Privacy Policy

Effective Date: March 22nd 2026 | Last Updated: March 22nd 2026

The Short Version

We think privacy policies should be readable. Here's what matters, in plain English:

We never sell your personal data. Not to advertisers, data brokers, insurance companies, or anyone else. This is permanent.

We do collect your location during active trips. This is how boundary alerts, safety warnings, and check-ins work. Your location is shared with your trip group according to your role. It is never shared outside your trip, and it is never sold.

When your trip ends, your personal data goes away. Real-time location pings are deleted within 7 days. Check-in location records are anonymized within 90 days. Photos are deleted after your chosen retention period. We’ll warn you before anything is removed.

We share data with service providers to run the app, not for profit. Our hosting provider and email service help operate Roamii. They can't use your data for their own purposes.

We use aggregated, non-personal data to improve the app. Things like which features get used most, how trip planning patterns vary by destination, or "70% of groups in Barcelona visited the Gothic Quarter." This data has no names, no user IDs, and cannot identify you.

We never process payments. Roamii links you to external services like Apple Cash or Venmo. Your financial data never touches our servers.

You can delete your account and data at any time. In the app, in Settings. No emails, no hoops.

1. Who We Are

Roamii is a group travel coordination app operated by Roamii L.L.C., a Texas limited liability company ("Roamii," "we," "our," or "us"). We provide mobile and web-based tools for group trip planning, coordination, photo sharing, expense splitting, and safety check-ins.

Email: support@roamii.app

Mail: 5900 Balcones Drive STE 100 Austin Texas 78731

2. Who This Policy Applies To

• Travelers who create accounts and use the Roamii mobile app — whether on friend trips, supervised trips, or organization trips

• Trip creators, chaperones, Trip Support, and Trip Leadership who manage trips

• Parents or guardians who access the parent photo portal

• Visitors to roamii.app

Age requirement: You must be 18 or older to create a Roamii account. We enforce this through date of birth verification at signup. We do not knowingly collect personal information from anyone under 18. If we learn we have, we will delete it promptly.

We are working to make Roamii available to younger users in the future. When we are confident we can do so safely, we will update this policy and announce the change.

When you create your account, we record the date and time you agreed to this Privacy Policy and which version you agreed to. If we update this policy, we will ask for your acknowledgment of the updated version. This allows us to demonstrate that your consent was informed and current, as required by applicable law.

3. Information We Collect

3.1 Information You Provide

Data Type When Collected Why Full name Account creation Identify you to trip members Email address Account creation Authentication, notifications, recovery Phone number Account creation Verification, optional notifications Date of birth Account creation Age verification (18+ requirement). This is the only age-related data we collect. Password Account creation Security (stored as hash, never plaintext) Profile photo Optional, in-app Display to trip members Trip content During trip use Expense descriptions, poll responses, itinerary notes Receipt photos When logging expenses Expense documentation for your trip group.

Note: By providing your phone number during account creation, you consent to receive SMS messages from Roamii, including one-time verification codes.

3.2 Information Collected Through App Features

Data Type When Collected Why Check-in photos When you check in Safety confirmation and trip memories Location data (precise) Continuously during an active trip, including in the background Boundary alerts, check-in verification, rogue detection, departure warnings, safety features Contacts (transient access) Only when you invite someone to a trip To help you find and invite friends. We access your contacts for this action only and do not store them. Device information App usage Troubleshooting, crash reporting, app performance

About background location: Roamii collects your location in the background while you are on an active trip. This is how we power safety features like boundary alerts ("you're leaving the group area"), rogue detection at night, departure warnings when a friend leaves the group, and activity zone monitoring. Without background location, these features cannot work.

What this means: Your device shares its location with Roamii's servers while your trip is active, even when the app is not in the foreground. This stops when the trip ends. Your location is only visible to members of your trip according to your role (see Section 6). It is never shared with anyone outside your trip, and it is never sold.

