Last updated: March 21, 2026
aitrips.io ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our trip planning service.
We collect information you provide directly to us when you create an account and use our services:
Account Information: When you sign up, we collect your email address and name through our authentication provider (BetterAuth). Passwords are securely hashed before storage and are never stored in plain text.
Trip Data: Information you provide about your trips, including destinations, dates, itineraries, locations, notes, and budget information.
Usage Data: We automatically collect certain information when you use our service, including your IP address, browser type, and interactions with our platform.
We use the information we collect to:
Provide, maintain, and improve our services; process transactions and send related information; send you technical notices and support messages; respond to your comments and questions; and detect, investigate, and prevent fraudulent transactions and other illegal activities.
Lawful basis (GDPR): We process your data on the basis of contract performance (to deliver the service you signed up for), legitimate interests (security, fraud prevention, service improvement), and consent (where explicitly obtained, such as for AI-powered features).
aitrips.io offers optional AI-powered features including Quick Assist (in-app AI chat for trip planning) and Destination Briefs (AI-generated summaries for destinations). These features are entirely opt-in and require your explicit consent before first use.
What data is sent: When you use an AI feature, we send relevant trip details to the AI provider — including destinations, dates, and itinerary items. Where traveller information is relevant (e.g. dietary needs, mobility requirements, age ranges), it is anonymised before transmission. Names and personal identifiers are never sent.
Who processes it: AI features are powered by the Claude API provided by Anthropic, PBC. Anthropic acts as a data processor on our behalf under a Data Processing Agreement.
Retention: Anthropic retains API request data for up to 7 days for trust and safety monitoring, after which it is automatically deleted. aitrips.io does not store AI interaction transcripts.
No AI training: Data sent via the Claude API is never used to train Anthropic's AI models. This is governed by Anthropic's API usage policy and our Data Processing Agreement.
Legal basis: AI features are processed on the basis of consent. You must explicitly opt in before first use. You may withdraw consent at any time via Settings → AI Features; this takes effect immediately for all new requests.
Cross-border transfers: Anthropic is headquartered in the United States. Data processed via the Claude API may be transferred to and processed in the US. This transfer is covered by Standard Contractual Clauses (SCCs) incorporated into Anthropic's Data Processing Agreement.
We do not sell your personal information. We may share your information in the following situations:
With Your Consent: When you choose to share trips with collaborators, they will see the trip data you've shared.
Legal Requirements: We may disclose your information if required by law or in response to valid legal requests.
Service Providers: We use the following third-party services to operate the platform:
| Service | Purpose | Data shared |
|---|---|---|
| BetterAuth | Authentication | Email address, name |
| Neon | Database hosting | All stored user and trip data |
| Polar | Payment processing & subscriptions | Email address, billing information |
| Anthropic (Claude API) | AI trip assistance (opt-in) | Trip details, anonymised traveller info |
| OpenRouteService | Route calculation | Origin/destination coordinates |
| HERE Maps | Route calculation (fallback) | Origin/destination coordinates |
| Google Routes API | Transit routing (select regions) | Origin/destination coordinates |
| Open-Meteo | Weather forecasts | Latitude/longitude coordinates |
| Visual Crossing | Weather data (optional) | Latitude/longitude coordinates |
| Resend | Transactional email | Email address |
| Upstash Redis | Rate limiting | Usage counters (no personal data) |
We retain your data only for as long as necessary to provide our services or as required by law:
Your data is stored on secure servers in the Sydney, Australia region. We implement appropriate technical and organisational measures to protect your personal information, including encryption in transit (HTTPS) and at rest. However, no method of transmission over the Internet is 100% secure.
You have the right to:
Our primary servers are located in Australia. Some third-party service providers (including Anthropic for AI features) are based in the United States. Where we transfer personal data outside of your country, we rely on appropriate safeguards including Standard Contractual Clauses (SCCs) approved by relevant data protection authorities.
By using our service, you acknowledge that your information may be transferred to and processed in countries with different data protection laws than your own.
We use essential cookies necessary for the service to function, including authentication cookies managed by our auth system. We do not use advertising or tracking cookies. For more details, see our Cookie Policy.
Given the current scale of our operations, we are not required to appoint a formal Data Protection Officer. For all privacy-related enquiries, please contact us at privacy@aitrips.io.
Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For material changes, we will notify registered users by email.
If you have any questions about this Privacy Policy, please contact us at privacy@aitrips.io or visit our Contact page.