Privacy Policy

Last updated: February 21, 2026

The Short Version

UB Trippin organizes your travel plans. To do that, we need to read your booking emails and store your trip data. We treat that data the way we'd want ours treated: carefully, privately, and never sold to anyone. That's it. That's the policy.

What follows is the longer version, because lawyers exist and Google requires it.

What We Collect

Account information: Your name and email address from Google when you sign in. We don't ask for your password — Google handles authentication.

Travel data: When you forward booking confirmation emails to us, we extract trip details — flights, hotels, trains, restaurants, activities. This includes dates, times, locations, confirmation codes, and traveler names.

Email content: We store the content of emails you forward to us for processing and so you can review what was extracted. We do not access your email inbox — you choose what to send us.

Usage data: Basic server logs (IP addresses, browser type, pages visited). We don't use tracking cookies or analytics services.

How We Use It

  • To create and organize your trip itineraries
  • To extract travel details from your forwarded emails using AI
  • To generate PDFs and shareable trip pages
  • To improve our extraction accuracy (we learn from corrections you make)

We do not use your data for advertising. We do not sell your data. We do not share your data with third parties except as described below.

Third-Party Services

We use a small number of services to operate:

  • Supabase — database and authentication (your data is stored here)
  • Vercel — hosting and deployment
  • Resend — email processing (receives your forwarded booking emails)
  • Anthropic (Claude) — AI extraction of travel details from email content

When you forward an email, its content is sent to Anthropic's API for extraction. Anthropic does not use API inputs for training. Your email content is processed and not retained by Anthropic beyond what's needed to complete the request.

Data Storage and Security

Your data is stored in Supabase (hosted in the EU — Ireland). We use row-level security so users can only access their own trips. All connections are encrypted via TLS. We don't store passwords — authentication is handled entirely by Google OAuth.

Your Rights

You can:

  • Access all your data through the app at any time
  • Delete any trip, item, or your entire account
  • Export your trips as PDF or markdown
  • Correct any extracted data that's wrong

If you want to delete your account entirely, email us at privacy@ubtrippin.xyz and we'll remove everything within 30 days.

Children

UB Trippin is not designed for children under 16. We don't knowingly collect data from minors. If you believe we have, contact us and we'll delete it.

Changes

If we change this policy in any meaningful way, we'll update the date at the top and, if the change is significant, notify you via the app. We won't quietly make your data less private.

Contact

Questions, concerns, or requests: privacy@ubtrippin.xyz

We wrote this policy to be readable by humans, not just lawyers. If something is unclear, that's our fault — ask us and we'll explain.