You can disable background location at any time in your device settings. However, doing so will disable safety features like boundary alerts and rogue detection. On organization and supervised trips, your Trip Leadership may require background location to be enabled as a condition of participation. On friend trips, location sharing is always optional and controlled by each individual.

3.3 Information Collected Automatically

When you use Roamii, we automatically collect limited technical data: device type, OS version, app version, IP address, and general usage analytics (which features are used and how often). This helps us maintain and improve the app.

3.4 Information We Do NOT Collect or Store

• Your contacts (we access them transiently when you invite someone, but never save them)

• Browsing history or data from other apps on your device

• Biometric data — biometric login is handled entirely by your device OS

• Financial or payment information — Roamii links to external payment apps (Apple Cash, Venmo, etc.) and never processes or stores payment data

4. How We Use Your Information

• Providing the service: Account creation, trip participation, check-ins, photo sharing, expense tracking, notifications.

• Safety features: Processing check-in photos, evaluating your location against trip boundaries, alerting trip leaders to potential safety concerns, detecting rogue status, sending departure/boundary warnings.

• Communications: Transactional emails (verification, password resets, trip invitations, check-in reminders) and optional trip notifications.

• Improvement: Analyzing aggregated, non-personal usage patterns to understand how people use the app, what features they enjoy, and where we can improve. This data is never tied to you personally and is never shared outside our team.

• Research: Using anonymized, aggregate data (with all personal identifiers permanently removed) to understand travel patterns and improve the platform.

• Legal compliance: Responding to valid legal processes and protecting our users.

• Product intelligence: Using anonymized, aggregate trip data to improve features like trip recommendations, budget suggestions, and itinerary optimization. This may include training machine learning models on patterns across trips. These models are trained on data that cannot identify any individual.

We do not use your information for advertising, profiling, automated decision-making, or any purpose not listed above.

5. What We Will Never Do With Your Data

We will never sell your personal data.

This means we will never provide your name, email, phone number, photos, trip information, or any data that identifies you to any third party in exchange for money or other consideration.

This commitment is permanent. It applies regardless of Roamii's size, revenue, or ownership. If Roamii is acquired, this commitment transfers to the acquiring entity.

Additionally, we will never:

• Share your personal location data with advertisers, data brokers, or insurance companies

• Use your photos for advertising or marketing without your explicit, separate consent

• Sell or share your personal data with any third party for their marketing purposes

• Build behavioral profiles about you for sale or advertising

• Include third-party advertising or tracking SDKs in the Roamii app

6. Who Sees Your Data

6.1 Your Trip Group — Location Visibility by Role

Who can see your location depends on the type of trip and your role within it:

Your Role What Others See About You Traveler (friend trip) Other travelers see your check-in status (Safe, Roaming, etc.) and last check-in neighborhood. Friends can see your location on the map if location sharing is enabled. Location sharing on friend trips is always optional. Traveler (org/supervised trip) Other travelers see your last check-in neighborhood only (not exact location). Chaperones, Trip Leadership, Trip Support, and org admins can see your exact check-in location, previous locations, and current location on a map. This is required for safety features to function. Chaperone / Trip Leadership / Trip Support Can see exact location, location history, and current position of all travelers on the trip map. This enables boundary monitoring, rogue detection, and safety alerts.

On organization and supervised trips, background location sharing may be required by your trip's organization or chaperone as a condition of participation. Roamii itself does not require this — the requirement comes from your trip's leadership. On friend trips, location sharing is optional and controlled by each individual.

6.2 Check-In Photos — Who Sees Them

When you check in, you choose the visibility of your photo:

• Share with all travelers: Your check-in photo is visible to everyone in your trip group.

• Keep private: Your check-in photo is visible only to you.

Exception for org and supervised trips: Even if you mark a check-in photo as private, it is still visible to chaperones, Trip Leadership, Trip Support, and organization admins. This is a safety feature — trip leadership must be able to confirm your well-being from check-in photos. Marking a photo "private" on these trip types hides it from other travelers, not from leadership.

