Privacy Policy

Last updated: March 2, 2026

1. Introduction

Good Work Dojo LLC ("we," "us," or "our") operates TripRiff (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your email address and display name. If you sign in with Google OAuth, we receive your name, email address, and profile picture from Google.

Travel Data

You voluntarily provide travel information including countries visited, US states visited, visit types (visited, lived, want to go), travel dates, notes, and photos.

Usage Data

We automatically collect certain information when you use the Service, including your IP address, browser type, pages visited, and interaction patterns. We use Vercel Analytics for aggregated, privacy-friendly usage analytics.

3. How We Use Your Information

  • To provide and maintain the Service
  • To personalize your experience and generate travel recommendations
  • To calculate travel statistics and award achievements
  • To enable social features such as friend connections and leaderboards
  • To generate your public profile page (if you opt in)
  • To communicate with you about your account or the Service
  • To monitor and analyze usage trends to improve the Service

4. Data Storage and Security

Your data is stored securely using Supabase, which provides encrypted storage and row-level security. Photos are stored in Supabase Storage with authenticated access controls. We use industry-standard security measures to protect your personal information, but no method of transmission or storage is 100% secure.

5. Cookies and Local Storage

We use cookies to maintain your authentication session. We also use local storage to remember your cookie consent preference. We do not use tracking cookies for advertising purposes.

6. Third-Party Services

We use the following third-party services:

  • Google OAuth — for authentication. Google's privacy policy applies to data collected by Google during sign-in.
  • Supabase — for data storage, authentication, and file storage.
  • Vercel — for hosting and privacy-friendly web analytics.

7. Data Sharing

We do not sell your personal information. We may share your information only in the following circumstances:

  • Public profile: If you set your profile to public and create a shareable link, your display name, travel map, and travel statistics will be publicly visible.
  • Friends: If you connect with other users as friends, they can view your travel data and compare maps.
  • Legal requirements: We may disclose information if required by law or in response to valid legal process.

8. Your Rights

You have the right to:

  • Access your personal data stored in the Service
  • Update your account information and travel data at any time
  • Delete your account and all associated data by contacting us
  • Export your travel data by contacting us
  • Opt out of public profile visibility in your profile settings

9. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal obligations.

10. Children's Privacy

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us at tripriff@gmail.com.

Good Work Dojo LLC

Privacy Policy - TripRiff