Privacy Policy
PocketFlash & program.parts · Last updated: July 3, 2026
Introduction
Source Parts Inc. (“we”, “our”, or “us”) operates the program.parts website and the PocketFlash applications for web, Android, and iOS (together, the “Services”). The Services are firmware tools for flashing, recovering, and driving PocketPC and Popcorn Computer hardware. This policy explains what information the Services collect, how we use it, and the choices you have.
Information We Collect
Account information
If you choose to sign in, we authenticate you through a third-party identity provider (Auth0) and receive your email address and basic profile information from that sign-in. An account is optional for local device flashing.
Device & firmware data
To flash and recover hardware, the Services communicate with your device over Bluetooth LE or USB. This involves firmware images, device identifiers (such as a chip serial), and diagnostic/log output from the device. This is hardware data used to perform the operation you request; it is not used to identify you.
Usage & diagnostics
The website may collect standard technical information (IP address, browser type, pages viewed) to operate and secure the site. The mobile apps do not include third-party advertising SDKs, and we do not use your data for advertising.
How We Use Information
- Authenticate you and maintain your session
- Perform the flashing, recovery, and console operations you initiate
- Operate, secure, and improve the Services
- Comply with legal obligations and prevent abuse
Data Sharing
We do not sell or rent your personal information. We share information only with:
- Service providers that operate parts of the Services (for example, Auth0 for sign-in and Cloudflare for hosting)
- Legal authorities when required by law
App Permissions
- Bluetooth & nearby devices — to discover and connect to your PocketPC for wireless (BLE) flashing.
- USB — to connect to your device over USB-C for wired flashing (Android).
- Network / Internet — for optional sign-in and for downloading firmware you choose to flash.
These permissions are used only for the device operations described above.
Data Retention
Account information is retained while your account is active. Firmware and device data are processed over your local connection to perform an operation and are not retained by us in the ordinary course.
Data Security
We use appropriate technical and organizational measures to protect information. No method of transmission or storage is completely secure.
Children’s Privacy
The Services are not directed to children under 13, and we do not knowingly collect personal information from them.
International Transfers
Information may be processed in countries other than your own. Where required, we use appropriate safeguards for such transfers.
Your Rights
Subject to applicable law (including the GDPR and CCPA), you may request access to, correction of, deletion of, or portability of your personal data, and may object to or restrict certain processing. Contact us to exercise these rights.
Changes to This Policy
We may update this policy from time to time. We will post any changes on this page and update the “Last updated” date above.