Mappitt

Legal

Privacy Policy

Last updated: May 18, 2026

This Privacy Policy explains what information Mappitt collects, how we use it, and the choices you have. Mappitt is operated by [Company Legal Name] (“Mappitt”, “we”, “us”). By using Mappitt you agree to the practices described here.

Information we collect

Account information

When you create an account we collect your email address and, optionally, a display name. Passwords are never stored in plain text — we keep only a salted bcrypt hash that cannot be reversed into your password.

Trip content

We store the content you create: trips, events, dates, times, notes, locations, and any conversations you have with the AI companion. This content belongs to you and is private to your account.

Technical information

To keep you signed in we set a session cookie. As part of normal server operation we may also process basic technical data such as your IP address and browser type.

How we use your information

We use your information to:

  • operate, secure, and support your account;
  • store and display your trips and itineraries;
  • provide features such as maps, email sharing, and the AI companion; and
  • respond to your questions and support requests.

We do not sell your personal information, and we do not use your trip content for advertising.

Service providers

To run Mappitt we share limited data with service providers that process it only on our behalf:

  • Hosting & database — your account and trip data is stored in a managed PostgreSQL database.
  • Mapbox — when you search for a place or view a map, the search text and coordinates are sent to Mapbox for geocoding and map rendering.
  • Resend — when you email an itinerary, the recipient addresses and itinerary content are sent through Resend to deliver the message.
  • Anthropic — when you use the AI companion, your messages and the relevant trip content are sent to Anthropic’s API to generate a response.

Cookies and local storage

Mappitt uses a single essential cookie to keep you signed in (an encrypted session token). We also store your light/dark theme preference in your browser’s local storage. We do not use third-party advertising or tracking cookies.

Data retention

We keep your account and trip content for as long as your account is active. If you delete your account, we delete the associated trip content; residual copies may persist in backups and logs for a limited period afterward.

Your choices

You can review and edit your trips at any time while signed in. To delete your account or request a copy of your data, contact us at [email protected].

Security

We protect your account with hashed passwords, encrypted session tokens, and access controls that ensure a trip is only ever visible to the account that owns it. No online service can promise perfect security, but we take reasonable measures to safeguard your information.

Children

Mappitt is not directed to children under 13, and we do not knowingly collect personal information from them.

Changes to this policy

We may update this policy as Mappitt evolves. When we do, we will revise the “last updated” date above, and significant changes will be communicated where appropriate.

Contact

Questions about privacy? Email [email protected].