Privacy Policy

1. What we collect

We collect the minimum necessary to operate the Service:

• Email address — provided at sign-in, used only to send magic-link authentication and the alert emails you configure.
• Visa records — the country, entry date, visa type, total days, and alert thresholds you enter manually.
• Alert preferences — whether email alerts are enabled, your chosen tone, and the day thresholds you set.
• Alert log — timestamps of emails sent, used to prevent duplicate sends.

We do not collect payment data, location data, device identifiers, or browsing history.

2. How we use it

Your data is used only to operate Travel Safe:

• Authenticate you via magic link
• Display your visa countdown and history
• Send the alert emails you configured — nothing else

We do not sell your data, share it with third parties for marketing, or use it for profiling.

3. Data storage

Your data is stored in Supabase (PostgreSQL). The database region is ap-southeast-1 (Singapore). Data is encrypted at rest and in transit.

Email delivery is handled by Resend. Only your email address and the alert content are transmitted to Resend at the moment an alert is sent.

4. Retention

Your data is retained until you delete your account. Account deletion removes all associated records immediately and permanently — visa records, alert preferences, alert history, and your authentication entry. There is no recovery after deletion.

5. Your rights

You can, at any time:

• Export all your visa records as CSV from the Account page
• Delete all visa data and preferences via “Reset all data”
• Delete your account entirely via “Delete account”

6. Contact

For privacy-related questions: hello@travel-safe.me