← Back to CloudTrips

Privacy Policy

Last updated: May 2026

1. Who we are

CloudTrips is a personal trip planning app available at cloudtrips.uk. It is operated as a private project, not a commercial business. For questions, contact hello@cloudtrips.uk.

2. What data we collect

We collect only what is necessary to run the service:

  • Email address — used for login, password reset, and email verification.
  • Password — stored as a salted hash (PBKDF2). We never store your plain-text password.
  • Trip data — trip names, activities, costs, notes, locations, and distances you enter.
  • Settings — your display preferences (e.g. default currency).
  • IP address — used temporarily for rate limiting login and signup attempts. Not stored in our database.

We do not collect analytics, track behaviour, serve ads, or use cookies beyond what is strictly necessary for authentication.

3. How we use your data

  • To provide and operate the CloudTrips service.
  • To send transactional emails (password reset, email verification). We do not send marketing emails.
  • To notify the site operator of new signups (admin notification only — your data is not shared with third parties).

4. Third-party services

We use the following third-party services to operate the app:

  • Cloudflare (cloudflare.com) — hosting, database, DNS, DDoS protection. Your data is stored in Cloudflare's infrastructure. See Cloudflare's privacy policy.
  • Brevo (brevo.com) — transactional email delivery. Your email address is passed to Brevo solely to send you emails triggered by your actions. See Brevo's privacy policy.
  • Browserless (browserless.io) — server-side PDF rendering. Trip content is passed to Browserless to generate PDFs on demand. See Browserless's privacy policy.

No data is sold to or shared with any other third parties.

5. Data retention

Your data is retained for as long as your account exists. You can delete your account at any time from Settings — this permanently and immediately removes all your data, including trips, activities, and your email address.

6. Your rights

You have the right to:

  • Access your data — all your trip data is visible within the app.
  • Delete your data — via Settings → Delete account, or by emailing hello@cloudtrips.uk.
  • Correct your data — you can edit trip data directly in the app.

For any privacy requests, email hello@cloudtrips.uk.

7. Security

All data is transmitted over HTTPS. Passwords are hashed before storage and never logged. JWTs used for authentication expire after 7 days.

8. Changes to this policy

We may update this policy occasionally. The date at the top of this page reflects the most recent revision. Continued use of the service after changes constitutes acceptance.

CloudTrips · hello@cloudtrips.uk