove them with a one-time purchase.
- "Hurricane Mode" includes a Vault where you choose to store photos (of your home, your documents, or any damage) backed up to the cloud so they survive the loss of your phone. Only you can see them, and you can delete them whenever you want.
- "Mi Hogar" detects your outages automatically if you connect the monitoring of your own energy system (Home Assistant, SolarEdge, Victron, or Tesla Powerwall). You provide the access to your monitoring account; we store it securely, only our server uses it, and only to read whether your home has power. You can invite your family to see the status of your homes.
- Your data lives on Google's servers (Firebase) in the United States region. The United States and Puerto Rico share the same federal data- protection legal framework.
- You can delete your account and all associated data at any time,
directly from the App or by writing to us at
support@sendapr.com.
3. Information We Collect
3.1 Information you give us directly
- Account data (if you choose to create one): your name, email address, and profile photo (if you sign up with Apple or Google and your account has a public photo).
- Claim data: full name, physical address, LUMA/AEE account number, incident narrative, incident date, prior complaint numbers, the location of the affected property you mark on the map, and the receipt information for the affected appliance (item, model, purchase date, price).
- Digital signature: if you choose to sign your claim digitally, we use the image of your signature only at the moment of generating your PDF document (it is embedded in the PDF and we do not retain it on our servers as a separate file).
- Vault photos (Hurricane Mode): if you use the optional emergency- preparedness feature, the photos you capture —grouped by you as "Home", "Documents", or "Damage"— are stored in your private cloud storage (Firebase Storage) so they survive the loss or damage of your device. You decide what to photograph; these photos may include personal documents or IDs if you so choose. Only you have access to them: you can view them, export them to a PDF, and delete them at any time from the Vault.
- "Mi Hogar" data: if you connect a home to monitor it, we store the label you give it and, if you authorize it, its precise location (to place it and to use it as evidence of your outages). To read your system's status you give us access to your monitoring account: with Home Assistant we generate a webhook token of which we store only an encrypted version (a hash); with providers such as SolarEdge or Victron we store the API key/token of your own account; with Tesla (Powerwall) you connect by signing in to Tesla (OAuth, no keys to paste) and we store the access and refresh tokens Tesla issues to us. These credentials are locked on our servers —only our backend uses them— and solely to read whether your home has power. You can disconnect a home and delete its credentials at any time.
- Family group (Mi Hogar): if you create or join a family group, we store who belongs to it —their identifier, their display name (or their email, if they have no name) and their role (Holder, Manager, or View-only)— and the invite codes you generate. The group Holder can see the status and the outage history of the homes that members connect; members see only their own homes. You can leave the group, or —if you are the Holder— remove members, at any time.
- Support messages: if you write to us through the Help screen, we store the subject and body of your message, along with basic data about your account and device, so we can reply to you.
3.2 Information collected automatically
- Anonymous user identifier: when you first open the App, we generate an anonymous identifier (UID) that associates your data internally. This UID contains no personal information.
- Location: when you press "¡Se Fué!" or "¡Llegó!", we collect your device's precise GPS coordinates and use them as follows: (1) For the live public map, we publish only an aggregate count of how many people report an outage in each cell of approximately one km²; the live map contains no individual event or user identifier. The public history (last 24 hours, 7 or 30 days) is stored anonymously with the precision reduced to ~1 km², and is written solely by our server after validating the report (devices no longer write directly to public data). (2) We keep a copy with the precise coordinates in your account's private outage history (visible only to you), which is used to fill in the location column of your claim PDF. (3) While your outage is open, our server keeps an internal record associating your account with the ~1 km² cell you are lighting up, so it can count reports and remove yours when you press "¡Llegó!". That record is never public, is not accessible to other users, and is deleted when the outage closes or, at the latest, within about 24 hours. (4) We use your precise location briefly and on our servers to detect clusters of nearby outages; that signal is deleted shortly after detection, is never shown publicly, and is never shared with other users. When a cluster is detected, we may send a notification to the devices in that area, without storing who receives it, inviting them to report (see Section 4).
