Privacy

Babylon Optima B.V. is the controller for personal data processed in connection with Jappoe. We are a private company registered in the Netherlands. For any privacy question, write to hello@jappoe.com.

When you sign up, we store your email address and a chosen display name. When you participate in a trip, we store the trip data you provide: dates, destinations, programme items, expenses you log, messages you send in the trip chat. When you fill an intake form, we store the answers you give. Server logs record your IP address briefly and are pruned within a short retention window.

Some categories qualify as special personal data under GDPR article 9: dietary restrictions, mobility needs, medical notes, alcohol preferences, and photo participation. We only process these when you explicitly opt in through your privacy settings. Sensitive fields are stored encrypted at rest with key separation. You can withdraw consent at any time from your settings, and historical data tagged to that category is removed within thirty days.

We rely on three legal bases. Consent (GDPR art. 6.1.a and art. 9.2.a) for sensitive personal data and for any marketing communication. Performance of a contract (art. 6.1.b) for everything required to deliver the trip-coordination service you signed up for. Legitimate interest (art. 6.1.f) for security logging, fraud prevention, and product analytics that do not involve sensitive data. You can object to legitimate-interest processing by emailing us.

All Jappoe data sits on infrastructure in the European Union. The database runs on Supabase in their EU region. Hosting and edge runtime sit on Cloudflare's EU points of presence. Transactional email is dispatched through Resend in their EU data centre. We do not transfer personal data outside the EU/EEA other than the limited and necessary processing described in the international-transfers section below.

We use a small set of sub-processors to deliver the service: Supabase (database, auth, storage, all EU), Cloudflare (edge runtime, CDN, EU), Resend (transactional email, EU). For AI features we use Anthropic's Claude API; AI inputs are minimised, never include unencrypted special personal data, and are not used to train the model. A full sub-processor list with purpose and location will be published at /sub-processors before commercial launch.

Trip data is retained for 24 months after the trip end date, and you can delete it earlier at any time. Audit log entries are kept for 24 months. Account data is kept while your account is active and removed within thirty days after you delete the account. Sensitive personal data is removed within thirty days after you withdraw the relevant consent. Anonymised aggregates may be retained longer for product metrics.

Under the GDPR you have the right to access, rectify, erase, restrict, and port your data, and to object to processing. You also have the right to withdraw consent at any time without affecting the lawfulness of processing before the withdrawal. To exercise these rights, write to hello@jappoe.com. We respond within thirty days. You can also lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

Jappoe is not directed at children under sixteen. We do not knowingly collect personal data from minors without parental consent. If you believe a minor has provided data without that consent, contact us and we will remove it.

Where a sub-processor processes data outside the EU/EEA (currently limited to Anthropic for AI features), we rely on Standard Contractual Clauses approved by the European Commission and apply additional safeguards including data minimisation in prompts and a no-training contract clause.

We use a small set of strictly necessary cookies to keep you signed in and to remember your language and currency preferences. We do not set advertising cookies. Analytics, when added, will be privacy-friendly and EU-hosted (Plausible) with an explicit opt-in.

We may update this notice. Material changes will be announced through the app and via email to active accounts at least thirty days before they take effect. The version label at the top of this page shows when the current text became effective.

You can export your data from your account settings, and you can delete your account from the same place. For anything that needs human review, write to hello@jappoe.com.

Babylon Optima B.V., based in the Netherlands. For formal privacy questions: hello@jappoe.com.