← Back to Filledtrip

Privacy Policy

Last updated: April 2, 2026

1. Introduction

Welcome to Filledtrip. We believe your privacy is a fundamental right, not an afterthought. This policy explains what personal data we collect, why we collect it, how we use it, and the choices you have. We have written it in plain language because real humans will read it.

Filledtrip is a travel recommendation platform where people share trips, places, and tips with friends and followers. This policy applies to our website at filledtrip.com and our iOS and Android mobile apps (collectively, the “Service”).

By using the Service, you agree to the collection and use of data as described in this policy. If you do not agree, please do not use the Service.

2. Data Controller

The data controller responsible for your personal data is:

Filledtrip
Email: privacy@filledtrip.com

When we say “we,” “us,” or “Filledtrip” in this policy, we mean the entity above.

3. What Data We Collect

We collect only the data necessary to provide and improve the Service. We do not use analytics tools, advertising trackers, or tracking cookies.

Identity Data

When you sign in with Google OAuth, we receive and store:

  • Your name and email address
  • Your Google profile photo (avatar)
  • Your Google account identifier (used to link your sign-in)

User Content

Content you create within the Service, including:

  • Trips (title, destination, dates, description)
  • Place tips, notes, and ratings
  • Photos you upload
  • Tags you assign to places or trips

Social Data

  • Users you follow and users who follow you
  • Trips you follow
  • Places you add to your wishlist

Activity Data

  • Notifications and your interaction with them
  • View counts on trips and places
  • Action history (e.g., when you created or edited content)

Device Data

  • Push notification token (Expo push token), used solely to deliver notifications you have opted into
  • Device platform (iOS or Android), used to format notifications correctly

Location Data

When you search for places, we may request your GPS location in the foreground only. This data is used transiently to sort search results by proximity and is not stored on our servers. We never track your location in the background.

Session Data

  • Authentication tokens stored in your device's secure storage (mobile) or as HTTP-only cookies (web)
  • Server logs maintained by our hosting provider, which may include your IP address and request metadata

4. How We Use Your Data

We use your data for the following purposes, along with the legal bases under the EU General Data Protection Regulation (GDPR):

PurposeData UsedLegal Basis
Authenticate your accountIdentity, session dataContract performance
Display and share your trips, tips, and photosUser content, identityContract performance
Enable social features (follows, wishlists)Social dataContract performance
Send push notificationsDevice data, activity dataConsent
Moderate content (detect spam, abuse, or policy violations)User contentLegitimate interest
Classify and extract place informationUser contentLegitimate interest
Show nearby place search resultsLocation data (transient only)Consent
Maintain security and prevent fraudSession data, activity dataLegitimate interest

We do not use your data for advertising, profiling, or automated decision-making that produces legal effects.

5. Third-Party Services

We share data with the following service providers (sub-processors), each of which processes data on our behalf and under contractual obligations:

Supabase

Authentication, database hosting, and file storage (photos). Primary data processor for all user data.

Region: US / EU · Privacy policy

Google

OAuth sign-in (Google Identity) and place resolution (Google Places API). Receives your Google ID during sign-in and search queries when resolving places.

Region: Global · Privacy policy

OpenAI

Server-side text and image moderation, content classification, and place extraction. User text and photos may be sent to OpenAI for processing. OpenAI does not use this data to train its models under our data processing agreement.

Region: US · Privacy policy

Expo / EAS

Push notification delivery. Receives your device push token and notification content.

Region: US · Privacy policy

Vercel

Web application hosting. Server logs may contain your IP address and request metadata.

Region: US / Global edge · Privacy policy

Photon (Komoot / OSM)

Place search. Receives search query text only. No user identity data is transmitted.

Region: EU · Privacy policy

Unsplash

Cover photos for trips. No user data is transmitted. We fetch publicly available images.

Region: US · Privacy policy

6. International Data Transfers

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, your personal data may be transferred to service providers in the United States, including Supabase, OpenAI, Vercel, and Expo.

These transfers are protected by appropriate safeguards, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Data processing agreements with each sub-processor
  • The EU-U.S. Data Privacy Framework, where applicable

You may request a copy of the relevant safeguards by contacting us at privacy@filledtrip.com.

7. Data Retention

We retain your personal data for as long as your account is active. When you delete your account, we delete all associated personal data, including your profile, trips, photos, social connections, and activity history.

