Privacy Policy
Effective date: June 3, 2026
This policy explains how Roamer collects, uses, and shares information when you use the Roamer website, Android app, iOS app, and related services.
Contact
For privacy questions or account deletion requests, contact support@bearoamer.com.
Information we collect
- Account information, including your name, email address, profile photo, authentication provider, Firebase user ID, and sign-in/session metadata.
- Profile and preference information, including budget tier, travel pace, interests, traveler type, currency, temperature unit, dietary restrictions, notification preferences, household travel-prep details, and onboarding choices.
- Travel document information you choose to enter, currently passport/residency countries and passport expiry date. Roamer does not ask for passport numbers or passport scans.
- Trip content that you create, import, or share, including destinations, dates, itineraries, place names, place IDs, coordinates, reservations, budgets, expenses, packing and checklist items, notes, collaborators, votes, public-share links, and generated travel guidance.
- Gmail information if you connect Gmail, including the Gmail OAuth access token and expiry, travel-reservation email search results, message content needed to parse booking confirmations, and the reservation details you choose to import.
- Location information when you grant permission, including approximate or precise device location, background/live-trip location where enabled, and last-known location used for maps, nearby places, reminders, geofence alerts, running-late nudges, and trip context.
- Device, notification, and usage information, including device/app identifiers, FCM push tokens, notification delivery/open events, app interactions, diagnostic logs, crash reports, IP address, browser/device metadata, cookies, and local storage.
- Support information you choose to send, including your reply email, message, trip ID, screenshots or attachments you provide, and request metadata.
How we use information
- Provide, personalize, and sync trip planning, itinerary, map, reservation, Gmail import, packing, expense, budget, collaboration, notification, live-trip, and AI-assisted travel features.
- Authenticate users, sync data across devices, protect accounts, prevent abuse, and respond to support or account deletion requests.
- Generate and refine user-facing itineraries, travel suggestions, budgets, packing lists, visa guidance, route context, smart nudges, and other trip-specific outputs based on information you provide.
- Deliver push notifications, schedule reminders, recover stale notification tokens, and route notification taps to the relevant trip screen.
- Analyze reliability, performance, product usage, abuse patterns, and crashes so we can operate, secure, debug, and improve Roamer.
Gmail and Google Workspace data
- Gmail connection is optional. Roamer requests Gmail read access only after you choose to connect Gmail and approve Google's OAuth consent screen.
- Roamer uses Gmail data only to search for travel booking confirmations, parse candidate reservations, show them to you, and import the reservations you select.
- Roamer does not sell Gmail data, use Gmail data for advertising, or use Gmail data to train generalized AI models. Gmail message content may be processed by AI services only to provide the user-facing reservation import feature you invoked.
- Roamer's use of information received from Google Workspace APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
- Raw Gmail messages are used to generate candidate reservation results during a search. Roamer stores imported reservation fields if you choose to import them; it does not store raw Gmail message bodies as trip records.
Service providers and sharing
- We do not sell your personal information.
- We share information with service providers as needed to operate Roamer, comply with law, protect rights and safety, or complete actions you request.
- Service providers may include Firebase and Google Cloud for authentication, database storage, hosting, push notifications, analytics, and crash reporting; Google Maps and Places for maps, place search, photos, directions, and location context; Google AI services for AI generation; Open-Meteo for weather; Amadeus for travel data; Frankfurter or other exchange-rate providers for currency conversion; Sentry when error monitoring is configured; Vercel or other hosting providers; and app-store or payment processors if paid features are enabled.
- Optional integrations such as Gmail and Splitwise are used only when you connect or invoke those features. Splitwise OAuth credentials are encrypted at rest and used to show connection status and export trip expenses when you request it.
- If you share a trip or invite collaborators, the trip details you choose to share may be visible to those collaborators.
- If you enable a public share link, anyone with that link can view the sanitized itinerary available at that link until you revoke it.
- If you export expenses to Splitwise, Roamer sends the selected trip and expense information needed to create the Splitwise group and expenses.
- We may disclose information if required by law, to protect rights and safety, or in connection with a merger, acquisition, financing, or sale of assets, with appropriate notice where required.
Maps, places, and location
- Roamer uses Google Maps and Google Places features and content. Location and map requests may be processed by Google under Google's terms and privacy policy.
- Use of Google Maps features and content is subject to the Google Maps/Google Earth Additional Terms of Service and Google Privacy Policy.
- You can deny or revoke device location permission. Maps, nearby suggestions, live-trip alerts, background geofence checks, and running-late reminders may not work without location permission.
Retention and deletion
- We keep information while needed to provide Roamer, meet legal obligations, resolve disputes, prevent abuse, and maintain backups.
- Gmail access tokens are retained until they expire, you disconnect Gmail, or your account is deleted. Splitwise tokens are retained until you disconnect Splitwise or your account is deleted. FCM push tokens are retained while valid and are removed when stale or when you sign out where supported.
- Raw Gmail messages used during reservation search are not stored as trip records. Imported reservations, generated trip content, expenses, logs, and shared-trip records are retained with your account or trip until deleted or no longer needed.
- You can request account deletion from the support page or by emailing us from your account email.
- After deletion, some information may remain for a limited time in backups, logs, security records, or records we are legally required to retain.
Your choices
- You can decline or revoke optional permissions such as location, background location, photos, camera, or notifications, though related features may not work.
- You can disconnect Gmail and Splitwise where supported, change notification preferences, revoke device notification permission, and delete or edit trip, reservation, expense, profile, and travel-document information where the app allows.
- You can contact us to request access, correction, deletion, or other privacy help.
Security
- Roamer uses Firebase Authentication, Firestore security rules, HTTPS, server-side authentication checks, rate limiting, and token cleanup to protect user data.
- No service can be guaranteed perfectly secure. Contact us promptly if you believe your account or data has been accessed without permission.
Children
- Roamer is intended for adults and is not directed to children under 13. If you believe a child has provided personal information, contact us so we can take appropriate action.
Changes
- We may update this policy as Roamer changes. The updated policy will be posted here with a new effective date.