Privacy policy

When you create an account, we collect your email address or phone number (whichever you use to sign in), your name, and an optional profile photo. Authentication is handled by Clerk, our identity provider.

When you plan a trip, we store the content you create: trip documents, chat messages, itineraries, map pins, action items, and any files you upload. If you connect Google Calendar or Gmail, we store encrypted OAuth tokens to access those services on your behalf.

When you add participants by phone number, we create an account for them using the phone number and name you provide, so they can interact with the trip via WhatsApp without needing to visit a website.

Your data is used to provide the trip planning service: powering the AI assistant, syncing documents between collaborators, sending notifications via your preferred channel (WhatsApp, Telegram, or email), and displaying your trips and itineraries.

We do not sell your personal data. We do not use your trip content to train AI models. Your conversations with the AI assistant are processed by Anthropic (Claude) and OpenAI, subject to their respective data processing agreements, which prohibit training on API inputs.

We use the following third-party services to operate Osoto:

• Clerk — authentication and user management
• Convex — database and backend infrastructure
• Anthropic (Claude) — AI trip planning assistant
• OpenAI — supplementary AI processing
• PostHog — product analytics (anonymized usage patterns)
• Resend — transactional email delivery
• Meta (WhatsApp Business API) — messaging for phone-based participants
• Telegram Bot API — messaging for Telegram-based participants
• Mapbox — map rendering and geocoding
• Google APIs — Calendar and Gmail integrations (when connected by you)
• Vercel — web application hosting

Each service processes only the data necessary for its function. Google OAuth tokens are encrypted with AES-256-GCM before storage. Traveler profile fields containing personally identifiable information are encrypted at rest.

Your data is retained for as long as your account is active. If you delete your account, we delete your personal data within 30 days. Trip content shared with other participants may be retained in their copy of the trip.

Google OAuth tokens are automatically revoked when you disconnect an integration. Encrypted tokens are deleted from our database at the same time.

You can access, update, or delete your personal data at any time through your account settings. You can disconnect third-party integrations (Google Calendar, Gmail) from the trip settings page. You can request a full export of your data by contacting us.

If you are in the European Economic Area, you have additional rights under GDPR including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority.

For privacy-related questions or requests, email privacy@osoto.app.