Legal
Privacy Policy
Effective date: 11 July 2026 Last updated: 11 July 2026 Version: 2026-07-11
This Privacy Policy explains how Tripbuds Pty Ltd ("Tripbuds", "we", "us", "our") collects, uses, shares, and protects your personal information when you use the Tripbuds mobile app and any related services (the "Service").
We are based in Sydney, New South Wales, Australia. We handle personal information in line with the Privacy Act 1988 (Cth) and the Australian Privacy Principles, and — where the user is in scope — the EU General Data Protection Regulation (GDPR) and the UK GDPR.
If you have questions, email privacy@tripbuds.com.
1. Quick summary
- We collect what we need to run a planning app — your email, your trips, your photos, your chats, your saved places, your expenses — and not much else.
- We use a crash- and error-diagnostics tool (Sentry) to keep the app stable, and a first-party product-analytics tool (PostHog) to understand how features are used so we can improve the app. We do not run advertising SDKs, and we do not use Apple's IDFA or Google's AAID.
- We do not track you across other companies' apps and websites, and we do not sell your data or share it with advertisers or data brokers.
- If you subscribe to Tripbuds Pro, your payment is handled by Apple or Google; we never see your card details. We use RevenueCat to manage your subscription status.
- We earn money when you book through our affiliate partners. We do not share your personal information with those partners — only the fact that the click came from Tripbuds. See section 6.
- We show local events happening at your destination during your trip dates, provided by Ticketmaster and PredictHQ. If you tap through to buy tickets we may earn a commission, at no extra cost to you. See section 6.
- When you book tours or activities we link you to partners such as GetYourGuide and Viator; for stays, flights and cars we link you to Booking.com. You book and pay on their site, not ours, and we may earn a commission at no extra cost to you. See section 6.
- We use hCaptcha (from Intuition Machines) to protect sign-up, sign-in and account recovery from bots and abuse. See section 3.11.
- You can follow other travellers and add mutual "buds". Who can see your profile and activity depends on your privacy settings and these connections, which you control in Settings → Privacy. See section 5.
- If you're a Pro subscriber, you can optionally connect a Gmail or Outlook inbox, or upload a booking-confirmation document, so we can add booking details to your Trip Wallet. For a connected inbox we request read-only access, only look at emails from travel providers, and never store the full body of your emails; you can disconnect any time. Uploaded documents are read by Google's Gemini API to extract the details. See section 3.9.
- Some features involve third parties only when you choose to use them: when you turn on Live location, your location is shared with your trip while it's active; visa requirements are shown via VisaHQ; and we earn commissions from travel-insurance (World Nomads) and visa partners. See sections 3.10, 6 and 7.
- You can export your data and delete your account from inside the app.
2. Eligibility and children
Tripbuds is intended for people aged 16 and over. You must be at least 16 years old to create an account or use the Service.
When you sign up we ask for your date of birth so we can verify you meet this age requirement. We store your date of birth for as long as your account exists. We use it only to enforce eligibility and to apply age-based protections required by law.
We do not knowingly collect personal information from anyone under 16. If you believe a person under 16 has created an account or provided us with personal information, contact privacy@tripbuds.com and we will delete the account and all associated data within 30 days. We may require a parent or legal guardian to confirm the request.
3. What we collect
3.1 Information you give us
Account details - Email address. - Display name and handle. - Date of birth (used only to confirm you meet the minimum age and to apply age-based protections; never shown to other users). - Avatar image (optional). - Bio, locale, timezone, currency, units (all optional). - Passport nationality (optional) — used to show entry and visa requirements relevant to your trips. You can set or change it on the Entry & visa screen; it is never shown to other users. - Your record of acceptance of these Terms and this Privacy Policy (a timestamp and the version you accepted).