Photo approval queue: On organization and supervised trips, check-in photos go through an approval queue before reaching the group feed. Trip Leadership reviews each photo to protect the group from inappropriate content, photos taken while someone is visibly intoxicated or in a compromising situation, images that could be used for bullying or embarrassment, and anything sexual or depicting illegal activity. If a photo is rejected, it stays visible to you (it's still your memory) — it just doesn't go to the group feed.

6.3 Parent/Guardian Photo Portal

If you choose to invite a parent or guardian, they can see approved photos in which you are tagged. That's it. They cannot see your location, check-in status, itinerary, expenses, or any other trip data. You initiate this access and you can revoke it at any time.

No other trip member's photos are visible to your parent unless that member also granted access.

6.4 Service Providers

We work with a small number of companies that help us run Roamii. They process data on our behalf, under contract, and cannot use it for their own purposes.

Cloud hosting & database (Supabase) — stores and serves all app data. Supabase sees all app data, encrypted at rest and in transit.

Maps & location services (Google Maps Platform) — provides map display, geocoding, and location features. Google Maps receives location coordinates during active trips and map tile requests.

Email delivery — sends verification codes and trip notifications. Our email provider sees your email address and name.

Crash reporting & analytics — monitors app stability. Receives device info and anonymized usage data (no personally identifiable information).

App stores (Apple, Google) — distribute the app. Receive account info as required by their store policies.

Note about payments: Roamii does not process payments. When you settle expenses, the app links you to external payment services (Apple Cash, Venmo, Zelle, etc.) which open outside of Roamii. Your financial information never touches our servers. The privacy policies of those external services govern your use of them.

We do not share personal data with any service provider for their own commercial benefit.

6.5 Disclosures Required by Law or to Prevent Harm

We may disclose your data in the following limited circumstances:

• Legal process: If required by a valid court order, subpoena, or other legal process. We will attempt to notify you unless prohibited by law.

• Imminent harm: If we believe in good faith that disclosure is necessary to prevent imminent physical harm to a person. In Roamii's context, this means situations where a traveler's safety may be at immediate risk — for example, a traveler who has not checked in and cannot be reached during an active trip, a traveler whose location indicates they may be in danger (such as an unexpected border crossing or location in a known high-risk area), or a situation where a chaperone or Trip Leadership has reason to believe a traveler is experiencing a medical or safety emergency. Disclosure in these cases would be limited to the minimum information necessary (such as last known location) and directed only to emergency services, Trip Leadership, or emergency contacts.

6.6 Business Transfers

If Roamii is acquired or merges with another company, your data may transfer as part of that transaction. This privacy policy — including the commitment to never sell personal data — will continue to apply. We will notify you before your data becomes subject to a different policy.

6.7 Anonymized, Aggregate Data

We create and use anonymized, aggregate data that cannot identify any individual. For example: "70% of groups visiting Barcelona chose evening free time in the Gothic Quarter" or "average daily spend for travelers in Rome was $52."

How we create this data: when a trip ends, we permanently strip all user identifiers (names, user IDs, email addresses, device identifiers) from location and trip data. The remaining anonymous coordinates and activity patterns cannot be traced back to any individual. This anonymization is irreversible.

We use this data internally to improve the app — understanding which features get used most, how trip planning patterns vary by destination, and where we can make the experience better. Because this data cannot identify any individual, it is not considered personal information under GDPR, CCPA, or other privacy laws. In the future, we may share or license anonymized, aggregate data to third parties such as tourism organizations, travel industry partners, or research institutions. If and when we do, we will update this section to reflect that change. We will never reverse the anonymization process or attempt to re-identify individuals from aggregate data.

7. How We Protect Your Data

• All data encrypted in transit (TLS/HTTPS) and at rest

• Photos stored in private cloud storage, accessed only through authenticated, time-limited signed URLs (15-minute expiry)

• Passwords hashed and salted — we cannot read your password

• Parent portal uses email-verified sessions with 30-day expiry

• Organization admin accounts require two-factor authentication

• Row-level security policies ensure users can only access data they are authorized to see

No system is perfectly secure. While we implement industry-standard protections, we cannot guarantee absolute security. If we become aware of a breach affecting your personal information, we will notify you in accordance with applicable law.

