Privacy Policy

We respect your privacy and are committed to protecting your personal data.

Last updated: October 7, 2025

Quick Navigation

1. Introduction2. Information We Collect3. How We Use Your Data4. How We Share Data5. Data Retention6. Your Privacy Rights (GDPR/CCPA)7. Data Security8. Cookies & Tracking9. Children's Privacy10. International Transfers11. AI & Data Processing12. Changes to Policy13. Contact Us

1. Introduction

At Planora.ai (“we”, “us”, or “our” ), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered travel planning platform.

Please read this Privacy Policy carefully. By accessing or using our Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us:

  • Account Information: Name, email address, password, profile picture
  • Travel Preferences: Budget, travel style, accommodation preferences, interests, destinations
  • Onboarding Data: Birthdate, home location, trip duration preferences, flight preferences
  • Booking Information: Travel dates, passenger details, payment information (processed by third-party providers)
  • Communications: Messages, feedback, support requests

2.2 Information Collected Automatically

When you use our Service, we automatically collect:

  • Usage Data: Pages visited, features used, time spent, click patterns
  • Device Information: IP address, browser type, operating system, device identifiers
  • Location Data: Approximate location based on IP address (with your consent)
  • Cookies and Tracking: See our Cookie Policy for details

2.3 Information from Third Parties

We may receive information from:

  • Authentication Providers: Google, Apple, Facebook (if you sign in via OAuth)
  • Travel Service Providers: Airlines, hotels, activity operators
  • Analytics Services: Google Analytics, Mixpanel

3. How We Use Your Information

We use your information to:

3.1 Provide and Improve Our Service

  • Create and maintain your account
  • Generate personalized travel recommendations using AI
  • Process bookings and transactions
  • Improve our algorithms and user experience
  • Develop new features and services

3.2 Communicate With You

  • Send booking confirmations and travel updates
  • Respond to your questions and support requests
  • Send service announcements and updates
  • Send marketing communications (with your consent)

3.3 Ensure Security and Compliance

  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations and enforce our Terms of Service
  • Conduct audits and investigate violations

4. How We Share Your Information

We do not sell your personal data. We may share your information with:

4.1 Service Providers

Third parties who provide services on our behalf:

  • Authentication: Clerk (user authentication and management)
  • Database: Supabase (data storage)
  • Email: Resend (transactional emails)
  • Payment Processing: Stripe (payment processing)
  • Analytics: Google Analytics, Vercel Analytics
  • Hosting: Vercel (application hosting)

4.2 Travel Service Providers

When you book through our platform, we share necessary information with airlines, hotels, and other travel providers to complete your booking.

4.3 Legal Requirements

We may disclose your information when required to:

  • Comply with legal obligations, court orders, or government requests
  • Enforce our Terms of Service or other agreements
  • Protect our rights, property, or safety, or that of our users
  • Investigate fraud, security issues, or technical problems

5. Data Retention

We retain your personal data for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

  • Account Data: Retained while your account is active
  • Booking History: Retained for 7 years for tax and legal compliance
  • Analytics Data: Aggregated and anonymized after 26 months
  • Marketing Data: Retained until you unsubscribe

6. Your Privacy Rights

We respect your rights under GDPR (EU/UK) and CCPA (California).

Depending on your location, you may have the following rights:

6.1 GDPR Rights (EU/UK)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (“right to be forgotten”)
  • Restriction: Limit how we process your data
  • Data Portability: Receive your data in a structured format
  • Object: Object to processing of your data
  • Withdraw Consent: Withdraw consent for data processing

6.2 CCPA Rights (California)

  • Know: Request disclosure of personal data collected
  • Delete: Request deletion of your personal data
  • Opt-Out: Opt-out of sale of personal data (we don't sell data)
  • Non-Discrimination: Equal service regardless of privacy choices

6.3 How to Exercise Your Rights

To exercise any of these rights, contact us at:

Email: privacy@getplanora.app

We will respond to your request within 30 days. We may need to verify your identity before processing your request.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption: Data encrypted in transit (TLS/SSL) and at rest
  • Authentication: Secure authentication via Clerk with MFA support
  • Access Controls: Role-based access to personal data
  • Regular Audits: Security assessments and penetration testing
  • Incident Response: Procedures for data breach notification

8. Cookies and Tracking

We use cookies and similar tracking technologies. For detailed information about the cookies we use and your choices, please see our Cookie Policy.

You can manage your cookie preferences through our cookie consent banner or your browser settings.

9. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal data from children under 18. If you believe we have collected data from a child, please contact us immediately so we can delete it.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

We ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses) to protect your data during international transfers.

11. AI & Data Processing

How we use AI to personalize your travel experience

11.1 AI-Powered Recommendations

Planora.ai uses artificial intelligence and machine learning to provide personalized travel recommendations. Here's how it works:

  • Preference Analysis: AI analyzes your travel preferences, budget, and past behavior to understand your travel style
  • Real-Time Processing: Our AI processes millions of flight, hotel, and activity options in real-time
  • Personalization Engine: Machine learning algorithms match options to your unique profile
  • Continuous Learning: The AI improves recommendations based on your feedback and interactions

11.2 Data Used for AI Training

To improve our AI models, we may use:

  • Aggregated Data: Anonymous, aggregated usage patterns (no personal identifiers)
  • Interaction Data: How users interact with recommendations (clicks, bookings, preferences)
  • Feedback Data: Ratings and feedback on travel suggestions

Important: We NEVER use your personal information to train AI models that are shared with other users. Your individual travel plans, bookings, and personal data remain private and are only used to personalize YOUR experience.

11.3 AI Data Accuracy

While our AI strives for accuracy, we cannot guarantee that all AI-generated recommendations are perfect or suitable for your needs. We recommend:

  • Verifying important details (prices, dates, policies) before booking
  • Reading reviews and checking provider websites directly
  • Understanding that AI recommendations are suggestions, not guarantees

11.4 Third-Party AI Services

We may use third-party AI services (e.g., OpenAI, Anthropic) to power our recommendations. These providers:

  • Process data according to their own privacy policies
  • Do not retain your data beyond what's necessary for processing
  • Comply with GDPR and data protection regulations

We carefully vet all AI service providers to ensure they meet our privacy and security standards.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the “Last updated” date
  • Sending you an email notification (for significant changes)

Your continued use of the Service after changes become effective constitutes your acceptance of the revised Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Data Protection Officer

Planora.ai

Email: privacy@getplanora.app

Website: https://getplanora.app

This Privacy Policy is effective as of the date stated at the top of this page. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.