Trip content - Trips you create or join: title, destinations, dates, days, places, packing items, notes. - Photos you upload to a trip. - Short Stop videos you upload to a trip, including duration, dimensions, and an extracted poster image. - Booking confirmation records you save to the Trip Wallet (such as a confirmation code, supplier, and travel dates), including any flight number you store so we can show live flight status. - Reports you file against other users' content (the content reported, your selected reason code, and any free-text notes). - Tips and notes you post on places and stops. - Expense entries: amount, currency, description, who paid, how it is split between trip members. - Settlements you record between trip members. - Polls, chat messages, and emoji reactions you post in a trip's group chat. - Saved public trips and saved places. - "I went here" self-verification entries.
Social connections - The travellers you follow, the people who follow you, your mutual "buds", and any pending follow or bud requests. We use these to build your in-app social graph, apply your chosen profile-visibility settings, and show buds-only details to your buds.
Communications with us - Feedback you submit, including any category (such as "appeal"). - Support correspondence by email.
3.2 Subscription and purchase information
If you subscribe to Tripbuds Pro, the purchase is processed by the Apple App Store or Google Play Store under your account with that store. We never receive or store your card number or full payment details. Through our subscription manager (RevenueCat) we receive and store:
- your subscription status (active, expired, cancelled), the product purchased (monthly or annual), and renewal/expiry dates;
- an app-scoped identifier (your Tripbuds account ID) used to link the subscription to your account.
We use this only to unlock Pro features and keep your access accurate across your devices.
3.3 Information collected automatically
- A stable, anonymous device identifier so we can send push notifications to your device (only if you grant notification permission).
- The app version you are running, so we can enforce minimum-version requirements and direct you to update when needed.
- Simple usage counters tied to your account — such as the number of AI itinerary generations used in the current month and any remaining introductory ("first-trip") AI credits — used solely to enforce free-tier limits.
- Crash and error diagnostics via Sentry (see 3.4).
- Product-analytics events via PostHog (see 3.8) — a record of in-app actions (such as completing onboarding, creating a trip, generating an AI plan, viewing or saving a public trip, and viewing or purchasing Tripbuds Pro), linked to your Tripbuds account identifier.
- Standard server log data (IP address, request time, endpoint, response code) generated by our infrastructure for security and abuse prevention. These logs are retained for a short period and not used for advertising.
We do not collect:
- Apple's Identifier for Advertisers (IDFA) or Google's Advertising ID (AAID).
- Phone numbers — Tripbuds does not use SMS one-time passwords.
- Continuous or background location. We never track your location in the background. The app uses foreground location for "places near me" (used on your device, not stored) and, only if you turn it on, for the optional Live location feature described in section 3.10.
- Your address book. The invite picker uses your contacts on your device only; nothing is uploaded.
- Browsing or search history from outside the app.
- Health, fitness, biometric, financial-account, or other sensitive data.
3.4 Crash and error diagnostics (Sentry)
We use Sentry to capture crashes and errors so we can keep the app stable. When the app hits an error or crash, Sentry records diagnostic data such as the error and stack trace, the screen or action involved, your device model and operating-system version, and the app version, and may process your IP address as part of delivering the report. This data is used solely to diagnose and fix problems — never for advertising or cross-app tracking. Diagnostics are disabled in development builds.
3.5 Information from sign-in providers
If you sign in with Apple or Google, we receive your email address (which may be a relay address if you choose Hide My Email) and a stable user identifier. We do not receive your password, your full address book, or anything else from your Apple ID or Google account.
3.6 Photo metadata
When you upload photos to a trip we may read and use embedded image metadata (such as timestamp) to help group and order your photos and to prevent duplicate uploads. We do not extract or persist precise GPS coordinates from photo EXIF data.
3.7 Moderation data
When you upload a Stop video, our automated moderation system processes the video to decide whether it complies with our Acceptable Use rules (see Terms section 4.4 and 4.5). For each Stop video we store the moderation state (pending, approved, hidden, or removed), the reason a video was hidden or removed (if any), and the time of any state change.
When you report content, we store the report row described in section 3.1 so we can act on it and identify repeat reporters who abuse the report system.
