Travelog

Privacy Policy

Last updated: 16 May 2026

Travelog ("we", "us", "our") provides an AI-powered travel planning and journaling app. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have. By using Travelog you agree to the practices described here.

1. Information we collect

Account information

When you create an account we collect your email address, display name, and (depending on sign-in method) basic profile details from Apple, Google, or Facebook (e.g., name, profile photo). Passwords are handled by our authentication provider and never visible to us.

Trip and journal content

We store the trips, itineraries, journal entries, photos, packing lists, comments, and other content you create in the app. If you mark a trip as public, that content is visible to other users.

Location data

If you grant location permission, we use your location to suggest nearby places and tag activities. Location is only collected while you are using the app — we do not track you in the background.

Device and usage data

We collect basic device information (model, OS version, app version, language) and usage events (features used, error logs) to operate the service and improve reliability.

Purchases

Subscriptions and one-time purchases are processed by Apple (App Store) or Google (Play Store) through RevenueCat. We receive purchase status and entitlement information but never your full payment-card details.

2. How we use information

• To provide core app features: account, trip storage, AI itinerary generation, journaling, sharing, and social features.
• To process subscriptions and manage Pro entitlements.
• To send transactional emails (account confirmation, support replies, billing-related notices) and, with your permission, reminders or notifications about your trips.
• To prevent fraud, abuse, and security incidents.
• To improve the app — analyze usage trends, fix bugs, and develop new features.

3. AI-generated content

When you ask Travelog to generate or refine an itinerary, your request (destination, dates, preferences, and similar planning inputs) is sent to OpenAI to produce the result. We do not send your account credentials, email, or other identifying details with the request. OpenAI processes the request under their own privacy terms and does not use API content to train their models.

4. Third-party services

We rely on the following providers to operate Travelog. Each handles data under their own privacy policy:

• Supabase — authentication, database, and file storage.
• OpenAI — AI itinerary generation and refinement.
• Google Maps Platform — Places, Distance Matrix, and map rendering.
• Tavily — web search used during AI generation.
• RevenueCat — subscription and purchase management.
• Apple, Google, Facebook — sign-in providers (only if you choose to use them).
• Resend — transactional email delivery.

We do not sell your personal information. We do not share your data with advertisers.

5. Data retention

We keep your account data for as long as your account is active. If you delete your account, we delete your profile, trips, journal entries, and uploaded photos within 30 days. Some records (e.g., billing receipts and abuse-related logs) may be retained longer where required by law.

6. Your rights and choices

• Access and export — Email us to request a copy of your data.
• Correction — You can edit profile and trip information directly in the app.
• Deletion — Delete your account from Profile → Settings → Delete Account, or email us.
• Notifications — Manage push and email reminders from the app's settings.
• Location — Revoke location access anytime in your device settings.

If you are in the EU/EEA, UK, or California, you have additional rights under GDPR, UK GDPR, or CCPA respectively, including the right to object to processing and lodge complaints with a supervisory authority.

7. Children

Travelog is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with information, contact us and we will delete it.

8. Security

We use industry-standard safeguards including TLS in transit, encrypted storage at rest, and access controls on our backend. No system is perfectly secure — please use a strong, unique password and keep your device updated.

9. International transfers

Travelog is operated using cloud infrastructure that may process data in countries outside your own (including the United States and the European Union). Where required, we rely on standard contractual clauses or equivalent safeguards.

10. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated in-app or by email before they take effect. The "Last updated" date above always reflects the current version.

11. Contact