Privacy Policy

Effective Date: June 12, 2026

Company: TripTrix, Inc.

Contact: support@triptrix.co

Website: triptrix.co

TripTrix™ is built to give travelers control over how, when, and with whom they share their journeys.

Privacy is not an add-on to TripTrix. It is part of the product design, the business model, and the way the service operates.

TripTrix is paid for by its members. We do not sell personal data. We do not use personal data for advertising. We do not build advertising profiles. We do not build profiles of you from your contacts, circles, connections, message participants, media, comments, location, or travel-sharing activity.

Your trips are never the product.

1. Our Core Privacy Commitments

TripTrix is designed around the following commitments:

• End-to-end encrypted content. Chats, messages, comments, photos, videos, and other shared trip media are end-to-end encrypted. TripTrix cannot read or view that content. Only people authorized by the traveler can access it.
• You control who sees what. You decide what each circle, contact, or invited participant can see for each trip.
• No advertising use. We do not use your personal data, trip data, location, contacts, circles, messages, comments, media, or travel activity for advertising.
• No data sales. We do not sell your personal data.
• No relationship profiling. We do not build a profile of you from your contacts, circles, connections, message participants, trip participants, or travel-sharing activity.
• No embedded tracking. We do not use advertising cookies, tracking pixels, device fingerprinting, IP-address tracking, or similar embedded tracking technologies.
• Feature-limited use. We process information only as needed to provide the features you choose to use, operate the service, protect the service, and comply with applicable law.

2. Information We Process

The information TripTrix processes depends on which features you use.

Account Information

When you create or manage an account, TripTrix may process:

• Name
• Email address
• Phone number, if provided
• Login credentials or authentication information
• Account settings
• Subscription status
• Authorized family plan users
• Communication preferences

We use this information to create and manage your account, provide the service, communicate with you, and support your subscription.

Guest Accounts

TripTrix allows travelers to share selected trip content with authorized users and guests.

Guests must have a TripTrix account, even if the account is limited, before they can view, comment on, or otherwise interact with shared trip content. This allows TripTrix to apply permissions, authenticate access, protect shared content, and maintain accountability for who can see or participate in a trip.

Guests can only access the content and features authorized by the traveler or by TripTrix permissions. Guest access does not allow unrestricted access to a traveler's account, trip archive, contacts, circles, or other private information.

Trip Information

When you create or manage a trip, TripTrix may process information such as:

• Trip name
• Dates
• Destinations
• Flight details
• Other travel or transport details you choose to add
• Lodging or location details you choose to add
• Trip participants
• Circles or contacts authorized to see parts of the trip
• Sharing permissions for each audience

We use trip information to provide the trip-sharing, status, notification, archive, and permission features you choose to use.

Flight Status Information

If you use flight tracking or flight status features, TripTrix may process:

• Airline
• Flight number
• Departure and arrival airports
• Scheduled and actual departure and arrival times
• Delay, cancellation, gate, and status information
• Notification preferences
• Recipients or circles authorized to receive flight updates

TripTrix may use FlightAware and other flight data providers to retrieve or receive flight status information. When TripTrix requests flight information from these providers, TripTrix does not provide the traveler's identity. The provider receives only the flight information needed to return status data, such as a flight number or route-related request, and does not receive the identity of the TripTrix user for whom the request is being made.

TripTrix uses flight status information to share updates only with the people or circles authorized by the traveler.

Location, Maps, and Trip History

If you choose to use location-based or map-based features, TripTrix may process the location or trip-status information needed to generate maps, display travel progress, and preserve a useful trip history.

Maps generated during a trip may be stored as part of the trip history and may remain available to authorized users and guests according to the permissions set by the traveler.

TripTrix does not retain the underlying waypoints, location points, or raw location inputs longer than needed to generate the map, provide the active feature, preserve the resulting trip history view, and maintain the final status of the trip, such as completed flight status or other final travel-status information.

TripTrix does not use location information, maps, waypoints, or travel history to advertise to you, sell your data, or build a profile of you.

Chats, Messages, Comments, Photos, Videos, and Media

TripTrix treats chats, messages, comments, photos, videos, and other shared trip media as protected user content.

This content is end-to-end encrypted. It is encrypted from device to device, encrypted in transit, and encrypted at rest on TripTrix's AWS infrastructure.

TripTrix cannot read or view this content. Only people authorized by the traveler can access it.

TripTrix does not use this content for advertising, profiling, data sales, or behavioral analysis.

To operate the service, TripTrix may still process limited technical and operational information needed for delivery, syncing, storage, permissions, security, and reliability, such as:

• Account identifiers
• Permission settings
• Conversation or trip participation records
• Delivery or sync status
• Timestamps
• Device or session information
• Push notification routing information
• Security and reliability signals

We do not use this operational information to build a profile of you.