3.8 Product analytics (PostHog)
We use PostHog as a first-party product-analytics tool to understand how the app is used so we can improve it. PostHog records events describing actions you take in the app — for example, completing onboarding, creating a trip, generating an AI plan, viewing or saving a public trip, inviting or joining a trip member, and viewing or purchasing Tripbuds Pro — together with basic technical context such as your device type, operating-system version, and app version.
Some events are recorded server-side, and subscription lifecycle events (such as a purchase, renewal, or cancellation of Tripbuds Pro) may be forwarded to PostHog by our subscription manager (RevenueCat) so we can measure how the upgrade experience performs. These events contain your subscription status and Tripbuds account identifier — never your card or payment details.
These events are linked to your Tripbuds account identifier so we can measure things like how many new users reach their first trip and how features are adopted over time. We use this data only to operate and improve the Service. We do not use it for advertising, we do not sell it, and we do not use it to track you across other companies' apps or websites. Analytics is disabled in development builds, and you can object to this processing by contacting privacy@tripbuds.com.
3.9 Connected email inbox (Trip Wallet — Pro feature)
Trip Wallet lets Pro subscribers fill their wallet automatically instead of typing booking details by hand. This is optional and off by default — it only happens if you choose to connect an inbox or forward an email.
Connecting a Gmail or Outlook inbox. If you connect an account, you authorise Tripbuds — through Google's or Microsoft's official OAuth consent screen — to read your email on your behalf. We request read-only access (the gmail.readonly scope for Gmail; the Mail.Read scope for Outlook/Microsoft). We use that access only to scan for booking confirmation emails from known travel providers — airlines, hotels, car-rental companies, restaurants, activity operators, and similar senders on our approved list. We do not read, process, or store emails from senders that are not on that list.
What we extract and keep. From a matching confirmation we extract structured booking details — such as the confirmation code, provider name, travel dates, and a short reservation summary — and store those in your Trip Wallet, linked to your Tripbuds account. We do not store the full text or body of your emails beyond a short excerpt we keep to display and verify the import; we do not retain the full body of your emails.
Forwarding an email instead. As an alternative to connecting an inbox, you can forward an individual booking confirmation to a personal Tripbuds wallet address. When you do, we process that single forwarded email to extract the same structured booking details and then discard the raw content. This route does not give us any standing access to your inbox.
How we access it. Gmail and Outlook connections use the standard OAuth 2.0 authorization-code flow with a server-side token exchange; we store the access/refresh tokens needed to keep the connection working, and nothing about your email password.
How to disconnect. You can disconnect a connected inbox at any time in Settings → Email connections, which revokes our access immediately. Booking confirmations already imported stay in your wallet until you delete them.
Who processes this. To read the structured details out of a matching travel email, we send that email's content to our AI provider, Anthropic, which processes it on our behalf solely to return the booking details. Anthropic does not retain this content or use it to train its models. We never use your email data for advertising or profiling, and we never share your email content with any other third party. No Tripbuds staff read your email content except in the limited cases Google's Limited Use policy allows: with your explicit consent, where necessary for security or to comply with the law, or on data that has been aggregated and anonymised for internal operations.
Google API Limited Use. Tripbuds' use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Gmail content is used solely to provide the Trip Wallet booking-import feature, is processed only by Tripbuds and Anthropic for that purpose, is never transferred to anyone except as needed to provide or improve the feature (or where required by law), is never used for advertising, is never sold, and is never used to develop, improve, or train generalized or non-personalized AI or machine-learning models.
Uploading a confirmation document. As a Pro subscriber you can also upload a booking-confirmation file (PDF or image) to your Trip Wallet. When you do, the file is stored in your private wallet storage and its content is sent to our AI provider Google (the Gemini API) to extract the same structured booking details (confirmation code, provider, dates, and a short summary), which we then save to your wallet. Tripbuds uses the Gemini API on a paid, business tier; under Google's API terms for paid services, this content is not used to train Google's models and is retained by Google only briefly for security and abuse-prevention. We never use your uploaded documents for advertising or profiling. You can delete an uploaded document at any time.
