Odynaut — Privacy Policy
Odynaut is a trip-planning app available as a website and as a native iOS app. This policy explains what data Odynaut collects, why, and how you can delete it. The same policy applies to the web app and the mobile app, which share one account.
What we collect
- Account info — your email address, and (if you sign in with Apple or Google) the identifier those providers return. We do not see or store your Apple / Google password.
- Trip content you create — trip names, dates, cards (flights, hotels, activities, notes), saved places, plan drafts, and points-balance entries.
- Notes you write for the AI co-planner and trip-ideas tools — sent to the AI model so it can answer you. Not used for training.
- Push-notification token — if you allow notifications, we store the device token issued by Apple Push or the equivalent web push endpoint so we can send you alerts you have asked for (e.g. award-flight availability).
- Approximate location — only when you use the “Near me” feature, and only while you are using it. Location is sent to find nearby venues and is not stored.
- Payment information — if you subscribe to a paid plan, our payment processor (Stripe) collects and processes your payment details directly. We never see or store your full card number; we store only a Stripe customer / subscription identifier and your plan status so we know which features to unlock.
What we do not collect
- We do not show ads or do cross-site / behavioral ad tracking.
- We do not sell your data.
- We do not access your contacts, photos, calendar, or microphone.
- We never see or store your full payment-card number — that stays with our payment processor (see “Payments & analytics”).
Where your data lives
Your account and trip content are stored on Supabase (PostgreSQL), in the US region. Row-level security limits each row to the user that owns it. The connection between your device and Supabase uses HTTPS.
Third-party services we use
- Supabase — authentication, database, push delivery.
- Stripe — processes subscription payments. Your card details go directly to Stripe; we receive only your plan status and identifiers, never your full card number.
- Plausible Analytics (if enabled) — a privacy-friendly, cookieless analytics service that counts aggregate events (e.g. how many people open the pricing screen) with no cookies and no personal data.
- Anthropic — powers the AI co-planner and trip-ideas features. Requests you send are processed by Anthropic to generate a response and are not used to train models.
- Google Places — only used when you use “Near me” or autocomplete an address; we forward your search to Google and return the result.
- Apple Push Notification service and Web Push (VAPID) — delivery channels for the alerts you opt into.
- Sign in with Apple / Sign in with Google — optional sign-in providers. They tell us only the identifier and (if you choose) your email address.
Payments & analytics
When you buy a paid plan, payment is handled by Stripe. Your card details are entered on Stripe's secure checkout and go directly to Stripe — Odynaut never receives or stores your full card number. We keep only the information needed to manage your subscription (a Stripe customer / subscription id, your plan, and its status).
To understand how Odynaut is used and improve it, we may use Plausible Analytics, a privacy-friendly service that is cookieless and collects only aggregate, anonymous usage counts (for example, how many people viewed the pricing screen). It does not use cookies, does not collect personal data, and does not track you across other websites.
How to delete your account
You can permanently delete your account and everything in it directly from inside Odynaut:
- Mobile: open the More tab → tap Delete account. You will be asked to confirm twice.
- Web: open the Account menu → Delete account.
Deletion is immediate and removes your trips, saved places, profile, push tokens, and the account itself. There is no recovery — deleted data cannot be restored. If you prefer, you can also email us at the address below and we will delete it for you.
How long we keep your data
Account data is kept for as long as your account exists. When you delete the account (in-app or by email request), the data is deleted at the same time. Operational logs that mention your user id are kept for up to 30 days for debugging and then expire.
Children
Odynaut is not directed at children under 13 and we do not knowingly collect data from anyone under 13.
Contact
If you have any questions, want to request your data, or want us to delete your account on your behalf, email getodynaut@gmail.com.
Changes
If we update this policy in a material way we will update the “Last updated” date at the top, and (for active accounts) we will surface a notice in the app. The current version always lives at this URL.
← Back to Odynaut