Privacy Policy

Last updated: May 2026

Roveo (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you use the Roveo mobile application (“App”) and all related services (collectively, the “Services”). By using Roveo, you agree to the practices described in this policy.

This policy applies to users worldwide and has been designed to comply with applicable global privacy laws including the General Data Protection Regulation (GDPR), India's Digital Personal Data Protection Act 2023 (DPDPA), the California Consumer Privacy Act (CCPA/CPRA), the UK GDPR, Australia's Privacy Act, Canada's PIPEDA, and Singapore's PDPA, among others.

1. INFORMATION WE COLLECT

A. Information You Provide Directly

Account registration data (name, email address, profile photo) via Google Sign-In or Apple Sign-In.
Travel details you voluntarily provide when building itineraries — including destinations, travel dates, budget preferences, accommodation preferences, travel companions, and activity interests.
User-generated content you manually upload or paste into the App, including social media posts, reels, videos, carousels, stories, captions, images, and audio. Support for additional platforms, including TikTok and YouTube, will be introduced in future updates.
Feedback, support requests, or other communications you send us.

B. Information Collected Automatically

Device information: device type, operating system (iOS/Android), device ID, language settings, and time zone.
Usage data: features used, content folders accessed, itineraries created, session duration, and in-app interactions.
Log data: IP address, access times, app version, crash reports, and diagnostic data.
Behavioural data: your in-app preferences, content interaction patterns, and itinerary preferences used to personalise your experience over time.

C. Information from Third-Party Sign-In Services

When you sign in with Google or Apple, we receive limited profile information such as your name, email address, and profile photo. We do not receive your passwords or payment details from these providers. Please review Google's and Apple's privacy policies for details on what they share with third-party apps.

D. Content You Import

Roveo allows you to import travel content by manually uploading or pasting content directly into the App. We do not connect to or integrate with any third-party social media accounts.

When you import content, Roveo's AI analyses and processes that content — including text, captions, visual media, and audio — to extract travel-relevant information such as destinations, restaurants, activities, and accommodation. This information is organised into categorised folders within your personal Roveo library. You remain in full control of your library and can delete content at any time.

Important: We process your imported content solely to provide and improve the Roveo service for you.

E. Information We Do Not Collect

We do not collect precise real-time location data unless you explicitly grant location permission for a specific feature.
We do not collect biometric data, financial information, or government-issued identification numbers.
We do not collect information from children under the age of 13 (or 16 in the EU/UK).
With your permission, we collect your approximate or precise location to suggest a departure point for trip planning in Canvas and to surface experiences near you in Atlas. Location data is used only for these purposes and is not stored beyond your active session unless you choose to save a trip.

2. HOW WE USE YOUR INFORMATION

We use your information for the following purposes:

Service delivery: To provide core App functionality, including content import, AI-powered itinerary building, and personalised folder organisation.
Personalisation: To learn your travel preferences over time and deliver increasingly personalised itinerary suggestions and travel recommendations tailored to your style and interests.
AI Travel Concierge: To power Roveo's AI Travel Concierge features, which use your travel history, preferences, and imported content to provide intelligent, contextual travel planning assistance.
Account management: To create and maintain your account, authenticate your identity, and manage your session.
Service improvement: To analyse usage trends, fix bugs, improve features, and develop new capabilities.
Communications: To send you service-related notifications, updates to these policies, and — with your consent — promotional communications.
Safety and security: To detect fraud, abuse, and other harmful activity, and to enforce our Terms and Conditions.
Legal compliance: To comply with applicable laws, regulations, and legal processes.

3. LEGAL BASES FOR PROCESSING (GDPR / UK GDPR)

For users in the European Economic Area (EEA), United Kingdom, and other jurisdictions requiring a legal basis for data processing, we rely on the following:

Contractual necessity: Processing required to fulfil our agreement with you and deliver the Services.
Legitimate interests: Improving and securing the App, preventing fraud, and developing personalisation features — where these do not override your fundamental rights.
Consent: Processing of imported content and behavioural learning for personalisation, which you may withdraw at any time.
Legal obligation: Processing necessary to comply with applicable laws.

4. HOW WE SHARE YOUR INFORMATION

We do not sell your personal information. We may share your information only in the following circumstances:

Service providers: With trusted third-party vendors who assist us in operating the App (e.g., cloud hosting, analytics, AI infrastructure). These providers are contractually bound to protect your data and may not use it for their own purposes.
Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred. We will notify you in advance and your rights will be protected.
Legal requirements: When required by law, court order, or governmental authority, or to protect the rights, property, or safety of Roveo, its users, or the public.
With your consent: In any other circumstance, only with your explicit prior consent.

