← Back to Home

Privacy Policy

Last Updated: December 15, 2025

At TravelBear, your privacy is our top priority. This Privacy Policy explains how we collect, use, and protect your information when you use our travel expense tracking app.

1. Information We Collect

1.1 Information You Provide

• Account Information: Email address, name (when using cloud sync)
• Trip Data: Trip names, dates, budgets, destinations
• Expense Data: Transaction amounts, categories, descriptions, dates, receipts
• Voice Recordings: Temporary voice memos for AI expense logging (processed and deleted immediately)
• Photos: Receipt photos for AI scanning (processed locally, optionally synced)

1.2 Automatically Collected Information

• Device Information: Device type, operating system version
• Usage Data: App features used, crash reports (anonymized)
• Location Data: Only if you explicitly grant permission for destination features

2. How We Use Your Information

We use your information to:

• Provide and maintain the TravelBear service
• Process AI-powered expense logging (voice and receipt scanning)
• Sync your data across devices (when cloud sync is enabled)
• Enable trip sharing and expense splitting with other users
• Provide customer support and respond to inquiries
• Improve app features and user experience
• Send important service updates and notifications
• Calculate exchange rates for multi-currency tracking

3. Offline-First & Data Storage

3.1 Local Storage

TravelBear is built with offline-first architecture. All your trip and expense data is stored locally on your device using encrypted SQLite databases. The app works fully without internet connection.

3.2 Optional Cloud Sync

Cloud sync is entirely optional. When enabled:

• Your data is encrypted in transit using TLS/SSL
• Data is stored on secure servers (AWS/Google Cloud)
• You can disable cloud sync at any time
• Local data remains on your device even if you disable sync

3.3 Data Loss Disclaimer

IMPORTANT: WE DO NOT GUARANTEE DATA INTEGRITY, AVAILABILITY, OR RECOVERABILITY.

While we implement security measures and backup systems, data loss may occur due to:

• Technical failures, bugs, or software errors
• Cloud sync failures or synchronization conflicts
• Server outages, hardware failures, or service interruptions
• Device issues (loss, theft, damage, factory reset, OS updates)
• User error (accidental deletion, incorrect settings)
• Third-party service failures (cloud providers, AI services)

YOU ARE SOLELY RESPONSIBLE FOR MAINTAINING BACKUPS OF YOUR DATA. We strongly recommend regularly exporting your trip data and maintaining independent backup copies. TravelBear is provided on a "best effort" basis, and we bear no liability for data loss, corruption, or unavailability.

4. AI Processing & Data Privacy

4.1 Voice Memo Processing

When you use voice input to log expenses:

• Voice recordings are processed by our AI service (OpenAI/Google Cloud Speech)
• Audio is transmitted securely and deleted immediately after processing
• We do not store voice recordings permanently
• Only the extracted expense data (amount, category, description) is saved

4.2 Receipt Scanning

When you scan receipts with AI:

• Photos are processed using OCR technology (on-device when possible)
• Images may be sent to cloud AI services for advanced recognition
• Receipt images are stored only if you choose to attach them to expenses
• You can delete receipt photos at any time

5. Data Sharing & Third Parties

5.1 We Share Data With:

• Trip Members: Users you invite to shared trips can see shared expenses
• Cloud Providers: AWS/Google Cloud for secure data storage (when sync is enabled)
• AI Services: OpenAI, Google Cloud for voice/receipt processing
• Analytics: Google Analytics (anonymized usage data only)
• Payment Processors: For in-app purchases (Apple/Google handles payment data)

5.2 We Never Share:

• Your personal financial data with advertisers
• Individual trip or expense details with third parties
• Your data for marketing purposes without consent

6. Data Security

6.1 Security Measures

We implement industry-standard security measures:

• End-to-end encryption for data transmission
• Encrypted local storage on your device
• Secure authentication (OAuth 2.0, JWT tokens)
• Regular security audits and updates
• HTTPS/TLS for all network communications

6.2 No Absolute Security Guarantee

NO METHOD OF ELECTRONIC STORAGE OR TRANSMISSION IS 100% SECURE. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security. You acknowledge and accept the risks associated with storing data electronically and transmitting data over the internet.

We are not liable for:

• Unauthorized access or breaches beyond our reasonable control
• Data loss due to security incidents
• Compromised accounts due to weak passwords or shared credentials
• Device-level security issues (malware, physical theft, etc.)

7. Your Privacy Rights

You have the right to:

• Access: Request a copy of your data
• Correct: Update or correct your information
• Delete: Request deletion of your account and data
• Export: Download your data in PDF or CSV format
• Opt-Out: Disable cloud sync and use offline mode only
• Withdraw Consent: Revoke permissions at any time

8. Children's Privacy

TravelBear is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected data from a child, please contact us immediately.

9. International Users & Data Transfers

TravelBear is available globally. If you use the app from outside the United States, your data may be transferred to and processed in the US or other countries. We ensure appropriate safeguards are in place to protect your data.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via:

• In-app notifications
• Email (if cloud sync is enabled)
• Updated "Last Updated" date on this page

11. Contact Us

If you have questions about this Privacy Policy or your data, please contact us:

• Email: privacy@travelbear.app
• Support: support@travelbear.app
• Security: security@travelbear.app

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information (we do not sell your data)
• Right to request deletion of personal information
• Right to non-discrimination for exercising your rights

13. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to access your personal data
• Right to rectification (correction of inaccurate data)
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Rights related to automated decision-making

By using TravelBear, you agree to this Privacy Policy. If you do not agree, please do not use the app.