Privacy Policy

Your privacy is important to us. Learn how we collect, use, and protect your information.

Last Updated: [Insert Date Here]

Introduction
Legal Basis for Processing
Information We Collect
How We Use Your Information
Information Sharing
International Data Transfers
Data Retention
Your Rights Under GDPR
Exercising Your Rights
Data Security
Cookies and Tracking
Children's Privacy
Changes to This Policy
Contact Information

Introduction

Welcome to ITI ("we," "our," or "us"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal information. This Privacy Policy explains our practices regarding your personal data when you use our itinerary management service.

Data Controller: [Your Company Name]
Contact Information: [Your Email Address]
Address: [Your Business Address]

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

Contract Performance: To provide our itinerary management services
Legitimate Interest: To improve our services and ensure security
Consent: Where you have given explicit consent for specific processing activities
Legal Obligation: To comply with applicable laws and regulations

Information We Collect

Information You Provide Directly

Account Information: Username, email address, password (encrypted)
Profile Information: Name, preferences, and other profile details
Itinerary Data: Travel plans, destinations, dates, companions, and related information
Communication Data: Messages, feedback, and support requests

Information We Collect Automatically

Technical Data: IP address, browser type, device information, operating system
Usage Data: Pages visited, features used, time spent on the service
Cookies and Similar Technologies: Session management, preferences, and analytics

Third-Party Information

Authentication Data: Information received from Supabase for user authentication
Location Data: If you choose to share your location for itinerary planning

How We Use Your Information

Service Delivery

Creating and managing your user account
Storing and organizing your travel itineraries
Providing itinerary management features
Enabling collaboration with travel companions

Service Improvement

Analyzing usage patterns to improve functionality
Developing new features and services
Troubleshooting technical issues

Communication

Sending service-related notifications
Responding to your inquiries and support requests
Providing updates about our services (with your consent)

Your Rights Under GDPR

As a data subject, you have the following rights:

Right of Access

Request copies of your personal data and information about how we process it.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data in certain circumstances.

Right to Restrict Processing

Request limitation of how we process your data in specific situations.

Right to Data Portability

Request your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for direct marketing.

Exercising Your Rights

To exercise your rights or make inquiries about your personal data:

Email: [Your Privacy Email]
Response Time: We will respond within 30 days
Verification: We may request identity verification for security purposes

Data Security

We implement appropriate technical and organizational measures to protect your personal data:

Technical Safeguards

Encryption of data in transit and at rest
Secure authentication through Supabase
Regular security updates and patches
Access controls and monitoring systems

Organizational Measures

Staff training on data protection
Regular security assessments
Incident response procedures
Privacy by design principles

Cookies and Tracking Technologies

We use cookies and similar technologies for:

Essential Cookies

Session management and authentication
Security features and fraud prevention
Core functionality of the service

Analytics Cookies

Understanding usage patterns
Improving service performance
Measuring feature effectiveness

You can manage cookie preferences through your browser settings. Note that disabling essential cookies may affect service functionality.

Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If we discover such collection, we will delete the information promptly.

Changes to This Policy

We may update this Privacy Policy periodically. We will:

Notify you of material changes via email or service notification
Post the updated policy with a new "Last Updated" date
Maintain previous versions for your reference

Contact Information

For privacy-related questions or concerns, please contact us:

Privacy Officer: [Name]
Email: [Privacy Email]
Address: [Business Address]
Phone: [Phone Number]

EU Representative: [If applicable - Name and contact details]

Data Protection Authority

If you are located in the EU, you have the right to lodge a complaint with your local data protection authority. You can find contact information for EU data protection authorities at: https://edpb.europa.eu/about-edpb/about-edpb/members_en