5. AI FEATURES AND AUTOMATED DECISION-MAKING

Roveo uses artificial intelligence to:

Analyse and categorise content you import into the App.
Generate personalised travel itineraries based on your stated preferences and travel details.
Learn your behavioural patterns over time to improve itinerary quality and recommendations.

Where applicable law requires, you have the right to request human review of decisions made by automated processes and to object to solely automated decision-making that produces significant legal or similarly significant effects. To exercise this right, contact us at hello@roveotrip.com.

Our AI does not use your data to train general-purpose models shared with other users. Your personal data and travel content are used solely to personalise your individual Roveo experience.

6. DATA RETENTION

We retain your personal information for as long as your account is active or as necessary to provide the Services. Specifically:

Account data is retained until you delete your account.
Imported content and folder data is retained until you delete it from the App or delete your account.
Behavioural preference data is retained to power personalisation features and is deleted when you delete your account.
Usage and log data is retained for up to 24 months for analytical and security purposes.
We may retain certain information for longer periods where required by applicable law.

Upon account deletion, we will delete or anonymise your personal information within 30 days, except where retention is required by law.

7. INTERNATIONAL DATA TRANSFERS

Roveo is a global service. Your information may be transferred to and processed in countries outside your country of residence, including countries that may not provide the same level of data protection as your home jurisdiction.

Where we transfer personal data from the EEA, UK, or Switzerland to countries not deemed adequate by the relevant authorities, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission or UK ICO, or other lawful transfer mechanisms.

For users in India, data processing is conducted in compliance with the Digital Personal Data Protection Act 2023 (DPDPA) and applicable rules thereunder.

8. YOUR PRIVACY RIGHTS

Depending on your location, you may have the following rights regarding your personal information:

All Users

Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request deletion of your personal data and account.
Portability: Receive your data in a structured, machine-readable format.
Withdraw consent: Withdraw consent for data processing at any time (without affecting prior lawful processing).

EEA / UK Users (GDPR / UK GDPR)

Object to processing based on legitimate interests.
Restrict processing in certain circumstances.
Lodge a complaint with your local data protection authority.

California Users (CCPA/CPRA)

Know what personal information is collected, used, shared, or sold.
Opt out of the sale or sharing of personal information (we do not sell personal information).
Non-discrimination for exercising your privacy rights.

India Users (DPDPA 2023)

Access to information about personal data processed.
Correction and erasure of personal data.
Grievance redressal through our designated Grievance Officer.

To exercise any of your rights, contact us at hello@roveotrip.com. We will respond within the timeframe required by applicable law (generally 30 days).

9. CHILDREN'S PRIVACY

Roveo is not intended for use by children under the age of 13 (or 16 in the European Union and United Kingdom). We do not knowingly collect personal information from children below these age thresholds.

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us at hello@roveotrip.com and we will take steps to delete such information promptly.

10. DATA SECURITY

We implement appropriate technical and organisational security measures to protect your personal information against unauthorised access, loss, destruction, or alteration. These measures include encryption of data in transit and at rest, access controls, and regular security reviews.

However, no method of data transmission or storage over the internet is completely secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your login credentials.

11. THIRD-PARTY SERVICES AND LINKS

Roveo may integrate with or link to third-party services (such as Google and Apple). This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you use in connection with Roveo.

12. PUSH NOTIFICATIONS

We may send you push notifications related to your itineraries, saved content, and App features. You can manage notification preferences in your device settings at any time. We will not use push notifications for marketing purposes without your consent.

13. UPDATES TO THIS POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by posting the updated policy in the App and, where required, obtaining your renewed consent. The “Last Updated” date at the top of this policy reflects the most recent revision.

Your continued use of the App following notification of changes constitutes acceptance of the updated policy.

14. CONTACT US & GRIEVANCE OFFICER

For privacy-related queries, requests, or complaints, please contact us at: hello@roveotrip.com

Operated by an individual developer: Dibyanshu. A formal legal entity is in the process of being established.

Grievance Officer (India — DPDPA 2023):

Pranav Agrawal

Email: hello@roveotrip.com

Response time: Within 30 days of receipt of complaint.

We are committed to resolving your concerns promptly and fairly.