Effective date: July 12, 2026
Last updated: July 12, 2026
The Indigenous Peoples Law and Policy App (“IPLP App,” “the App,” “we,” “us,” or “our”) is operated by the Indigenous Peoples Law and Policy Program at the University of Arizona James E. Rogers College of Law.
The IPLP App provides a digital space for approved alumni, students, faculty, staff, partners and other members of the Indigenous Peoples Law and Policy community to connect, communicate, collaborate and receive program information.
This notice explains how information is collected, used, disclosed, retained and deleted when you use:
- The IPLP App for iOS or Android;
- The web version available through
iplp.app; and - Related IPLP App support and account-management services.
This App-specific notice supplements the University of Arizona’s University Privacy Statement and Information Security and Privacy resources.
1. Information We Collect
The IPLP App Is Not an Official Academic Communication System
The IPLP App is intended to support community engagement, professional networking, collaboration and the sharing of general IPLP information. It is not an official University academic, advising, enrollment or student-record communication system.
Users should not submit or rely on IPLP App messages for official academic inquiries, deadlines, grades, course requirements, student-record matters or other formal University business. Such communications should take place through official University of Arizona email accounts or other University-designated systems.
Messages sent through the IPLP App do not constitute formal notice to the University, IPLP faculty or IPLP staff.
This language also helps explain why users should avoid submitting sensitive academic information through direct messages.
Account and registration information
When you request an account, we may collect:
- Your name;
- Email address;
- Password or authentication credentials;
- User category or relationship to the IPLP community;
- University, Tribal, professional, academic or organizational affiliation;
- Information submitted to establish eligibility for membership;
- Account approval, suspension or account-status information; and
- Any additional information you voluntarily provide during registration.
Passwords are processed through the App’s authentication service. IPLP App administrators do not have access to users’ plaintext passwords.
Creating an account does not guarantee immediate access. New registrations may be reviewed before membership access is approved.
Profile information
Depending on the profile features you use, we may collect information such as:
- Profile photograph;
- Biography;
- Job title or professional information;
- Academic or research interests;
- University, Tribal, community or organizational affiliation;
- Contact information that you choose to display; and
- Other information that you choose to add to your profile.
Certain profile information may be visible to other approved IPLP App members. The App will identify which information is displayed to other users where reasonably possible.
Content and communications
When you participate in the App, we may collect and store:
- Posts, comments and replies;
- Reactions and other community activity;
- Direct or group messages;
- Photographs, documents or other files you upload;
- Event registrations and responses;
- Reports submitted about content or users; and
- Communications sent to IPLP App support or administrators.
Direct messages are intended for the participants in those conversations. Authorized University personnel may access communications when reasonably necessary to investigate reported misconduct, address safety or security issues, provide technical support, comply with law or enforce IPLP App Community Guidelines.
Device and technical information
The App and its service providers may automatically process limited technical information, including:
- Device type and operating system;
- Browser type;
- App version;
- Internet Protocol address;
- Login dates and times;
- Authentication and security logs;
- Error and diagnostic information;
- Notification preferences; and
- Device or push-notification tokens.
This information is used to operate, secure, troubleshoot and improve the App.
Device permissions
The App may request access to:
- Notifications, so that you can receive messages, announcements and other App updates; and
- Camera or photo library, when you choose to take or upload a photograph or other media.
The App will request these permissions through your device. You can change permissions through your device settings, although disabling a permission may prevent some features from working.
The IPLP App does not collect precise device location unless a future feature clearly requests permission and this Privacy Notice is updated before that collection begins.
2. How We Use Information
We may use information to:
- Review and approve account requests;
- Create, authenticate and maintain accounts;
- Provide profiles, messaging, community posts and event features;
- Send service announcements and requested notifications;
- Respond to questions and provide technical support;
- Protect users and the security of the App;
- Prevent unauthorized access, misuse, spam or fraudulent activity;
- Investigate reports and enforce IPLP App Community Guidelines;
- Maintain records relating to account approval and administration;
- Understand and improve App performance and accessibility;
- Comply with University policies, legal obligations, court orders and applicable records-retention requirements; and
- Support the educational and community-service mission of the University of Arizona.
We do not sell IPLP App users’ personal information. We do not use IPLP App account information for third-party behavioral advertising.
3. How Information May Be Shared
With other approved users
Your profile information, posts, comments, event participation and other community contributions may be visible to approved users according to the feature you use and any available privacy settings.