- Advertising identifiers: the free version of the App shows ads through Google AdMob. To do so, AdMob accesses your device's advertising identifier (IDFA on iOS, AAID on Android), your IP address, and ad- interaction events, and may use them to show you personalized ads. On iOS, personalization is enabled only if you authorize it through the App Tracking Transparency prompt; if you decline, you will see non- personalized ads. If you buy "Remove ads" or a claim, we stop showing ads.
- Device and diagnostic data: to detect and fix errors we use Firebase Crashlytics (Google) and Sentry (Functional Software, Inc., USA). When an error occurs we record the device model, the operating system, the App version, and the exception stack. The detailed error report is uploaded only if you have enabled diagnostic consent on the corresponding screen; in addition, Sentry collects by default a limited sample of stability and performance data to keep the App running. If you use "Reportar problema" (Report a problem), your message and —if you enter them— your name and email are sent to Sentry so we can address the report.
- Usage analytics: to understand how the App is used and improve it, we use Google Analytics for Firebase, which records an app-instance identifier and a small set of usage events (for example, that a report was submitted, a home was connected, or a purchase was made) with no personal information in their parameters. This measurement is for product analytics, not advertising (it does not use the advertising identifier). Unlike error diagnostics, it is on by default.
3.3 Information generated by your use
- Outage events: each time you report a change in power state, we store in your account's private history the timestamp, the precise coordinates (latitude and longitude), the geohash, and the "power on" or "power off" indication.
- Tracked claims: the claims you generate are saved to your account so you can follow up on them (status, relevant dates, deadline reminders). The claim document also includes your own outage reports near the affected property as supporting evidence.
- Your home's status (Mi Hogar): for the homes you connect, we record readings of the grid state (power on / power off), the battery level if your system reports it, and the timestamp of the last reading. With this we automatically detect your outages and store them in the home log, which serves as evidence for your claims. We do not access any other data from your energy system.
- Reliability summary ("Tus apagones"): from your own report history, the App computes —on your device— a summary of how many outages you had, their total duration, the longest one, etc. If you choose to share your "card", you share that summary of yours; it includes no precise location and no one else's data. The App can also show you a "Tu barrio" (your neighborhood) summary: anonymous, aggregated data for your sector (number of outages and hours without power, compared to the island average), computed on our server from many reports; it identifies no individual.
- Purchase and subscription status: we store the count of available claims and whether you have removed ads; if you have Mi Hogar+, we store your subscription's validity and the count of claims your family group has used in the period. We do not store your credit-card data; payment processing is handled by the Apple App Store or Google Play (see Section 5).
3.4 Information we do NOT collect
- We do not access your contacts, calendar, messages, or personal files.
- We do not access the microphone or camera except when you explicitly use a feature that requires them (uploading a photo of a receipt or taking a photo for the Hurricane Mode Vault).
- From your energy system (Mi Hogar) we read only the grid state and the battery level — we do not access your historical consumption, your solar production, or any other data from your monitoring account.
- We do not sell your personal information nor use it to train artificial- intelligence models.
4. How We Use Your Information
We use the information collected solely for the following purposes:
- Operate the App: show you the outage map, generate your PDF documents, remind you of your claim's legal deadlines, send you proximity notifications when several people near you report an outage, and send you severe-weather alerts (Hurricane Mode) when hurricane, storm, or flood warnings are issued for Puerto Rico.
- Sync your data across devices when you sign in with the same account.
- Process your purchases and keep a record of the available claims associated with your account.
- Respond to your support requests.
- Detect and fix errors, to the extent you have given your consent.
- Comply with applicable legal obligations (responding to court subpoenas, requests from the government of Puerto Rico, etc.).
- Show advertising in the free version, through Google AdMob (see Section 5), unless you have purchased its removal.
- Monitor the homes you connect in "Mi Hogar", detect their outages automatically and store them as evidence; and —if you belong to a family group— show the status of those homes to the appropriate members and notify them when an outage is detected.
The App requests permission to send you notifications (such as the proximity notifications described above). You can grant or revoke it at any time from your device settings.