3.10 Live location (optional)
Live location lets you share where you are with the other members of a trip. It is off by default and foreground-only. When you tap "Share my location", we collect your device's precise location and share it with the other members of that trip for a time window you choose (up to 60 minutes). Your position updates only while the Live location screen is open, and is deleted automatically when the window expires or when you tap Stop. We do not track your location in the background, and we never use location for advertising. Members you share with can see your position on a map while it is active.
3.11 Bot protection (hCaptcha)
To keep automated bots and abuse away from account creation and access, we use hCaptcha, a service provided by Intuition Machines, Inc. ("IMI"), on our sign-up, sign-in, password-reset, and password-change screens. To tell humans from bots, hCaptcha processes data such as your IP address, information about your device and browser, and how you interact with the challenge. IMI acts as our data processor (a "service provider" under US privacy laws) for this limited purpose. This site is protected by hCaptcha and its Privacy Policy and Terms of Service apply.
4. How we use your information
We use your information to:
- create and operate your account;
- run the planning features — trips, days, places, packing, photos, chats, reactions, expenses, polls;
- show you and the people on your trip what each of you has added, according to each item's audience (group or personal);
- generate AI-assisted itinerary suggestions, venue rationales, and chat replies when you ask for them;
- look up real venue details (photos, ratings, hours) and live flight status when you use those features;
- convert amounts between currencies for budgeting;
- show entry and visa requirement information for your destinations, based on the passport nationality you provide, via our visa-information partner (VisaHQ);
- when you use "Adapt my day", check the weather forecast for that day and suggest possible adjustments to your plan;
- share your live location with the members of a trip when you choose to turn it on (section 3.10);
- manage your Tripbuds Pro subscription, unlock paid features, and enforce free-tier limits (including monthly AI-generation counts and introductory credits);
- import booking confirmations from a connected or forwarded email into your Trip Wallet (Pro only, with your explicit consent — see section 3.9);
- power Discover search and recommend public trips, including featured trips we curate;
- enforce the minimum-age requirement and other safety rules;
- run automated content moderation on Stop videos and act on user reports;
- send you transactional and (with your permission) push notifications, including flight-status alerts for Pro users;
- detect and prevent abuse, fraud, and security incidents, and diagnose crashes;
- respond to your support requests;
- comply with our legal obligations and enforce our Terms;
- show local events happening at your destination during your trip dates (via Ticketmaster and PredictHQ), and open a ticketing link if you choose;
- protect sign-up, sign-in, and account recovery from bots and abuse (via hCaptcha);
- let you follow other travellers, send and accept bud requests, and apply your chosen profile-visibility settings;
- understand how the Service is used in aggregate so we can improve it.
We do not sell your personal information.
5. Public surfaces of the Service
Some information is visible to other people by design:
- Your profile (display name, handle, avatar, bio) is visible to people you share trips with and to people who view your public trips.
- Depending on your privacy settings, your profile and activity can also be visible to people who follow you and to your mutual buds; your buds can see buds-only details such as the countries you have visited. You control this in Settings → Privacy.
- Trips you mark public are world-readable. Anyone with the link, anyone using Discover search, and search-engine crawlers may see the trip's contents.
- Trips you join are visible to the other members of that trip. Items you mark personal are limited to the audience you choose.
- Tips you post on a public trip are visible to members who have saved that trip.
- If you turn on Live location, your current position is visible to the other members of that trip while sharing is active.
You can change a trip from public back to private at any time, but copies that other users already saved into their own account will persist. See our Terms.
Your date of birth, email address, subscription status, and personal settings are never displayed on any public surface.
6. Bookings, affiliate links, and partners
When you tap "Book" on a stop:
- We open the partner's site in your device's web browser.
- We append an identifier that tells the partner the click came from Tripbuds. We do not include your name, your email, or any other identifier that lets the partner identify you personally.
