1. Who we are
Trippy is developed and published by Jon Trygve Hegnar, an independent developer based in Norway ("we", "us"). We are the data controller for the limited processing described in this policy.
Contact: hello@trytrippy.app
2. What Trippy does
Trippy lets you save places people recommend to you, organise them by city, and plan trips day by day. Everything you create in the app — saved places, personal notes, tags, trips, itineraries and reservation notes — is yours and stays under your control.
3. Data we collect — and where it lives
3.1 Content you create in the app
Saved places, notes, tags, trips, days, stops and reservation details are stored locally on your device and, if you have iCloud enabled, synced through your private iCloud database (Apple CloudKit). This data is tied to your Apple Account and protected by Apple; we have no server of our own that stores it and we cannot access, read or retrieve it. Apple's processing is governed by the Apple Privacy Policy.
3.2 Place search
When you search for a place, your search text is sent through our lightweight relay server (a Cloudflare Worker) to the Google Places API, which returns search results, place details, opening hours and photos. In processing these requests:
- Your search text and your device's IP address are processed transiently to deliver the request and to apply rate limiting that protects the service from abuse.
- We do not log search queries against any user identity, and we store no user profiles, accounts or histories on our servers.
- Non-personal place details (keyed by Google's place ID, not by you) may be cached on the relay for up to 24 hours to reduce repeated lookups.
- Google processes these requests under the Google Privacy Policy. Cloudflare, which hosts the relay, processes traffic under the Cloudflare Privacy Policy.
3.3 Location
If you grant location permission, Trippy uses your device's location on the device only — to show your position on the map and to sort your saved places by distance in the "Near me" view. Your location is never sent to our servers and never stored. Maps are displayed with Apple Maps (MapKit), and map tiles are fetched by Apple as part of that service. You can revoke location access at any time in iOS Settings, and the app remains fully usable without it.
3.4 Photos of places
Photos of places (from Google Places) are cached on your device for up to 7 days to reduce data usage. They are pictures of public places, not personal photos, and Trippy does not access your photo library.
4. What we do NOT collect
- No user accounts, usernames or passwords
- No third-party analytics or advertising SDKs
- No tracking across apps or websites, and no advertising identifiers
- No contacts, photos, health data or any other data from other apps
- No sale, rental or sharing of personal data with third parties for their own purposes
5. Summary table
| Data | Where it goes | Purpose | Retention |
|---|---|---|---|
| Places, notes, trips | Your device + your private iCloud | The app's core function | Until you delete it |
| Search text | Relay → Google Places API | Return search results | Transient; not logged per user |
| IP address | Relay (Cloudflare) | Deliver requests, rate limiting | Transient |
| Device location | Stays on your device | "Near me" map view | Never stored |
6. Legal basis (GDPR)
For users in the EU/EEA, the legal basis for the processing described above is the performance of a contract (Art. 6(1)(b) GDPR — providing the app's functionality you request) and our legitimate interest in keeping the service secure and preventing abuse (Art. 6(1)(f) GDPR — rate limiting). Location is processed only with your consent via the iOS permission prompt (Art. 6(1)(a)), which you can withdraw at any time in Settings.
7. Deleting your data
- In the app: delete any place, trip or note at any time.
- Everything at once: delete the app, and remove Trippy's iCloud data under iOS Settings → your name → iCloud → Manage Account Storage.
- Because we hold no copy of your data on our own servers, there is nothing further for us to delete.
8. Your rights
Under the GDPR and Norwegian law, you have the right to access, correct, delete and export your personal data, to object to or restrict processing, and to withdraw consent. Since your data lives on your device and in your private iCloud, you exercise most of these rights directly, as described above. For anything else, contact us at hello@trytrippy.app. You also have the right to lodge a complaint with your supervisory authority — in Norway, Datatilsynet (datatilsynet.no).
9. Children
Trippy is not directed at children under 13, and we do not knowingly collect personal data from children.
10. Security
Your content is protected by your device's security and by Apple's iCloud security (encryption in transit and at rest). Traffic between the app, our relay and Google is encrypted with HTTPS.
11. Changes to this policy
If we change this policy, we will post the updated version on this page with a new effective date. Material changes will be highlighted in the app's release notes.