Privacy Policy

Last updated: January 2025 · Effective for all users

      TripGenie is a student project. We are committed to keeping your data safe and being transparent about how we use it.
    

1. Information We Collect

We collect the following information when you use TripGenie:

Account information: Your name, email address, and hashed password when you register
Trip data: Trip destinations, dates, itineraries, budgets, checklists, and reminders you create
Usage data: Pages visited within the app and features used, to improve the service
Device information: Browser type and general location (country level) for security purposes

2. How We Use Your Information

We use your information to:

Provide and operate the TripGenie service
Authenticate your account and keep it secure
Generate AI-powered travel recommendations based on your inputs
Save your preferences such as currency settings
Send password reset emails when requested
Improve the app based on usage patterns

3. Data Storage

Your data is stored in a PostgreSQL database hosted on Railway. Passwords are never stored in plain text — they are hashed using bcrypt before storage. Your trip data and account information are associated with your account and are only accessible to you.

4. Data Sharing

We do not sell, trade, or share your personal information with third parties, except:

OpenAI: When you use the AI assistant, your messages are sent to OpenAI's API to generate responses. OpenAI's privacy policy applies to this data.
Cloudinary: If you upload profile photos or trip images, they are stored on Cloudinary's servers.
Legal requirements: If required by law or to protect the rights and safety of users.

5. Cookies and Local Storage

TripGenie uses browser localStorage and sessionStorage to:

Keep you logged in between sessions (JWT token)
Remember your preferred currency
Store itinerary data locally for faster access

We do not use advertising cookies or track you across other websites.

6. Your Rights

You have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Delete your account and all associated data
Export your trip data

To exercise any of these rights, contact us through the app or via the project's GitHub repository.

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, your personal data will be removed from our systems within 30 days, except where retention is required by law.

8. Security

We take reasonable measures to protect your data, including encrypted connections (HTTPS), hashed passwords, and JWT-based authentication. However, no system is 100% secure and we cannot guarantee absolute security.

9. Children's Privacy

TripGenie is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us so we can remove it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes by updating the date at the top of this page. Continued use of TripGenie after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or how we handle your data, please reach out through the TripGenie app or the project's GitHub repository.

Back to Sign Up Back to Sign In