- We may receive a commission if you complete the booking. We work with affiliate networks (currently CJ Affiliate and Impact) and with partners we integrate directly (currently GetYourGuide and Viator); they record the click and any eventual booking against a Tripbuds-scoped account, not against you personally.
If a booking is completed and the partner reports it back to us as confirmed, locked, or paid, we record that fact (the booking identifier, the supplier, the status, the stop it relates to) so we can show the "Verified by booking" badge. We do not receive your payment details or card number from the partner. The partner site operates under its own privacy policy. We list current partners in the in-app "How we make money" screen.
We also earn affiliate commissions from travel-insurance and visa-service partners. When you tap a travel-insurance link (currently World Nomads, underwritten by nib Travel) we open their site in your device's browser with a Tripbuds affiliate identifier, and we do not send them your personal information. The Entry & visa requirements tool is provided by VisaHQ and shown inside the app (see section 7). As with bookings, these partners operate under their own privacy policies and we may earn a commission — this is general information, not a recommendation to buy any product.
We also show local events happening at your destination during your trip dates, sourced from Ticketmaster. If you tap a ticket link we open the seller's site in your browser, may append a Tripbuds affiliate identifier, and may earn a commission at no extra cost to you. Any ticket purchase is a contract between you and the seller under their own terms and privacy policy.
When you book a tour, activity, or attraction ticket, we link you to an activity partner — currently GetYourGuide or Viator (a Tripadvisor company). You complete the booking and payment on their site (Viator bookings complete on viator.com, where Viator acts as a disclosed booking agent for the local operator), under their own terms and privacy policy, and we may earn a commission at no extra cost to you.
Tripbuds is never the merchant of record. Refunds, changes, and cancellations are handled by the relevant partner under that partner's own policy — see our Terms of Service (section 5.2) for a summary and links. Because we may earn a commission, our commercial arrangements can influence which booking options we surface; they never change the price you pay.
7. Who we share information with
We share personal information only with the parties below, and only as needed to run the Service.
| Processor | Country | Role |
|---|---|---|
| Supabase | United States | Database, authentication, file storage (avatars, trip photos), realtime updates. |
| Cloudflare | Global | DNS, edge proxy, our backend Workers. |
| Apple (App Store, Push Notification service) | United States | Subscription billing for Tripbuds Pro; delivering push notifications to iOS devices. |
| Google (Play, FCM, Places API, Maps) | United States | Subscription billing on Android; push notifications to Android; place search and detail; map tiles. |
| Google (Gmail API) | United States | Read-only access to a connected Gmail inbox, with your authorisation, to find booking confirmations for Trip Wallet (see 3.9). Your use of Gmail is also subject to Google's Privacy Policy. |
| Microsoft (Outlook / Microsoft Graph) | United States | Read-only access to a connected Outlook/Microsoft 365 inbox, with your authorisation, to find booking confirmations for Trip Wallet (see 3.9). Your use of Outlook is also subject to Microsoft's Privacy Policy. |
| RevenueCat | United States | Managing Tripbuds Pro subscription status and entitlements. Receives your subscription data and an app-scoped account ID — not your card details. May forward subscription lifecycle events to our analytics tool (see 3.8). |
| Sentry | United States | Crash and error diagnostics (see 3.4). |
| PostHog | United States / EU | First-party product analytics (see 3.8). Receives in-app event data linked to your Tripbuds account identifier. Not used for advertising or cross-app tracking. |
| Anthropic | United States | Generating AI itinerary briefs, venue rationales and chat replies, generating day-adjustment suggestions from your plan and the weather ("Adapt my day"), and extracting booking details from travel emails you scan or forward (Trip Wallet, Pro). Anthropic processes this data on our behalf and does not use it to train its models. |
| AeroDataBox (via RapidAPI) | United States / EU | Live flight status. Receives a flight number and date — no personal identifiers. |
| Booking.com search (booking-com15 via RapidAPI) | United States | Hotel/flight/car/attraction availability and pricing. Receives search parameters (destination, dates) — no personal identifiers. |
