Skip to main content
Back to Home

Privacy Policy

Last updated: January 20, 2026

This Privacy Policy describes how Teodor Andrei ("we", "us", or "our") collects, uses, and discloses your information in connection with the website tripmu.se and the mobile application (collectively, the "Services"). We are committed to protecting your personal data and respecting your privacy in accordance with applicable laws, including the General Data Protection Regulation (GDPR).

1. Data Controller

The data controller responsible for your personal information is Teodor Andrei, a sole developer based in Bucharest, Romania.
Website: teodorandrei.com
Contact: [email protected]

2. Information We Collect

We collect data to provide and improve our Services.

A. Information You Provide

  • Account Data: When you sign up, we collect your email address and basic profile information via our authentication provider.
  • Trip Data: Information about itineraries, saved locations, and preferences you create within the app.

B. Automated Information

  • Location Data: To provide real-time navigation and location-based recommendations, we access your precise location. This is often processed locally on your device.
  • Usage Data: We collect data on how you interact with our features (e.g., screens visited, buttons clicked) to analyze performance.
  • Technical Data: IP address, device type, operating system version, and unique device identifiers to ensure app stability and security.

3. How We Process Your Data (Processors & Third Parties)

We rely on trusted third-party service providers to support our Services. We have Data Processing Agreements (DPAs) in place where required.

Infrastructure & Hosting

  • Vercel & Cloudflare: Our web infrastructure is hosted on Vercel and secured by Cloudflare. They may process your IP address and request headers for security (DDoS protection) and performance (CDN).

Authentication & Database

  • Google Firebase: We use Firebase for user authentication and to securely store your user profile and trip data in the cloud. Firebase encrypts data at rest and in transit.

Maps & Weather Services

  • Apple MapKit & WeatherKit: We use Apple's services for map rendering and weather forecasting. Location data sent to Apple is anonymized and used solely to return the requested information.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), we process your data based on:

  • Contractual Necessity: To provide the core travel planning features you requested.
  • Legitimate Interests: To improve our app, prevent fraud, and ensure security.
  • Consent: For optional features like marketing newsletters (which you can withdraw at any time).

5. Data Security

We implement robust security measures, including encryption (HTTPS/TLS) for data in transit and encryption at rest for sensitive database records. However, no internet transmission is 100% secure.

6. Your Rights

Depending on your location, you may have the following rights:

  • Access & portability: Request a copy of your data.
  • Correction: Fix inaccurate personal data.
  • Deletion: Request account deletion via "Account & Security" > "Delete Account" in the app settings or by emailing us.
  • Restriction: Limit how we use your data.

7. International Transfers

Your data may be transferred to and processed in countries outside the EEA (e.g., the United States). We ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).

8. Changes to This Policy

We may update this policy periodically. Material changes will be notified via the app or email.

9. Contact Us

For any privacy-related questions or to exercise your rights, please contact:
Teodor Andrei
Email: [email protected]