8. How Long We Keep Your Data — And How We Delete It

Roamii is designed around deletion, not retention. We do not preserve your trip data indefinitely. When your trip ends and your retention period expires, your data is gone. Trip templates can be saved for reuse (structure only, no personal data or photos).

Account information (name, email, phone, date of birth) is kept until you delete your account. You can delete your account in Settings at any time, and deletion is processed within 30 days.

Check-in photos are deleted after your retention period ends. For free trips, this is 7 days post-trip (with one free extension available). For paid tiers, photos are retained for 30 days post-trip. You will be warned before deletion.

Real-time location pings — the precise GPS coordinates used for live tracking during your trip — are permanently anonymized 7 days after your trip ends.

Check-in location records are anonymized 90 days after your trip ends. All user identifiers are permanently stripped. Generalized location data (neighborhood-level, not precise coordinates) may be retained for aggregate analysis only.

Flagged safety incidents are retained for a minimum of 1 year for liability and dispute resolution purposes. They are deleted after this retention period unless we are legally required to retain them longer.

Photo location metadata is deleted along with your photos, following your photo retention period (7 or 30 days post-trip).

Trip content (expenses, polls, itinerary notes) is deleted when your trip ends. You may save a trip template, which preserves structure only — no personal data or photos.

Parent portal sessions expire after 30 days or when you revoke access, whichever comes first.

Device and usage analytics are aggregated and anonymized within 90 days. Individual-level data is deleted.

After account deletion, your data is deleted within 30 days. Some data may persist in encrypted backups for up to 90 days before being fully purged.

We will always warn you before deleting photos or trip data. You will receive notifications as your retention period approaches, giving you time to download anything you want to keep.

Deletion requests during active trips. If you request deletion of your account or personal data while you are on an active supervised or organization trip, we may defer processing your request until the trip ends. This is based on our legitimate interest in maintaining the safety and coordination of all travelers on the trip — removing your data mid-trip could compromise safety features like check-ins, boundary alerts, and rogue detection that protect you and others in your group. We will acknowledge your request promptly, explain the reason for the deferral, and process the deletion within 30 days of the trip ending. This deferral does not apply to friend trips — on friend trips, deletion requests are processed immediately regardless of trip status.

9. Your Rights

Depending on where you live, you have some or all of these rights:

Access: Request a copy of your personal data.

Correction: Fix inaccurate or incomplete data.

Deletion: Delete your account and data directly in the app (Settings). Processed within 30 days.

Portability: Request a machine-readable copy of your data.

Restriction: Limit how we process your data.

Objection: Object to specific processing.

Withdraw consent: Where processing is based on consent (such as location sharing on friend trips or marketing communications), you can withdraw consent at any time through the app or your device settings. Withdrawing consent does not affect the lawfulness of processing that occurred before withdrawal. If you withdraw consent for location sharing on a friend trip, location processing stops immediately and your location will no longer be visible to your trip group.

Contact legal@roamii.app to exercise any of these rights. We will respond within 30 days. We will never discriminate against you for exercising your rights.

10. Location Data — The Full Picture

Location data is sensitive. We want to be completely transparent about how Roamii handles it.

• When we collect it: Continuously while you are on an active trip, including in the background when the app is not in the foreground. Collection begins when the trip becomes active and stops when the trip ends.

• Why we need background location: Boundary alerts ("you're leaving the safe zone"), rogue detection at night ("this traveler has left their accommodation"), departure warnings ("a friend has left the group area"), and activity zone monitoring all require knowing where you are even when you're not actively using the app. Without this, these safety features cannot function.

• Who sees your location: This depends on your trip type and role. See Section 6.1 for the full breakdown. In summary: on friend trips, sharing is optional and peer-to-peer. On org/supervised trips, chaperones, Trip Leadership, and Trip Support see your exact location, previous locations, and current position on a map.