| open.er-api.com (exchange rates) | United States | Currency conversion rates. Receives a currency code only — no personal data. |
| Unsplash | United States | Optional AI cover-photo search. Receives a search query — no personal data. |
| Expo | United States | Over-the-air app updates. |
| Mailchimp | United States | Transactional and product-update emails. |
| CJ Affiliate | United States | Recording affiliate clicks. Receives a Tripbuds identifier only, not personal data about you. |
| Booking.com | Various | Booking partner. Receives only the destination string, dates, and a Tripbuds affiliate identifier. |
| VisaHQ | United States | Entry/visa-requirements tool shown in the app. You select your nationality and destination within the tool; VisaHQ serves the content and may set its own cookies to attribute referrals to our affiliate account. Governed by VisaHQ's own privacy policy. |
| World Nomads / nib Travel (via CJ Affiliate) | Various | Travel-insurance affiliate. If you tap to get a quote we open their site in your browser with a Tripbuds affiliate identifier; your quote and any purchase are handled by them under their own privacy policy. |
| Open-Meteo | European Union | Weather forecasts for the "Adapt my day" feature. Receives a destination's coordinates for a trip day — no personal identifiers. |
| Ticketmaster | United States | Local event discovery ("What's On"). Receives a destination and trip dates - no personal identifiers. Ticket links you tap may carry a Tripbuds affiliate identifier and open on Ticketmaster under its own privacy policy. |
| PredictHQ | United States | Local event discovery ("What's On"). Receives a destination and trip dates — no personal identifiers. |
| GetYourGuide | Germany / European Union | Tours & activities booking partner. Receives your activity search terms and a Tripbuds partner identifier in the link — no personal identifiers. Bookings and payments occur on GetYourGuide under its own terms and privacy policy. |
| Viator (Tripadvisor) | United States / Australia | Tours & activities booking partner. Receives activity search terms and a Tripbuds affiliate identifier; bookings complete on viator.com as a disclosed agent for the local operator, under Viator's terms and privacy policy. |
| Google (Gemini API) | United States | Extracting booking details from confirmation documents you upload to Trip Wallet (Pro). Processes the uploaded file on our behalf to return structured details; on our paid tier it is not used to train Google's models. |
| Intuition Machines (hCaptcha) | United States | Bot-detection and abuse-prevention on our sign-up, sign-in, and password screens (see 3.11). Processes IP address, device/browser signals, and challenge interactions as our processor. |
We may also share information when required by law; to investigate or prevent fraud, security, or safety issues; in connection with a corporate transaction (with notice or equivalent protection); or with your consent.
Other than the first-party product-analytics processor (PostHog) described in section 3.8, which acts on our behalf under contract, we do not share your personal information with advertisers, data brokers, or third-party advertising or cross-app analytics networks.
Parts of the Service use Google Maps and Google Places. Your use of those features is also subject to the Google Privacy Policy and Google Terms of Service. Map and place content shown in the app may include attributions from Google and its data providers, which we display as required. Destination photos may be supplied by Unsplash and its photographers, shown with the attribution Unsplash requires.
8. International data transfers
Most of our processors are in the United States. By using the Service you understand that your personal information may be transferred to, stored in, and processed in countries outside Australia (including the United States and the European Union). We require our processors to maintain appropriate protections and, where applicable, to rely on Standard Contractual Clauses or equivalent transfer mechanisms.
9. How long we keep your information
- Account data (email, profile, date of birth, ToS-acceptance record): while your account exists, then deleted within 30 days of account deletion.
- Trip content owned by you: deleted within 30 days of account deletion, except where content has been integrated into a shared trip or saved by another user as a public trip (see section 5 and our Terms).
- Subscription records held via RevenueCat: retained while your account exists and as required for tax and financial record-keeping; store-side billing records are kept by Apple/Google under their policies.
- Usage counters (AI generations this month, remaining introductory credits): while your account exists; deleted with the account.
- Crash/error diagnostics (Sentry): retained on a rolling short-term basis (typically up to 90 days) and not linked to a public profile.
