Privacy Policy

Effective date: April 4, 2026 · Last updated: April 4, 2026

We do not sell your data or share it with third parties for advertising purposes. Your trips are yours alone.

1. Overview

This Privacy Policy explains what data Roam ("we", "us", "our") collects when you use the Roam mobile app, how we use it, and your rights regarding that data.

2. Data We Collect

We collect only the data necessary to provide the service:

• Email address — used to authenticate you via a one-time code. We do not collect passwords.
• Display name — optional name you set in your profile.
• Trip data — trips, days, items (hotels, transport, places, etc.), budget entries, packing lists, and reminders you create.
• Push notification token — used to send you reminders you set within the app. Stored on our servers.
• Device locale — used to determine the app language (English or Ukrainian). Not stored on our servers.

3. Location

Roam does not collect or store your device location. When you search for a place or address, the query is sent to the Google Maps API to return results. Google's privacy policy applies to that interaction. No coordinates from your device are transmitted.

4. How We Use Your Data

• To provide, sync, and display your trip data across devices.
• To authenticate you and keep your account secure.
• To send push notifications for reminders you explicitly scheduled.
• To invite other users to shared trips at your request.

We do not use your data for advertising, analytics profiling, or any purpose beyond operating the app.

5. Data Sharing

We do not sell or rent your data. We use the following third-party services to operate Roam:

• Supabase — database and authentication hosting.
• Google Maps API — place and address search.
• Expo (Expo Notifications) — delivery of push notifications.

These providers process data only as needed to deliver their services and are bound by their own privacy policies.

6. Data Retention

Your data is retained as long as your account exists. You can delete your account at any time from the Profile screen in the app. Deletion permanently removes your account, all trips, and all associated data from our servers.

7. Security

All data is transmitted over HTTPS. Authentication uses short-lived one-time codes rather than passwords. We do not store payment information.

8. Children

Roam is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, contact us and we will delete it.

9. Your Rights

You may request a copy of your data, correction of inaccurate data, or deletion of your account and all associated data by contacting us or using the in-app deletion feature.

10. Changes to This Policy

If we make material changes, we will update the date at the top of this page. Continued use of the app after changes constitutes acceptance.

11. Contact

Questions? Email us at [email protected].