Contacts, Circles, and Connections

TripTrix lets you create circles and invite people to trips. We may process contact, circle, and invitation information to provide those features, such as:

• Contact name
• Email address or phone number
• Invitation status
• Circle membership
• Trip permissions
• Participant role
• Whether a participant is a member, authorized user, or guest

We do not use your contacts, circles, message participants, trip participants, or sharing relationships to build a profile of you. We do not sell this information. We do not use it for advertising.

Payment and Subscription Information

TripTrix uses Stripe or other payment processors to manage subscription billing.

TripTrix may process:

• Subscription plan
• Billing status
• Payment confirmation
• Renewal status
• Billing contact information
• Refund or cancellation records

TripTrix does not need to store full payment card numbers when handled by our payment processor.

Website, Forms, Surveys, Waitlist, and Beta Information

If you visit our website, contact us, join a waitlist, sign up for beta testing, respond to a survey, or submit a form, TripTrix may process:

• Name
• Email address
• Form responses
• Travel frequency or eligibility responses
• Communication preferences
• Customer service communications
• Survey responses
• Participation or beta access records

TripTrix currently uses HubSpot for contact management, customer communications, customer support, and participation-related submissions. TripTrix also uses Typeform for surveys and future forms.

These systems are used to respond to inquiries, manage participation, support customers, maintain records of communications, and operate TripTrix in a GDPR-compliant manner worldwide.

3. No Advertising Cookies, Pixels, Fingerprinting, or IP Tracking

TripTrix does not use cookies for advertising.

TripTrix does not use tracking pixels, device fingerprinting, IP-address tracking, or embedded third-party behavioral tracking technologies.

TripTrix does not sell or share visitor data with third parties for advertising.

TripTrix may use strictly necessary technologies to operate and secure the website and service, manage forms, prevent abuse, support account access, maintain reliability, and understand whether systems are functioning properly. These are not used to advertise to you or build a profile of you.

TripTrix does not use IP addresses for advertising, behavioral profiling, relationship profiling, data sales, or visitor tracking.

Some technical data may be processed transiently or in limited operational logs where necessary to deliver the website, maintain security, prevent abuse, troubleshoot service issues, and keep the service reliable. TripTrix will limit such processing to what is necessary for those purposes.

4. Operational Logs and Service Reliability

TripTrix may maintain limited operational logs and technical records needed to:

• Run the service
• Detect service issues
• Debug errors
• Maintain performance
• Protect against fraud, abuse, or unauthorized access
• Preserve system integrity
• Comply with legal obligations

These logs are not used for advertising, data sales, behavioral profiling, or relationship profiling.

5. How We Use Information

TripTrix uses information to:

• Create and manage accounts
• Provide trip-sharing features
• Manage circles and permissions
• Provide flight status updates
• Provide location sharing when enabled
• Generate and preserve authorized trip maps and trip history
• Store, encrypt, sync, and display authorized trip content
• Deliver notifications
• Process subscriptions and payments
• Respond to inquiries and provide customer support
• Manage waitlist, survey, beta, and participation submissions
• Maintain service reliability and security
• Prevent fraud, abuse, and unauthorized access
• Comply with legal obligations
• Improve the functionality and performance of TripTrix

TripTrix does not use personal information for advertising. TripTrix does not sell personal information. TripTrix does not use third-party tracking for advertising. TripTrix does not build behavioral advertising profiles.

6. How Sharing Works Inside TripTrix

TripTrix is built around permissioned sharing.

You decide who can see each category of trip information, such as:

• Flight status
• Location
• Maps and trip history
• Lodging or stay details
• Photos and videos
• Comments
• Messages
• Trip updates
• Archive access

You can change sharing permissions. When you change permissions, TripTrix applies those settings according to the product's functionality and technical limitations.

7. End-to-End Encrypted User Content

TripTrix uses end-to-end encryption for protected user content, including chats, messages, comments, photos, videos, and other shared media.

This means:

• Protected user content is encrypted on the sender's device.
• Protected user content is encrypted in transit.
• Protected user content is encrypted at rest on TripTrix's AWS infrastructure.
• Protected user content can only be decrypted by authorized recipients.
• TripTrix cannot read or view protected user content.
• TripTrix does not use protected user content for advertising, profiling, or data sale.

End-to-end encryption protects the content itself. To operate the service, TripTrix may process limited operational information needed for account management, permissions, delivery, syncing, storage, security, abuse prevention, and reliability.

8. No Contact, Circle, or Relationship Profiling

TripTrix does not build a profile of you based on:

• Your contacts
• Your circles
• Your invited participants
• Your message participants
• Your trip participants
• Who you travel with
• Who you share trips with
• Who comments on or views your trip content
• Your travel-sharing patterns

We use contact, circle, and participant information to provide the features you request, not to infer who you are, advertise to you, sell your data, or create a commercial profile of your relationships.