- Product-analytics events (PostHog): retained for up to 12 months and then deleted or aggregated; the events linked to your account are removed or de-identified within 30 days of account deletion.
- Stop videos and posters: deleted within 30 days of account deletion, except where hidden/removed by moderation, in which case we may retain the row and audit trail for up to 12 months for safety.
- Reports you file: retained while your account exists; deleted within 30 days of account deletion (we may keep narrow compliance records).
- Booking records backing the "Verified by booking" badge: retained while your account exists; deleted within 30 days of account deletion.
- Connected-inbox access tokens (Gmail/Outlook): retained only while the connection is active; deleted immediately when you disconnect or delete your account. Raw email content is never retained after extraction; the structured booking details we extract are kept in your Trip Wallet until you delete them or your account.
- Imported booking confirmation details (Trip Wallet): retained until you delete the confirmation or your account, whichever is earlier.
- Live location: your shared position is deleted automatically when your sharing window expires (up to 60 minutes) or when you tap Stop; and in any case within 30 days of account deletion.
- Passport nationality: retained while your account exists; deleted with your account.
- Social connections (follows, bud pairs, and follow/bud requests): retained while your account exists; deleted within 30 days of account deletion.
- Event suggestions: cached per trip for its travel dates and refreshed periodically; cleared when the trip or your account is deleted.
- Uploaded confirmation documents (Trip Wallet): the file you upload is kept in your private wallet storage until you delete it or your account; its content is sent to Google's Gemini API only to extract details and is not retained by Google for training.
- Bot-protection signals (hCaptcha): processed by Intuition Machines at the time of the check; Tripbuds does not store them. IMI's retention is governed by its own policy.
- Server logs: typically under 90 days.
- Records we are required by law to keep: retained for the period required by law.
9.1 Children's data deletion
If you are (or were) under 16 when you used Tripbuds, you, your parent, or your legal guardian can email privacy@tripbuds.com to request immediate deletion. We will acknowledge within 5 business days, delete the account and all associated data within 30 days, and confirm in writing. We may keep narrow records (that a deletion request was received and completed) for legal compliance.
10. Your rights
You can, at any time:
- Access the personal information we hold about you (Settings → Export my data).
- Correct information that is inaccurate (Settings → Profile).
- Delete your account and personal information (Settings → Delete account).
- Disconnect a connected email account and revoke our inbox access (Settings → Email connections).
- Object to our processing or restrict it.
- Withdraw consent for optional features like push notifications and product-update emails.
- Lodge a complaint with the Office of the Australian Information Commissioner (oaic.gov.au) or, in the EU/UK, your local data protection authority.
If you are in the EU/UK, our legal bases are performance of a contract (to provide the Service), legitimate interests (safety, fraud prevention, debugging, improvement), consent (push notifications, product-update emails, and email scanning), and legal obligation. To exercise any right, email privacy@tripbuds.com. We respond within 30 days.
11. Security
We protect your information with industry-standard measures: TLS 1.2+ in transit; encryption at rest for database and storage; row-level security on user-scoped data; least-privilege access; and access logging on production systems. No system is perfectly secure. If we become aware of a data breach likely to result in serious harm, we will notify you and the relevant authority as required by law.
12. Notifications
We may send you transactional emails (verification, security, support — cannot be turned off while your account is active); push notifications if you grant permission, including flight-status alerts for Pro users (turn off in device settings or Settings → Notifications); and product-update emails only if you opt in (unsubscribe anytime).
13. Changes to this Policy
We may change this Policy from time to time. When we do, we will update the "Last updated" date and version above, notify you in-app or by email if the changes are material, and where the changes materially affect how we handle your personal information, ask you to re-accept the updated Policy before continuing.
14. Contact
Tripbuds Pty Ltd Sydney, New South Wales, Australia Privacy: privacy@tripbuds.com · Support: support@tripbuds.com · Legal: legal@tripbuds.com
Office of the Australian Information Commissioner — oaic.gov.au · 1300 363 992