Back to Exploryn
Exploryn

Privacy Policy

Effective date: March 16, 2026 · Last updated: March 16, 2026

At Exploryn, your privacy matters. This policy explains what data we collect, why we collect it, how we use it, and your rights. We've written it in plain English — no dense legalese.

On this page

1. Information We Collect

Account information

When you create an account, we collect your email address and, if you use Google OAuth, your Google profile name and avatar. We do not store your Google password.

Usage data

We collect information about how you use Exploryn — pages visited, features used, locations viewed, saved collections, and road trips created. This helps us understand what's working and improve the product.

Location data

We access your device's location only while the app is in use and only if you explicitly grant permission — for example, to show nearby hidden gems or to power Drive Mode, which surfaces discoveries as you travel. We do not track your location in the background, and we do not store precise GPS coordinates persistently. Location data is used in-session only.

Payment information

All payments are processed by Stripe. We never see or store your credit card number. We only receive a confirmation of your subscription status and payment method type (e.g., "Visa ending in 4242").

Saved places & user-generated content

Saved locations, bookmarked places, collections, notes, road trips, and adventure history you create are stored in your account. This content is yours — see Data Retention & Deletion below.

2. How We Use It

  • Provide and operate the Exploryn service — the globe map, discovery features, and road trip builder.
  • Personalize your experience — AI-generated adventures, location stories, and Drive Mode discovery are powered by your location and preferences.
  • Process subscription payments and manage your account.
  • Send transactional emails — confirmations, receipts, password resets. We do not send marketing spam.
  • Monitor app performance and fix errors using anonymized crash reports.
  • Improve the product through aggregate, anonymized analytics.
  • Comply with legal obligations if required by law.

We do not sell your personal data. We do not use your data to serve third-party ads.

3. Third-Party Services

Exploryn uses a small set of trusted third-party services. Each is carefully chosen and operates under its own privacy policy.

SupabaseDatabase & authentication

Stores your account data, saved locations, collections, and road trips. Hosted on AWS infrastructure.

StripePayment processing

Handles all subscription billing. Stripe is PCI DSS compliant. We never touch raw card data.

VercelHosting & analytics

Hosts the Exploryn web app. Vercel Analytics collects anonymized, aggregated usage metrics — no personal identifiers.

OpenAIAI adventure generation

Powers AI-generated adventures, location stories, and the Drive Mode discovery engine. We send anonymized context (e.g., category preferences, region) — never your name or email.

Expo / AppleCrash reporting

Expo's crash reporting and Apple's native crash diagnostics collect anonymized crash logs to help us fix bugs. No personal data is included in crash reports.

ResendTransactional email

Sends account confirmation, receipt, and password reset emails on our behalf.

GoogleOAuth sign-in

Used only if you choose "Continue with Google". We receive your name, email, and profile picture from Google.

Google MapsMaps & navigation

Powers in-app navigation and map rendering. Google may receive your approximate location to display relevant map tiles and directions.

4. Data Retention & Deletion

We retain your account data for as long as your account is active. If you cancel your subscription, your data remains accessible until the end of your billing period, then your account reverts to the free tier.

Requesting deletion: You can delete your account and all associated data at any time from your account settings, or by emailing privacy@exploryn.us. We will process deletion requests within 30 days. Some data may be retained in anonymized, aggregated form for analytics.

Payment records are retained as required by applicable financial and tax regulations, typically 7 years. These records do not contain full card details.

5. Cookies & Tracking

Exploryn uses minimal cookies. Here's what we use and why:

  • Session cookies:Keep you signed in across page loads. These are essential for the app to function.
  • Preference cookies:Remember settings like your theme or last-viewed region.
  • Analytics:Vercel Analytics uses anonymized, cookieless tracking — no personally identifiable information is linked to analytics events.

We do not use advertising cookies or sell cookie data. You can clear cookies in your browser settings, but this will sign you out of Exploryn.

6. GDPR Rights (EU Users)

If you are in the European Union or European Economic Area, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access:Request a copy of the personal data we hold about you.
  • Right to rectification:Ask us to correct inaccurate data.
  • Right to erasure:Request deletion of your personal data ("right to be forgotten").
  • Right to restriction:Ask us to limit how we process your data.
  • Right to data portability:Receive your data in a machine-readable format.
  • Right to object:Object to processing based on legitimate interests.

To exercise any of these rights, email privacy@exploryn.us. We will respond within 30 days. Our legal basis for processing data is primarily contractual necessity (to provide the service) and your consent (for optional features).

7. CCPA Rights (California Users)

If you are a California resident, the California Consumer Privacy Act (CCPA) gives you specific rights regarding your personal information:

  • Right to know what personal information we collect, use, disclose, and sell.
  • Right to delete personal information we have collected from you.
  • Right to opt out of the sale of personal information. (We do not sell your data.)
  • Right to non-discrimination for exercising your CCPA rights.

To submit a CCPA request, email privacy@exploryn.us with "CCPA Request" in the subject line.

8. Children's Privacy

Exploryn is intended for users who are 13 years of age or older. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at privacy@exploryn.us and we will promptly delete it.

9. Changes to This Policy

We may update this policy as the product evolves. When we make significant changes, we'll update the "Last updated" date at the top of this page and, where appropriate, notify you by email. Continued use of Exploryn after changes constitutes acceptance of the revised policy.

10. Contact Us

Questions, requests, or concerns about this Privacy Policy? We're a small team and we read every email.

Email:privacy@exploryn.us
Exploryn