Join Waiting List

Privacy Policy

Last Updated: November 11, 2025

Introduction

Welcome to Tripifi. We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("App").

Please read this Privacy Policy carefully. By using Tripifi, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Information You Provide Directly

Account Information:

Name (optional, for profile display)
Email address (if using Sign in with Apple)
Apple ID (if using Sign in with Apple)
Profile photo (optional)
Country preferences (for travel tracking)

Trip Content:

Trip destinations, dates, and descriptions
Saved places and locations
Photos and images
Documents (boarding passes, tickets, reservations, etc.)
Notes and checklists
Links and bookmarks
Flight information
Activity plans and itineraries
Chat messages with AI assistant

Collaboration Data:

Traveler names and emails (when you add collaborators)
Share codes and trip invitations
Collaboration preferences

1.2 Information Collected Automatically

Device Information:

Device type and model
Operating system version
Unique device identifiers
App version

Usage Data:

Features used within the App
Time spent in the App
Interaction patterns
Error logs and crash reports

Location Data:

Trip destinations (coordinates)
Saved place locations
Map interactions
Note: We do NOT track your real-time location

1.3 Information from Third Parties

Sign in with Apple:

User ID
Email address (optional, based on your Apple ID settings)
Name (optional, based on your Apple ID settings)

Firebase Authentication:

Authentication tokens
User IDs

2. How We Use Your Information

We use your information for the following purposes:

2.1 Service Provision

Create and manage your account
Store and sync your trips and content
Enable collaboration features
Provide AI-powered recommendations and chat
Display maps and location information
Process subscription payments

2.2 Service Improvement

Analyze usage patterns to improve features
Fix bugs and technical issues
Develop new features
Optimize performance

2.3 Communication

Send service-related notifications
Respond to your inquiries and support requests
Send important updates about the App
Notify you of changes to our policies

2.4 Security and Fraud Prevention

Protect against unauthorized access
Detect and prevent fraudulent activity
Enforce our Terms of Service
Comply with legal obligations

2.5 Analytics

Understand how users interact with the App
Measure feature adoption and engagement
Improve user experience

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

3.1 With Your Consent

When you share trips with other users
When you explicitly authorize sharing

3.2 Service Providers

We share information with third-party service providers who help us operate the App:

Firebase (Google):

Authentication services
Cloud storage (Firestore, Storage)
Hosting and infrastructure
Privacy Policy: https://firebase.google.com/support/privacy

OpenAI:

AI chat and recommendations
Travel suggestions
Privacy Policy: https://openai.com/privacy

RevenueCat:

Subscription management
Payment processing
Privacy Policy: https://www.revenuecat.com/privacy

Unsplash:

Stock photo search and download
Privacy Policy: https://unsplash.com/privacy

Apple:

Sign in with Apple authentication
In-app purchases
Privacy Policy: https://www.apple.com/legal/privacy

3.3 Collaborators

When you share a trip:

Collaborators can view trip content (places, photos, notes, etc.)
Collaborators can see other trip members' names
Collaborators can edit shared trip content

3.4 Legal Requirements

We may disclose your information if required to:

Comply with legal obligations
Respond to lawful requests from authorities
Protect our rights and property
Prevent fraud or illegal activity
Protect user safety

3.5 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information is transferred and becomes subject to a different privacy policy.

4. Data Storage and Security

4.1 Where We Store Your Data

Local Storage:

Personal (non-shared) trips are stored locally on your device
SwiftData framework for local persistence
App Group container for widget access

Cloud Storage:

Shared trips are stored in Firebase Firestore
Photos and documents are stored in Firebase Storage
User authentication data is stored in Firebase Authentication

Geographic Location:

Firebase servers are located in the United States
Data may be transferred to and stored in countries outside your residence

4.2 Security Measures

We implement industry-standard security measures:

Encryption in transit (HTTPS/TLS)
Encryption at rest (Firebase encryption)
Secure authentication (Firebase Auth, Sign in with Apple)
Access controls and authentication
Regular security updates
Secure API communications

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

4.3 Data Retention

Active Accounts:

We retain your data while your account is active
You can delete content at any time

Deleted Accounts:

Personal data is deleted within 30 days of account deletion
Shared trip data may be retained if other collaborators remain active
Backups may be retained for up to 90 days
Some data may be retained for legal compliance

Anonymous Data:

Aggregated, anonymized usage data may be retained indefinitely

5. Your Privacy Rights

Depending on your location, you may have the following rights:

5.1 Access and Portability

Request a copy of your personal data
Export your trip data
Access your account information

5.2 Correction

Update your profile information
Correct inaccurate data
Modify trip content

5.3 Deletion

Delete your account through App settings
Request deletion of specific data
Remove trips and content

5.4 Restriction

Limit how we use your data
Opt out of certain data processing

5.5 Objection

Object to certain data processing activities
Opt out of marketing communications

5.6 Withdraw Consent

Withdraw consent for data processing where consent is the legal basis
Note: This may limit App functionality

To exercise these rights, contact us at [email protected]

6. Children's Privacy

Tripifi is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us. We will delete such information from our systems.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer data internationally, we ensure appropriate safeguards are in place, including:

Standard contractual clauses
Privacy Shield frameworks (where applicable)
Consent where required

8. Cookies and Tracking Technologies

8.1 What We Use

Local Storage:

User preferences
Session data
Cached content

Analytics:

Usage patterns
Feature adoption
Performance metrics

8.2 Third-Party Tracking

Firebase Analytics (can be disabled in settings)
RevenueCat analytics for subscription management

8.3 Your Choices

You can limit tracking through iOS privacy settings
Disable analytics in App settings
Use "Limit Ad Tracking" in iOS settings

9. AI and Machine Learning

9.1 AI Chat

Chat messages are sent to OpenAI for processing
Conversations are used to generate personalized recommendations
We do not use your chats to train AI models without consent
Chat history is stored in Firebase

9.2 Recommendations

AI analyzes your trip data to provide suggestions
Processing happens on OpenAI servers
Recommendations are based on trip context

9.3 Data Minimization

We only send necessary data to AI services
Personal identifiers are minimized
You can delete chat history at any time

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

10.1 Right to Know

Categories of personal information collected
Sources of personal information
Business purposes for collection
Categories of third parties we share with

10.2 Right to Delete

Request deletion of your personal information
Subject to certain exceptions

10.3 Right to Opt-Out

Opt out of sale of personal information
Note: We do not sell personal information

10.4 Non-Discrimination

We will not discriminate against you for exercising your rights

To exercise CCPA rights, email [email protected]

11. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under GDPR:

11.1 Legal Basis for Processing

Consent: For optional features and marketing
Contract: To provide the Service
Legitimate Interests: For analytics and improvements
Legal Obligations: For compliance

11.2 Your GDPR Rights

Right to access
Right to rectification
Right to erasure ("right to be forgotten")
Right to restrict processing
Right to data portability
Right to object
Rights related to automated decision-making

11.3 Data Protection Officer

For GDPR inquiries, contact: [email protected]

11.4 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

Posting the new Privacy Policy in the App
Sending an email notification (if applicable)
Displaying a prominent notice

Last updated date is shown at the top of this policy.

Your continued use of the App after changes constitutes acceptance of the updated policy.

13. Third-Party Links

The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies.

14. Do Not Track

Some browsers have "Do Not Track" features. Currently, there is no industry standard for responding to Do Not Track signals. We do not currently respond to Do Not Track signals.