Privacy Policy

01Information We Collect

Providing personal information to Tripilidoo is voluntary and not required by law. However, some information is necessary to use core features of the Service. You are not legally obligated to provide it, but without it certain features may not function.

Information you provide

• Account data: name, email address, and profile photo when you register.
• Trip data: destinations, travel dates, group members, preferences, and itinerary choices.
• Swipe preferences: your likes, dislikes, and must-have selections for attractions and hotels.
• Photos and content: images you upload to your trips.
• Communications: messages you send to our AI assistant or to our support team.

Information collected automatically

• Device data: device type, operating system, app version, and device identifiers.
• Usage data: features used, time spent, and interactions within the Service. We use Google Analytics to help collect and analyze this information (see Section 5).
• Location data: precise or approximate location, only with your permission (see Section 7).
• Cookies and similar technologies: as described in our Cookie Policy.

02How We Use Information

We use your information to:

• Provide, operate, and maintain the Service, including AI-powered trip planning and recommendations.
• Generate personalized hotel, flight, and attraction suggestions based on your preferences.
• Enable group planning, voting, and live location features.
• Process subscriptions and manage your account.
• Communicate with you about updates, offers, and support.
• Improve and develop new features, and analyze usage trends.
• Detect, prevent, and address fraud, abuse, or security issues.
• Comply with our legal obligations under Israeli law and other applicable laws.

03Legal Bases for Processing

We process your personal information on the following bases:

• Your consent: which you provide when you register, enable optional features such as location, or agree to receive marketing communications. You may withdraw consent at any time.
• Performance of a contract: to provide the Service you have requested.
• Legitimate interests: to improve and secure our Service, consistent with your rights.
• Legal obligations: to comply with applicable laws, including the Israeli Protection of Privacy Law, 5741-1981.

If you are located in the European Economic Area or the United Kingdom, the GDPR also applies to our processing of your data, and the same legal bases above are recognized under that regulation.

04Consent & Direct Mailing

In accordance with the Israeli Protection of Privacy Law and Section 30A of the Communications Law (Telecommunications and Broadcasting), 5742-1982 (the "Spam Law"), we will only send you marketing or promotional messages by email or other electronic means if you have given your consent.

You may withdraw your consent and opt out of receiving such messages at any time, free of charge, by using the unsubscribe link in any message or by contacting us at privacy@tripilidoo.com. We will act on opt-out requests promptly.

05How We Share Information

We do not sell your personal information. We share data only with:

• Service providers: cloud hosting, database, authentication, and infrastructure providers who process data on our behalf under appropriate confidentiality and data-protection obligations.
• Analytics providers: we use Google Analytics (provided by Google Ireland Limited / Google LLC) to understand how the Service is used. Google Analytics collects usage information such as pages and features visited and approximate location derived from your IP address. We have enabled IP anonymization where available. This data is collected only with your consent, and is processed by Google under its own privacy policy. You can learn more or opt out as described in our Cookie Policy.
• AI providers: to power our recommendation and assistant features. Your relevant inputs are processed to generate responses.
• Travel partners: hotel, flight, and activity booking partners, as described in Section 6.
• Group members: trip information you choose to share with your travel group.
• Legal and safety: when required by Israeli law, a competent authority, or court order, or to protect rights, property, or safety.
• Business transfers: in connection with a merger, acquisition, or sale of assets, subject to this Policy.

06Travel Partners & Affiliates

Tripilidoo participates in affiliate programs with third-party travel providers, including Booking.com and other hotel, flight, and activity partners. When you click a booking link or complete a booking through our Service:

• You may be directed to the partner's website or platform, which is governed by the partner's own privacy policy and terms.
• We may receive a commission for qualifying bookings, at no additional cost to you.
• We may receive confirmation that a booking occurred for commission-tracking purposes, but we do not receive your full payment card details.

We encourage you to review the privacy policy of any travel partner before completing a booking.

07Location Data

With your explicit permission, we collect location data to power features such as nearby discovery (for example, finding good food near you), navigation guidance, and live location sharing among trip group members.

You can enable or disable location access at any time through your device settings. Live location sharing within a group is opt-in and can be turned off at any time.

08Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. We may retain certain information where necessary to comply with legal obligations under Israeli law, resolve disputes, or enforce our agreements. When you delete your account, we will delete or anonymize your personal data within 90 days, except where a longer retention period is required by law.

09Your Rights

Under the Israeli Protection of Privacy Law, 5741-1981, you have the right to:

• Inspect the personal information we hold about you (Section 13 of the Law).
• Request correction or deletion of information that is inaccurate, incomplete, unclear, or out of date (Section 14 of the Law).
• Withdraw consent to processing or to marketing communications at any time.
• Object to certain uses of your information.

If you are in the EEA or UK, you also have rights under the GDPR, including access, rectification, erasure, restriction, portability, and the right to object. To exercise any of these rights, contact us at privacy@tripilidoo.com. If you believe your rights have been violated, you may also contact the Israeli Privacy Protection Authority.

10Data Security

We implement appropriate technical and organizational measures to protect your information, consistent with the Protection of Privacy Regulations (Data Security), 5777-2017. These include encryption in transit, access controls, and secure infrastructure. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11Children's Privacy

The Service is not intended for children under the age of 16. We do not knowingly collect personal information from children under 16 without verifiable parental consent. If you believe a child has provided us with personal information, please contact us and we will delete it.

12International Data Transfers

Your information may be processed and stored on servers located outside of Israel, including in the United States and the European Union. Where we transfer data internationally, we do so in accordance with the Protection of Privacy Regulations (Transfer of Data to Databases Abroad), 5761-2001, and apply appropriate safeguards to ensure your data receives an adequate level of protection.

13Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated Policy and revising the "Last updated" date. Your continued use of the Service after changes take effect constitutes acceptance of the updated Policy.

14Contact Us

For any privacy questions, or to exercise your rights, please contact us using the details below.