Some data may persist in encrypted backups for up to 30 days after deletion, after which it is permanently removed. Server logs containing IP addresses are retained for up to 90 days for security purposes and then automatically purged.

8. Your Rights

For users in the EEA, UK, and Switzerland (GDPR)

Under the General Data Protection Regulation, you have the following rights:

  • Access — Request a copy of the personal data we hold about you
  • Rectification — Ask us to correct inaccurate or incomplete data
  • Erasure — Request deletion of your data (you can also delete your account directly in the app)
  • Portability — Receive your data in a structured, machine-readable format
  • Restriction — Ask us to limit how we process your data in certain circumstances
  • Objection — Object to processing based on our legitimate interests
  • Withdraw consent — Where processing is based on consent (e.g., push notifications, location), you can withdraw at any time through your device settings

To exercise any of these rights, email us at privacy@filledtrip.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

For users in California (CCPA / CPRA)

See Section 14 for California-specific disclosures and rights.

9. Children's Privacy

Filledtrip is not directed at children. We require users to be at least 16 years old in the EEA and the UK (in compliance with the GDPR) and at least 13 years old in the United States (in compliance with COPPA and the CCPA).

We do not knowingly collect personal data from anyone under these age thresholds. If you believe we have inadvertently collected data from a child, please contact us at privacy@filledtrip.com and we will promptly delete it.

10. Cookies & Local Storage

We do not use advertising cookies, analytics cookies, or any third-party tracking cookies.

We use only the following:

  • Authentication cookie (HTTP-only, secure, SameSite) — Keeps you signed in on the web. This is a strictly necessary cookie and does not require consent under the ePrivacy Directive.
  • Device secure storage (mobile) — Auth tokens are stored in your device's encrypted keychain/keystore, not in cookies.
  • Local storage — We may store non-sensitive UI preferences (e.g., onboarding completion) in your browser's local storage. No personal data is stored this way.

11. Security Measures

We take the security of your data seriously and implement the following measures:

  • All data is transmitted over HTTPS/TLS encryption
  • Passwords are never stored (we use Google OAuth exclusively)
  • Auth tokens are stored in secure, encrypted device storage or HTTP-only cookies
  • Database access is controlled through row-level security policies
  • File uploads are stored in access-controlled buckets with signed URLs
  • Server-side API keys are stored as environment variables, never in client code
  • We regularly review dependencies for known vulnerabilities

While no system is 100% secure, we are committed to protecting your data using industry-standard practices. If you discover a security vulnerability, please report it to privacy@filledtrip.com.

12. Changes to This Policy

We may update this privacy policy from time to time. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page
  • Notify you through the app or via email for significant changes
  • Give you the opportunity to review the changes before they take effect

We encourage you to review this page periodically. Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

13. Contact Us

If you have questions about this privacy policy, want to exercise your data rights, or have concerns about how we handle your data, please contact us:

Filledtrip Privacy
Email: privacy@filledtrip.com

We aim to respond to all privacy-related inquiries within 30 days.

14. California-Specific Disclosures

This section provides additional disclosures required under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) for California residents.

Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information as defined by the CCPA:

  • Identifiers — Name, email address, Google account ID
  • Internet or network activity — Server logs (IP address, request metadata)
  • Geolocation data — Approximate location (foreground only, transient, not stored)
  • Audio, visual, or similar information — Photos you upload
  • User-generated content — Trips, tips, ratings, tags

Sale and Sharing of Personal Information

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. We have not sold or shared personal information in the preceding 12 months.

Your California Privacy Rights

As a California resident, you have the right to:

  • Know — Request the categories and specific pieces of personal information we have collected about you
  • Delete — Request deletion of your personal information (you can also delete your account directly in the app)
  • Correct — Request correction of inaccurate personal information
  • Opt-out of sale/sharing — Not applicable as we do not sell or share personal information
  • Non-discrimination — We will not discriminate against you for exercising your privacy rights

To submit a request, email privacy@filledtrip.com with the subject line “CCPA Request.” We will verify your identity and respond within 45 days.

Authorized Agents

You may designate an authorized agent to make a CCPA request on your behalf. We will require the agent to provide proof of written authorization and may verify your identity directly.

Sensitive Personal Information

We do not collect or process sensitive personal information as defined under the CPRA (e.g., Social Security numbers, financial account details, precise geolocation for purposes other than providing the Service, racial or ethnic origin, religious beliefs, biometric data, or health information).