Privacy Policy

1. Information we collect

1.1 Information you provide

• Account information: email address; display name (for example, from Google sign-in); profile identifiers.
• Journey inputs: starting address you type, themes selected, desired journey size or duration, and any optional free-text prompt you provide.
• Communications: messages you send us (for example, support emails).

1.2 Location information

• Manually entered starting location: You type an address. We use Google Places Autocomplete in your browser to help complete and validate that address.
• Coordinates: The resolved latitude/longitude may be sent to our servers to generate routes and find stops.
• No device GPS: We do not request your device's precise location via browser geolocation permissions.

1.3 Journey data stored in your account

If you save a journey, we store information such as:

• Journey title and description (may be AI-generated)
• Stops and stop notes (including stop names, addresses, and coordinates)
• Route geometry (polyline/line representation), distance, duration, and theme metadata
• Your original free-text prompt (if you provided one)
• Sharing settings and share tokens

1.4 Payment and subscription information

Payments are processed by Stripe. We do not store full payment card numbers.

We may store:

• Stripe customer identifier
• Subscription tier and subscription end date
• Billing status metadata needed to provide paid access

1.5 Information collected automatically

When you use the Service, we and our service providers may collect:

• Device and browser information (for example, OS, browser type, device model)
• Usage data (pages viewed, clicks, events such as generating or saving journeys)
• Log data (IP address, timestamps, error logs)
• Cookies and similar technologies (see Section 6)

2. How we use information

We use information to:

• Provide and operate the Service (authentication, saving journeys, generating routes)
• Generate AI-assisted route narration and route composition
• Process payments and manage subscriptions
• Send transactional emails (account and billing related)
• Monitor performance, debug errors, prevent abuse, and secure the Service
• Understand usage and improve product features and user experience
• Comply with legal obligations and enforce our Terms

3. How we share information

We do not sell your personal information.

We may share information in these ways:

3.1 Service providers (processors)

We use third-party vendors to provide parts of the Service, such as:

• Hosting and infrastructure (for example, web hosting and deployment)
• Authentication and database (Supabase)
• Payment processing and subscription management (Stripe)
• Transactional email delivery (SendGrid)
• Error monitoring and performance tracing (Sentry)
• Product analytics (Amplitude)
• AI generation (OpenAI)
• Maps and places data (Google Maps Platform, including Places and related SDKs)

These providers process information on our behalf under agreements intended to protect your data.

3.2 Public sharing you enable

If you choose to share a journey publicly, we will display that journey on a public page. Public journeys may be visible to anyone and indexable by search engines.

What may become public includes:

• Journey title, description, themes, distance, duration
• Stop names, addresses, and coordinates
• Route geometry
• Your free-text prompt (if provided)

We do not display your email address or account identifiers on public journey pages.

3.3 Legal and safety reasons

We may disclose information if we believe it is necessary to:

• Comply with law, regulation, legal process, or government request
• Protect the rights, safety, or property of Skylark, our users, or others
• Investigate or prevent fraud, abuse, or security incidents

3.4 Business transfers

If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction.

4. Your choices

4.1 Private vs public journeys

Journeys are private by default. You control whether a journey is shared publicly.

If you enable sharing, do not include sensitive personal details in your free-text prompt or journey content.

4.2 Emails

We send only transactional emails related to your account and billing. If you believe you are receiving unexpected messages, contact us at hello@urban-journeys.com.

4.3 Cookies and tracking

You may be able to limit some cookies through your browser settings. Some cookies are required for authentication and core site functionality.

5. Data retention and deletion

5.1 Journey deletion

You can delete individual saved journeys from within the Service. Journey deletion is intended to remove that journey from our database.

5.2 Account deletion

As of the Effective Date, the Service may not offer self-serve account deletion. You can request account deletion by emailing hello@urban-journeys.com.

When we delete an account, some data may remain for a limited time in backups, logs, or as required for legal, tax, fraud-prevention, or operational purposes.

In some cases, journey records may be retained with the link to your user account removed (for example, where the journey is “orphaned” from the account). If you request deletion, we will make reasonable efforts to delete or de-identify associated journey data as well, subject to legal and technical constraints.

5.3 Stripe retention

Stripe may retain customer and transaction records as required for compliance, audits, and legal obligations. We may retain Stripe customer identifiers and subscription metadata to manage your subscription status.

6. Cookies and similar technologies

We use cookies and similar technologies for:

• Authentication and session management (for example, Supabase session cookies)
• Analytics and performance (for example, Amplitude)
• Error monitoring (for example, Sentry)
• Third-party SDK functionality (for example, Google Places Autocomplete)
• Payments during checkout flows (Stripe)

Some third-party SDKs may set their own cookies or collect device identifiers and IP addresses under their own privacy policies.

7. International data transfers

We operate in the United States and may process and store information in the United States and other locations where our service providers operate. Data protection laws may differ from those in your jurisdiction.

8. Security

We use reasonable administrative, technical, and organizational measures designed to protect information. No security system is perfect, and we cannot guarantee absolute security.

9. Children's privacy

The Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information, contact us and we will take appropriate steps to delete it.

10. Privacy rights (region-specific)

Depending on where you live, you may have certain rights regarding your personal information, such as:

• Access to your personal information
• Correction of inaccurate information
• Deletion of personal information
• Objection to or restriction of certain processing
• Data portability (where applicable)

To exercise these rights, email hello@urban-journeys.com. We may need to verify your identity before processing requests.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the Effective Date and provide notice where appropriate (for example, within the Service or by email).

12. Contact

Questions or requests related to privacy can be sent to:

Email: hello@urban-journeys.com

Mail: Skylark Creations LLC, 10717 Owens St, Westminster, CO 80021