Privacy Policy

1. Introduction

Trip on Rails ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your information when you use our trip planning service ("the Service").

2. Information We Collect

Information you provide

• Account information: name, email address, and profile picture (via Clerk authentication)
• Trip data: itineraries, activities, notes, costs, and tasks you create
• Payment information: processed securely by Stripe (we do not store card details)

Information collected automatically

• Usage data: pages visited, features used, and interactions with the Service
• Device information: browser type, operating system, and screen resolution
• Analytics data: collected via Vercel Analytics to improve the Service

3. How We Use Your Information

We use your information to:

• Provide, maintain, and improve the Service
• Process payments and manage subscriptions
• Enable collaboration features (sharing trips with other users)
• Send transactional emails (account verification, billing notifications)
• Provide AI-powered features (trip suggestions, itinerary generation)
• Analyze usage patterns to improve the user experience

4. Third-Party Services

We use the following third-party services that may process your data:

• Clerk — authentication and user management
• Stripe — payment processing
• Google Maps — map display, place search, and route planning
• OpenAI — AI-powered trip planning features
• Vercel — hosting and analytics
• Resend — transactional emails

Each of these services has its own privacy policy governing how they handle your data.

5. Data Storage and Security

Your data is stored in a PostgreSQL database hosted on secure infrastructure. We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet is 100% secure.

6. Data Sharing

We do not sell your personal data. We may share your information only in the following circumstances:

• With other users you explicitly invite to collaborate on trips
• With third-party service providers as described in Section 4
• When required by law or to protect our legal rights

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes.

8. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to or restrict processing of your data
• Request a portable copy of your data
• Withdraw consent at any time

To exercise any of these rights, contact us at support@triponrails.com.

9. Children's Privacy

The Service is not directed to children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Service. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

11. Contact

If you have questions about this Privacy Policy, please contact us at support@triponrails.com.