Severe-weather alerts are sent to all subscribed devices through a general topic for Puerto Rico, based on official hurricane, storm, or flood warnings. Like the proximity notifications, they do not use your location, and we do not store which device receives them, and you can mute them separately from your device's notification settings.
We do not use your information to train artificial-intelligence models. Advertising is served by Google AdMob; we do not build our own advertising profiles, but AdMob may use your device's advertising identifier to personalize the ads (see Section 5).
5. With Whom We Share Your Information
PRende relies on a small number of service providers to operate. Each one receives only the minimum information necessary to perform its function.
| Provider | What it is used for | Data shared |
|---|---|---|
| Google Firebase (Google LLC) | Authentication, database, storage, notifications | UID, account data, outage events, claims, Vault photos |
| Google Cloud Functions | Receipt processing (OCR), sending support emails | Receipt image (processed and discarded), support message |
| Google Gemini API | Automatic extraction of receipt data | Receipt image (only at the moment of analysis; Google commits not to use this data to train models in this commercial usage mode) |
| Firebase Crashlytics (Google) | Error reports | Device information and exception stack (only if you have given consent) |
| Sentry (Functional Software, Inc., USA) | Error & stability monitoring; the "Reportar problema" form | Device information and exception stack; stability/performance data; and, if you provide them in "Reportar problema", your message, name, and email |
| Google Analytics for Firebase (Google LLC) | Product analytics (understand usage and improve the App) | App-instance identifier and usage events, with no personal information |
| Apple App Store / Google Play | Payment processing | Payment data (processed directly by Apple / Google, never passes through us) |
| Google AdMob (Google LLC) | Advertising in the free version | Device advertising identifier (IDFA/AAID), IP address, ad events |
| Resend | Sending transactional emails | Your email, the subject, and the body of your support message |
| ImprovMX | Forwarding the support@sendapr.com mailbox |
Data from incoming support emails |
| SolarEdge | Reading the grid state of your solar system, only if you connect it | An authenticated request using the API key + Site ID you provide (we do not send them your PRende data) |
| Victron Energy (VRM) | Reading the grid state of your system, only if you connect it | An authenticated request using the VRM token + Installation ID you provide (we do not send them your PRende data) |
| Tesla (Fleet API) | Reading the grid state and battery of your Powerwall, only if you connect it | An OAuth authorization to your Tesla account; we store the tokens locked on our servers and read only your system's status (we do not send them your PRende data) |
| CARTO (maps) | Serving the map tiles of the outage map | Your IP address and the map area you view |
| OpenStreetMap Foundation | Serving the tiles of the LUMA-offices map | Your IP address and the map area you view |
| Esri / ArcGIS | Serving the satellite map imagery when you locate your home (Mi Hogar) | Your IP address and the map area you view |
We do not sell your personal information to third parties. Except for Google AdMob —which receives your device's advertising identifier to show ads in the free version, as described above— we do not share your information with advertisers or data brokers for commercial purposes unrelated to operating the App. You can review how Google uses advertising data at https://policies.google.com/technologies/ads, and control ad tracking from your device settings (App Tracking Transparency on iOS; ad settings on Android).
When you connect a provider in "Mi Hogar" (for example SolarEdge, Victron, or Tesla), our server contacts that provider's API using the credential or authorization you gave us, to read your system's status. We do not send that provider your PRende information. Your relationship with that provider —and how it uses your data— is governed by that provider's own terms and privacy policy. Home Assistant is your own server: in that case no third party is involved.
Sharing within your family group (Mi Hogar). If you join a family group, the status and outage history of the homes you connect become visible to the group Holder (see Section 3.1). It is a feature you turn on by joining; it is not a sale or a transfer to third parties, and you can leave the group whenever you want.
Your claim PDF brings together your personal information, your outage history, and your photos. You are the one who submits it to LUMA, the NEPR, or the relevant authority; PRende does not transmit it for you. By submitting it, you share that information with that entity on your own initiative.
We may share information if required by a court order, a valid subpoena, or a legitimate government request, and provided we are legally obligated to do so.
6. Public Outage Map
The map you see when you open the App has two layers, and neither contains data that identifies you:
- The live map shows only an aggregate count of how many people report an outage in each cell of approximately one km². It contains no individual events or user identifiers: it is just a number per cell.