• Who does NOT see your location: Parents/guardians in the photo portal. Roamii staff (we do not monitor individual locations). Any third party outside your trip. Advertisers or data brokers. Ever.

• When we anonymize it: At trip end, all user identifiers are permanently stripped from location data. The remaining anonymous coordinates may be used for aggregate research and internal improvement. This anonymization is irreversible — there is no way to reconnect the data to you.

• Can I disable it? Yes, in your device settings. However, this will disable safety features. On org/supervised trips, your organization or chaperone may require background location as a condition of participation. On friend trips, it is always optional.

• When we request permission: We ask for location permission in context — when you join a trip and need the feature — not on first app launch. We explain why before the system dialog appears.

11. Photos — The Full Picture

• Check-in photos: You choose whether to share your check-in photo with all travelers or keep it private. On organization and supervised trips, photos marked "private" are hidden from other travelers but remain visible to chaperones, Trip Leadership, and Trip Support for safety verification.

• Photo approval queue: On organization and supervised trips, check-in photos are reviewed by Trip Leadership before being shared with the group feed. This protects against inappropriate content, intoxicated or compromising photos, bullying, and sexual or illegal content. Rejected photos stay visible to the person who submitted them — others just can't see them.

• Storage: All photos are stored in private, encrypted cloud storage. They are never publicly accessible. Access is controlled through time-limited signed URLs that expire after 15 minutes.

• Parent portal: If you invite a parent/guardian, they can see only approved photos in which you are tagged. No other trip member's photos are visible to your parent unless that member also granted access.

• Retention: Photos are deleted after your trip's retention period (7 days for free trips, 30 days for paid tiers). You will receive warnings before deletion. You can download photos before they are removed. Trip templates can be saved (structure only, no photos).

• We never use your photos for advertising, AI training, or any purpose other than providing the Roamii service to you and your trip group.

12. International Data Transfers

Roamii is operated from the United States. If you use Roamii while traveling internationally (including in the EEA, UK, or Switzerland), your data may be transferred to and processed in the United States.

We protect international transfers through our hosting provider's data processing agreements and standard contractual clauses.

13. Jurisdiction-Specific Provisions

13.1 EEA, UK, and Switzerland (GDPR)

If you are located in the European Economic Area, United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) or equivalent local law applies to our processing of your personal data. Below is the lawful basis we rely on for each category of data we process.

Account data (name, email, phone, DOB) — Lawful basis: contractual necessity. Required to create your account and provide the service.

Location data on supervised and organization trips — Lawful basis: legitimate interest (safety). Required for boundary alerts, check-in verification, and rogue detection. Trip leadership is notified if you disable location sharing. You are never locked out of the app for disabling it.

Location data on friend trips — Lawful basis: consent. Entirely optional. You choose whether to share your location with your trip group. You can withdraw consent at any time in your device settings or in the app, and location processing will stop immediately.

Check-in photos on supervised and organization trips — Lawful basis: legitimate interest (safety). Trip leadership reviews photos to confirm traveler well-being and to moderate content shared with the group.

Check-in photos on friend trips — Lawful basis: consent. You choose whether to share photos with your trip group.

Device and technical data — Lawful basis: legitimate interest (app stability). Used for crash reporting and app performance. Anonymized within 90 days.

Marketing communications — Lawful basis: consent. Only sent if you explicitly opt in. You can withdraw consent at any time in your profile settings.

Important notes on location sharing for supervised and organization trips: Roamii does not require location sharing as a condition of using the app. If you disable location sharing, you retain full access to all other app features. However, your trip leadership (chaperone, Trip Leadership, or organization admin) will be notified that location sharing has been disabled. Your organization may have its own policies requiring location sharing as a condition of trip participation — that is their policy, not ours. Roamii enforces the notification; the organization enforces their own requirements.

