Trust & safety
Privacy
Last updated: 5 May 2026 · V0 draft, pending legal review before V1 launch
What we collect
- •Account: email, username, hashed password, optional first name and home city. Stored on Supabase (eu-central-1).
- •Trip vault docs (only if you opt in): bookings, insurance, emergency contacts, passport scans. Encrypted at rest; never shared.
- •Beware reports: photos, GPS, and venue links you attach. EXIF metadata is stripped on publication unless you explicitly opt in.
- •Analytics: page views, scroll depth, click events via PostHog (self-hosted). No third-party ad networks.
What we never do
- •Sell your data to anyone, ever.
- •Share your email with brands, advertisers, or affiliates.
- •Publish your name on a Beware report without your explicit opt-in (default is anonymous attribution by city).
- •Share your trip vault contents with other users.
Your rights
You can download all your data, edit your profile, or delete your account at any time from /settings. Email privacy@wanderwomen.in for any data request and we will respond within 30 days (sooner in most cases).
This is a V0 draft, intentionally light on jurisdiction-specific language. A full DPDPA / GDPR / CCPA-compliant policy will replace this page before V1 launch, after legal review.