Privacy Policy

Effective 2026-04-18

This policy explains what personal information JauntFlow collects, how we use it, who we share it with, and the rights you have under the Australian Privacy Act 1988 and the EU/UK GDPR where applicable.

1. Who we are

JauntFlow is operated by Traceflow (ABN 50 828 306 174), based in Australia. For privacy matters, contact [email protected].

2. What we collect

When you use JauntFlow we collect:

  • Account data — name, email address, password (stored bcrypt-hashed, never in plaintext).
  • Persona data — the preferences you enter during onboarding: interests, travel style, budget, pace, dietary notes, home currency, home city.
  • Trip data — cities, dates, accommodations, itinerary stops, notes, day-level comments, reactions, and blog text you or your trip members create.
  • Photos you upload — resized to WebP format; EXIF metadata (including GPS coordinates, camera model, and timestamps) is stripped server-side before storage. The original file on your phone is not uploaded at full resolution or with EXIF intact.
  • Optional location data — when you use the “What's Near Me Now” feature, your browser shares your current coordinates with the server to match nearby stops. These coordinates are used for the response only and are not persisted.
  • Payment identifiers — Stripe customer ID and subscription status. We never see or store your card number or CVC.
  • Technical data — IP address, browser user-agent, request timestamps, error stack traces, and page views (when analytics are enabled).

3. How we use it

We process your data to:

  • authenticate you and keep your session secure;
  • generate personalised itineraries and daily blog posts via AI language models;
  • serve photos and trip data back to you and your invited trip members;
  • display your trip publicly when you enable the “Share publicly” toggle;
  • process Pro subscription payments via Stripe;
  • send password reset links and (where you opt in) trip reminders;
  • detect abuse, debug errors, and improve reliability.

Legal basis: performance of contract (the services you signed up for), consent (for optional features like geolocation), and legitimate interests (security, fraud prevention, service improvement).

4. Who we share it with

JauntFlow uses the following third-party processors:

  • Railway (USA / AWS) — application hosting and the primary PostgreSQL database.
  • Cloudflare R2 (global) — photo storage and CDN delivery.
  • Stripe (USA / EU) — subscription billing. Payment card data is collected directly by Stripe and never reaches our servers.
  • LiteLLM proxy on our own VPS (Germany) — routes AI requests to OpenAI and/or Anthropic large language models. The relevant subset of your trip inputs (cities, dates, persona preferences, day notes, caption text) is sent to the chosen model to generate itineraries and blogs. Model providers may retain prompts for abuse monitoring per their own policies.
  • Awin, Booking.com, GetYourGuide — affiliate tracking when public trip readers click outbound booking links. These partners set their own cookies on their own domains; JauntFlow receives aggregate commission reports only.
  • Plausible Analytics (EU) — privacy-friendly page-view counts. Cookie-less; no personal identifiers collected.
  • Sentry (USA / EU) — error and performance tracking. Captures stack traces and request metadata when something breaks.
  • Our internal monitoring — a Telegram-based watchdog run from our VPS alerts us when the app errors or goes down. No user content is forwarded, only error summaries.

We do not sell your data. We only disclose it to law enforcement if compelled by a valid subpoena or court order.

5. Where your data lives

Application servers and primary database are hosted in the US (Railway Asia-Southeast region). Photos live in Cloudflare R2 (distributed). AI inference runs from our VPS in Germany. By using JauntFlow you consent to this cross-border processing.

6. How long we keep it

  • Active accounts — for as long as you use the service.
  • Deleted accounts — all trip data, photos, blogs, and personal profile fields are erased immediately and irreversibly. Deletion in-app is rolling out shortly; in the meantime, email [email protected] and we'll process within 7 days.
  • Backups — encrypted database backups may retain deleted data for up to 30 days before rolling off.
  • Invoices and tax records — retained for 7 years to comply with Australian tax law, even after account deletion.

7. Your rights

Under Australian Privacy Principles and (where applicable) GDPR, you have the right to:

  • ask what we hold about you;
  • correct inaccurate data;
  • request a machine-readable export of your data;
  • request deletion of your data;
  • withdraw consent for optional processing;
  • lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or your local EU/UK supervisory authority.

To exercise any of these, email [email protected]. We'll respond within 30 days.

8. Children

JauntFlow is not directed at children under 16. We do not knowingly collect personal information from children under 16 without parental or guardian consent. If you believe we have such data, contact us and we'll delete it.

9. Security

Passwords are hashed with bcrypt. Session tokens use HMAC-SHA256 with timing-safe verification. All production traffic runs over HTTPS. The database enforces tenant isolation with row-level security enabled. No system is perfectly secure; we encourage you to use a strong unique password and enable two-factor where available (rolling out).

10. Changes to this policy

We may update this policy. Material changes will be notified via email or an in-app banner at least 14 days before they take effect. The “Effective” date at the top will always reflect the latest version.

11. Cookies

See our Cookie Policy for specifics on what we store in your browser.

← Back to JauntFlow