- The history (last 24 hours, 7 or 30 days) is made up of anonymous reports, with the location reduced to ~1 km², written solely by our server after validating each report. The public documents contain no user identifier and, once written, we cannot link them back to your account.
Your precise location is never part of the public data; it remains only in your account's private history. Even if someone gained full access to the public database, they could not reconstruct when and where you report outages.
7. Your Rights
As a resident of Puerto Rico, and depending on your jurisdiction, you have the following rights over your personal information:
- Access: you can ask us for a copy of the data we hold about you.
- Rectification: you can correct inaccurate information directly in the App or ask us to do so.
- Deletion: you can delete your account and the associated data directly from the App, on the Account screen ("Delete account" button); the deletion is permanent and immediate. You can also ask us by email. Some exceptions apply (for example, records we are legally obligated to retain).
- Portability: you can request your data in an exportable format.
- Objection and restriction: you can disable the sending of diagnostics at any time from the Settings screen.
- Withdrawal of consent: you can close your account at any time.
To exercise any of these rights, write to us at support@sendapr.com. We will respond within a reasonable time (generally between 7 and 30 days).
8. Security
We protect your information with industry-standard practices:
- All data is transmitted encrypted in transit (TLS 1.2+).
- Data at rest is stored with AES-256 encryption on Google Firebase's servers.
- Access to data is restricted by strict Firestore-level security rules: each user can read and write only their own information.
- API keys and critical secrets are stored in Google Secret Manager, outside the source code.
- The App includes device integrity verification (Firebase App Check, with Play Integrity on Android and App Attest on iOS) to ensure that requests to our servers come from the genuine App and not from automated scripts.
No system is 100% secure. If you discover a vulnerability, write to us at support@sendapr.com and we will fix it as soon as possible.
9. Data Retention
We keep your information while your account is active, and for the additional reasonable time necessary to:
- Comply with legal and tax obligations (generally 5 years under Puerto Rico law for accounting and tax records).
- Resolve disputes and enforce our agreements.
The outage events published on the public map are automatically removed from the visible aggregate 24 hours after their creation.
Anonymous account data is automatically deleted after 30 days of inactivity. To keep it and be able to recover it, link an account (Google or Apple).
The internal records that temporarily associate your account with the ~1 km² cell of your open outage, and the signals we use to detect clusters, are ephemeral: they are deleted when the outage closes or shortly after detection (at the latest within about 24 hours) and are never public.
The photos you store in the Vault (Hurricane Mode) remain in your private storage until you delete them or close your account; we do not use them for any other purpose.
The Mi Hogar data —the homes you connect, their status history, and their connection credentials— is kept while you keep the home connected; when you disconnect a home or close your account, we delete its history and its credentials. If you leave a family group, you stop appearing in its roster and the Holder stops seeing your homes.
If you close your account, we will delete your personal data, your private outage history, your claims, your Vault photos, the homes you connected in Mi Hogar and their credentials, and the property location you have saved, within the following 30 days, except for those we are legally obligated to retain. The reports already published on the public map contain no link to your account (see Section 6), so it is not possible to associate them with you nor are they affected by the deletion of your account; they remain as anonymous aggregated data.
10. Children
PRende is not directed at children under 13 and we do not knowingly collect personal information from children under that age. If we discover that we have collected information from a child under 13, we will delete it immediately.
If you believe a child under 13 has provided us with personal information, write to us at support@sendapr.com.
11. Changes to this Policy
We may update this Privacy Policy to reflect changes in our practices, in applicable law, or in the services we offer.
When we make significant changes:
- We will update the "Last updated" date at the top of this Policy.
- We will notify you through the App or by email (if you have an account with an associated email) before the change takes effect.
We recommend you review this page periodically.
12. How to Contact Us
If you have any question, complaint, or request related to this Policy or to your personal information:
SENDA LLC 410 Avenida Montesol, Ste 14 #2078 Fajardo, Puerto Rico 00738
Email: support@sendapr.com
We will respond as soon as possible.