Messages are shared with their intended recipients.
With authorized University personnel
Authorized University of Arizona personnel may access information when necessary to administer the App, approve accounts, provide support, moderate content, investigate concerns, maintain security or comply with University and legal obligations.
With service providers
The University may use contracted service providers to operate the App. These may include cloud hosting, authentication, database, file-storage, email and push-notification providers.
The IPLP App uses Google Firebase services, which may include Firebase Authentication, Cloud Firestore, Cloud Storage, Cloud Functions and Firebase Cloud Messaging. Only list the Firebase services that are actually enabled in the final App.
Service providers may process information only as necessary to provide their contracted services and are subject to applicable privacy, security and contractual requirements.
Apple and Google may separately process information when you download, update or use the App through their platforms. Their processing is governed by their respective privacy policies.
Legal, safety and institutional requirements
Information may be disclosed when reasonably necessary to:
- Comply with applicable law, legal process or a valid government request;
- Comply with Arizona public-records laws;
- Protect the rights, safety or property of users, the University or others;
- Investigate suspected misconduct or security incidents;
- Meet University or Arizona Board of Regents requirements; or
- Enforce applicable policies and agreements.
4. Data Retention
Information is retained only for as long as reasonably necessary to provide the App, fulfill the purposes described in this notice, maintain security and comply with legal and University records-retention requirements.
Retention periods may vary depending on the type of information and whether the information is subject to legal, regulatory, litigation-hold, public-records, security or University recordkeeping obligations.
5. Account and Data Deletion
Users may initiate account deletion:
- Inside the App by opening Account Settings and selecting Request Account Deletion; or
- Through the public IPLP App Account Deletion page.
After a verified request is received:
- The account will be placed into the deletion process;
- Access to the account may be restricted or suspended;
- The account and associated personal data will be permanently deleted or irreversibly de-identified within 30 days;
- Authentication records, profile information, profile media, notification tokens and other data directly associated with the account will be removed;
- Community contributions may be deleted or de-identified so they are no longer connected to the user; and
- The user will be notified when the request has been completed, where practicable.
A user may ask to cancel a pending deletion request and recover access by contacting Law-IPLP@arizona.edu from the email address associated with the account before permanent deletion is completed.
Once deletion has been completed, the account and its associated information cannot be recovered.
Limited information may be retained when required by applicable law, University records-retention requirements, security needs, fraud prevention, litigation holds or another legitimate institutional obligation. Information retained for one of these reasons will be restricted from ordinary App use and deleted when the applicable retention requirement ends.
Uninstalling the App does not automatically delete an account.
6. Security
The University uses administrative, technical and organizational measures intended to protect information from unauthorized access, alteration, disclosure or destruction. These measures may include access controls, authentication, logging, monitoring and secure service providers.
No internet-connected system can be guaranteed to be completely secure. Users should use a strong, unique password, protect their devices and promptly report suspected unauthorized account activity.
Additional information is available through the University of Arizona’s Information Security and Privacy page.
7. Your Choices
Depending on the available App features, you may:
- Review or update profile information;
- Change notification permissions through your device;
- Choose whether to provide optional profile details;
- Request correction of inaccurate personal information;
- Report inappropriate content or account activity; and
- Request deletion of your account and associated data.
Questions or requests may be sent to Law-IPLP@arizona.edu.
8. Children’s Privacy
The IPLP App is intended for approved members of the IPLP academic, professional and partner community and is not directed to children under 13.
A parent or guardian who believes that a child under 13 has submitted personal information without appropriate consent should contact Law-IPLP@arizona.edu and the University Privacy Office at privacy@arizona.edu.
9. Users Outside the United States
The IPLP App may be accessed by community members outside the United States. Information may be processed and stored in the United States, where privacy laws may differ from those in the user’s jurisdiction.
Users in the European Union should also review the University of Arizona’s applicable supplemental privacy provisions available through the University Privacy Statement.
10. Changes to This Notice
We may update this Privacy Notice when App features, data practices, legal requirements or University policies change.
The revised notice will be posted on this page with an updated “Last updated” date. Where appropriate, material changes may also be communicated through the App or by email.
11. Contact Us
For IPLP App privacy, support or account-related questions:
Indigenous Peoples Law and Policy Program
University of Arizona James E. Rogers College of Law
Email: Law-IPLP@arizona.edu
For University-wide privacy information:
University of Arizona Information Security and Privacy
University Privacy Office: privacy@arizona.edu