9. Deleting Content

TripTrix is designed to let users delete specific content, including messages, chats, comments, photos, videos, and other shared trip content, subject to product functionality, legal obligations, security requirements, backup limitations, and the rights of other authorized participants.

If the original author deletes a message, chat, comment, photo, video, or other shared content, TripTrix will delete that content for everyone according to the product's deletion process.

If a user who is not the original author removes or deletes content from their own view, that deletion applies only to that user's view and does not delete the original content for other authorized participants.

When content is deleted, TripTrix will remove it from active access according to the product's deletion process. Some limited records may remain temporarily in backups, security logs, or operational systems where necessary to maintain service integrity, comply with law, prevent abuse, or resolve disputes.

End-to-end encrypted content remains protected while stored, including during any temporary backup or retention period.

10. Service Providers

TripTrix relies on trusted providers to operate the service. These providers may process information only as needed to provide services to TripTrix, such as hosting, infrastructure, storage, security, flight status, payments, forms, customer communications, and service operations.

Current or expected providers include:

• Cloudflare for website hosting, security, content delivery, and related website infrastructure
• AWS for application hosting, storage, databases, security, and related backend infrastructure
• FlightAware and other flight data providers for flight status and travel updates
• Stripe for subscription billing and payment processing
• HubSpot for contact management, customer service communications, and participation-related submissions
• Typeform for surveys and future forms

TripTrix does not authorize these providers to use your personal information for their own advertising purposes.

These service providers act as processors or service providers for TripTrix and are not permitted to use your data for their own independent purposes except where required to provide their services, comply with law, prevent fraud or abuse, or maintain security.

11. Website Hosting and Cloudflare

TripTrix uses Cloudflare to help host, secure, and deliver the TripTrix website and related web services.

Cloudflare replaces Wix as the website hosting and infrastructure provider for the TripTrix website. If TripTrix uses Wix for any remaining historical, administrative, or transitional purpose, that use will be limited to that purpose and updated in this policy as needed.

TripTrix configures Cloudflare with a privacy-first approach and seeks to minimize the technical data collected or retained through website infrastructure.

12. AWS Backend Infrastructure

TripTrix uses AWS as the backend infrastructure provider for app services outside the website, payments, CRM, and forms.

Protected user content stored on AWS, including chats, messages, comments, photos, videos, and shared media, is encrypted and designed so that only authorized recipients can access it.

13. Legal Bases for Processing

Where required by law, including under the GDPR and UK GDPR, TripTrix relies on appropriate legal bases to process personal information, including:

• Performance of a contract, when processing is needed to provide TripTrix services
• Consent, when you choose to enable optional features such as certain location-sharing settings or marketing communications
• Legitimate interests, such as service reliability, security, fraud prevention, and product improvement
• Legal obligations, when processing is required to comply with applicable law

14. International Data Transfers

TripTrix may process information in the United States, the European Economic Area, the United Kingdom, and other locations where TripTrix or its service providers operate.

Where required, TripTrix uses appropriate safeguards for international data transfers, such as data processing agreements, standard contractual clauses, and other lawful transfer mechanisms.

TripTrix's privacy approach is intended to be GDPR-compliant worldwide.

15. Data Retention

TripTrix keeps personal information only for as long as needed to provide the service, maintain your account, preserve your trip archive, comply with legal obligations, resolve disputes, enforce agreements, and protect the service.

You may request deletion of your account or certain information, subject to legal, security, backup, fraud-prevention, and operational limitations.

End-to-end encrypted user content may be retained as part of your trip archive unless deleted by you or removed according to TripTrix's retention settings and product functionality.

Maps generated during a trip may remain available as part of trip history for authorized users and guests. Underlying waypoints, raw location points, or temporary location inputs used to generate those maps are not retained longer than needed to provide the active feature, create the stored map, preserve the resulting trip history view, and maintain final trip status.

16. Your Privacy Rights

Depending on where you live, you may have rights to:

• Access your personal information
• Correct inaccurate information
• Delete personal information
• Export or receive a copy of your information
• Object to or restrict certain processing
• Withdraw consent where processing is based on consent
• Opt out of certain sharing or sale of personal information, where applicable

TripTrix does not sell personal information and does not use personal information for targeted advertising.

To make a privacy request, contact us at support@triptrix.co.

17. Children

TripTrix is not intended for children under 13, and we do not knowingly collect personal information from children under 13.

If TripTrix allows family plan users or guests who are minors in the future, the service will handle those users according to applicable law and parental or guardian permissions where required.

18. Security

TripTrix uses administrative, technical, and organizational safeguards designed to protect personal information. These safeguards include encryption, permission controls, access controls, secure infrastructure, and least-privilege access practices.

No service can guarantee absolute security, but TripTrix is designed to reduce unnecessary data exposure and protect user information from unauthorized access.

19. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date and provide additional notice where required by law.

20. Contact Us

TripTrix, Inc.

Email: support@triptrix.co

Website: triptrix.co