Your rights under GDPR: You have the rights listed in Section 9 of this policy (access, correction, deletion, portability, restriction, objection, and withdrawal of consent). To exercise any of these rights, contact legal@roamii.app. We will respond within 30 days. You may also lodge a complaint with your local data protection authority.

Data protection contact: For data protection inquiries from EU/EEA/UK/Swiss users, contact legal@roamii.app. We will evaluate whether a formal Data Protection Officer appointment is required as Roamii scales, and will update this section accordingly.

13.2 California (CCPA/CPRA)

• We do not sell your personal information as defined by CCPA/CPRA.

• We do not share personal information for cross-context behavioral advertising.

• You have the right to know, request deletion, and opt out of any sale (though we do not sell).

13.3 Texas

Roamii L.L.C. is incorporated in Texas. We comply with the Texas Data Privacy and Security Act (TDPSA) and all applicable Texas privacy laws. Texas residents have the right to access, correct, delete, and obtain a copy of their personal data, and to opt out of the sale of personal data (which we do not do).

13.4 Other US States

We monitor and comply with applicable state privacy laws. If you have questions about your rights under your state's privacy law, contact legal@roamii.app.

14. Cookies and Tracking

The Roamii mobile app does not use cookies. Our website and parent photo portal use essential cookies for session management and authentication only. We do not use advertising cookies, tracking pixels, or third-party analytics that follow you across other websites.

15. Third-Party Links

Roamii may link to third-party services (map providers, external payment apps like Apple Cash or Venmo). We are not responsible for their privacy practices. When you open a payment link, you leave Roamii and are subject to that service's privacy policy.

16. Changes to This Policy

We may update this policy. If we make material changes, we will notify you through the app or by email before the changes take effect. The current version will always be at roamii.app/privacy with the effective date displayed.

The commitment to never sell personal data is permanent and cannot be weakened through a policy update.

17. Contact Us

Email: legal@roamii.app

Mail: Roamii L.L.C. 5900 Balcones Drive, STE 100, Austin Texas 78731

Response time: Within 30 days.

Appendix A: Data Map

This section shows exactly what data we collect and where it goes.

Profile data includes your name, email, phone number, date of birth, and profile photo. This is visible to your trip members and shared with service providers (hosting, email) to operate the app. Profile data is never sold.

Location data includes precise GPS coordinates collected continuously during active trips, including in the background. Your location is visible to your trip group based on your role (see Section 6.1). Real-time location pings are anonymized 7 days after your trip ends. Check-in location records are anonymized after 90 days — user identifiers are permanently stripped, and only generalized, neighborhood-level data may be retained for aggregate analysis. Location data is never sold as personal data.

Photos include check-in photos and receipt photos. These are visible to your trip group based on your privacy setting. On organization and supervised trips, Trip Leadership can see all photos. Parents can see approved photos only if you invite them to the parent portal. Photos are deleted after your retention period (7 or 30 days post-trip). Photos are never sold.

Trip content includes expenses, polls, and itinerary notes. This is visible to your trip group and deleted when your trip ends.

Contacts are accessed only when you invite someone to a trip. We do not store your contacts and never share them.

Device and technical data includes device type, OS version, app version, IP address, and usage analytics. This is shared with service providers for crash reporting and analytics, and is anonymized within 90 days.

Payment data — none. Payments are handled entirely by external apps like Apple Cash, Venmo, and Zelle. Roamii never sees or stores your financial data.

Appendix B: App Store Privacy Labels

Data Linked to Your Identity

Category Data Types Purpose Contact Info Name, email, phone App functionality Location Precise location (continuous during active trips, including background) App functionality (safety features) User Content Photos, expense data, trip content App functionality Identifiers User ID App functionality Contacts Accessed transiently for invitations (not stored) App functionality

Data NOT Collected

Health & fitness, financial info, browsing history, search history, sensitive info, advertising data.

Tracking: No. Roamii does not track users across other companies' apps or websites.

This policy works alongside our Terms of Service, Sensitive Content Policy, and Trust & Safety page.