Privacy Policy

Introduction

Welcome to the Milotrips Privacy Policy. Your privacy is important to us, and we are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our service.

By using Milotrips, you agree to the collection and use of information in accordance with this policy. We will not use or share your information with anyone except as described in this Privacy Policy.

1. Information We Collect

1.1 Personal Data

To provide our services, we collect the following personal information:

  • Email address: Required for account creation and communication
  • Username/Pseudonym: Optional, can be set by the user after registration
  • Password: Stored securely using strong hashing algorithms

1.2 Usage Data

We also collect information on how you use our service:

  • AI conversations and travel planning requests
  • Travel preferences and destinations of interest
  • Usage patterns and service interactions

1.3 Analytics

We use Matomo, a privacy-friendly analytics platform, to collect anonymous usage data. Matomo is configured in a cookie-less mode, respecting user privacy while helping us improve our service. The analytics data collected includes:

  • Pages visited
  • Time spent on the site
  • Referral sources
  • Technical information about your browser and device

2. How We Use Your Information

We use the information we collect for various purposes:

  • To provide and maintain our service
  • To notify you about changes to our service
  • To allow you to participate in interactive features of our service
  • To provide customer support
  • To gather analysis and valuable information to improve our service
  • To monitor the usage of our service
  • To detect, prevent and address technical issues
  • To create personalized travel recommendations through our AI

3. Data Storage and Security

3.1 Where Your Data is Stored

All user data is stored on Supabase servers located in the European Union (eu-west-3 region). We've chosen this location to ensure compliance with European data protection standards and GDPR requirements.

3.2 Security Measures

We implement a variety of security measures to maintain the safety of your personal information:

  • Passwords are securely hashed using strong cryptographic algorithms
  • User authentication is managed through secure JWT tokens
  • All data is transmitted using secure HTTPS connections
  • Regular security assessments and updates

3.3 Data Retention

We will retain your personal data only for as long as necessary for the purposes set out in this Privacy Policy. We currently do not have a defined data retention period, but we will periodically review our data storage practices to ensure we don't keep data longer than needed.

4. AI Travel Planning and Data Processing

Our service uses OpenAI technology to provide AI-powered travel recommendations and planning:

  • Conversations with our AI travel planner are saved to improve service quality and maintain continuity between sessions
  • Your travel preferences, destinations of interest, and planning requests are processed to provide personalized recommendations
  • We do not share your personal information with OpenAI, though anonymized conversation data may be analyzed to improve our service

5. Cookies and Tracking

Milotrips uses minimal tracking technologies:

  • We use a single essential cookie to store your authentication token (JWT) for secure login sessions
  • This cookie is necessary for the functioning of our service and does not track your activities across other websites
  • Our analytics solution (Matomo) is configured in a cookie-less mode, respecting your privacy while helping us improve our service
  • We do not use third-party advertising cookies or tracking pixels

6. Sharing of Data with Third Parties

We do not sell, trade, or otherwise transfer your personal information to external third parties. However, your data may be accessed by:

  • Service providers: Companies that assist us in operating our website and providing our services (such as Supabase for data storage)
  • Legal requirements: We may disclose your information where required by law or to protect our rights

All service providers are required to keep your information confidential and secure, and to use it only for the purpose of providing services to us.

7. Your Data Protection Rights

Under the General Data Protection Regulation (GDPR) and other applicable data protection laws, you have certain rights regarding your personal data:

  • Right to access: You can request copies of your personal data
  • Right to rectification: You can request that we correct inaccurate information
  • Right to erasure: You can request that we delete your personal data
  • Right to restrict processing: You can request that we restrict the processing of your data
  • Right to data portability: You can request to receive your data in a structured, machine-readable format
  • Right to object: You can object to our processing of your personal data

To exercise any of these rights, please contact us at contact@milotrips.com. While we are working to add these features directly to our platform, requests can currently be handled via email.

8. Data Breach Procedures

In the event of a data breach that compromises your personal information, we will:

  • Notify affected users via email within 72 hours of becoming aware of the breach
  • Provide information about what data was affected
  • Explain the steps we are taking to address the breach
  • Offer guidance on how you can protect yourself
  • Report the breach to relevant data protection authorities as required by law

9. Children's Privacy

Our service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at contact@milotrips.com, and we will delete such information from our systems.

10. International Data Transfers

Your information is stored and processed on servers located in the European Union. By using our service, you consent to this transfer, storing, and processing. We take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and GDPR requirements.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: contact@milotrips.com