Privacy Policy for Eatdosleep

Last Updated: [April 18, 2025]

1. Introduction

Welcome to the Privacy Policy for Eatdosleep ("Eatdosleep," "we," "us," or "our"). We are committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, store, share, and protect your information when you access or use our website, mobile application, and related services (collectively, the "Service").

"Personal Information" means any information that identifies or relates to an identifiable individual.

This Privacy Policy is incorporated into our Terms of Service. By accessing or using the Service, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree, please do not access or use the Service.

2. Information We Collect

We collect information to provide and improve our Service. The types of information we collect include:

A. Information You Provide Directly:

  • Account Information: When you create an Eatdosleep account, we collect information such as your name, email address, and password (stored in a hashed format).
  • Profile Information: You may choose to provide additional profile information, such as a profile picture, home city, travel preferences (e.g., interests like food, history, adventure), or demographic information. Providing this information is often optional but may enhance your experience.
  • Travel Planning Data: Information you input or generate when using the Service, including destinations, dates, planned activities, notes, saved locations, created itineraries, and any feedback you provide on recommendations.
  • User Content: Any content you submit, post, or upload to the Service, such as reviews, photos, or comments (as defined in our Terms of Service).
  • Booking Information: Information required to facilitate bookings with third-party providers, which may include traveler names, contact details, and potentially loyalty program numbers.
  • Payment Information: For Premium Subscriptions, we collect payment-related information necessary to process your transaction (e.g., subscription plan choice). This is typically processed directly by our third-party payment processors. We generally do not store full credit card numbers but may retain transaction identifiers, subscription status, expiry dates, and the last four digits of your card number for verification and support purposes.
  • Communications: If you contact us directly (e.g., for customer support), we may collect your name, email address, and the contents of your message or attachments, along with any other information you choose to provide.

B. Information Collected Automatically:

  • Usage Data and Log Information: When you use the Service, we automatically collect information about your interaction, such as your IP address, browser type, operating system, device identifiers, pages visited, features used, search queries, clickstream data, access times, and referring website addresses.
  • Location Information: We may collect general location information based on your IP address. With your explicit consent (e.g., through your browser or device settings), we may collect more precise location data (e.g., GPS) to provide location-based features like mapping, route planning, and nearby recommendations. You can typically disable precise location collection through your device settings.
  • Cookies and Tracking Technologies: We use cookies, web beacons (pixels), local storage, and similar technologies to collect information about your usage, preferences, and device. Please see Section 5 ("Cookies and Tracking Technologies") for more details.

C. Information from Third Parties:

  • Third-Party Logins: If you choose to log in to our Service using a third-party service (like Google or Facebook), we may receive information from that service, such as your name, email address, profile picture, and authentication token, as permitted by your privacy settings on that service.
  • Booking Partners: When you make a booking through our Service, we may receive confirmation details and relevant updates from the third-party Provider.
  • Payment Processors: We receive confirmation of payment transactions from our payment processors but do not receive your full financial details.
  • Analytics Providers: We receive aggregated or de-identified analytics data from third-party analytics services.

3. How We Use Your Information

We use the information we collect for various purposes, based on different legal grounds where applicable (such as performing our contract with you, your consent, our legitimate business interests, or legal obligations):

  • To Provide and Maintain the Service: Operating the platform, authenticating users, creating and managing itineraries, facilitating bookings, processing payments for subscriptions. (Legal Basis: Performance of Contract)
  • To Personalize Your Experience: Tailoring content, recommendations (including AI-driven suggestions), and features based on your preferences, past travel, and usage patterns. (Legal Basis: Performance of Contract; Legitimate Interests)
  • To Improve and Develop the Service: Analyzing usage trends, diagnosing technical issues, improving AI algorithms, developing new features and functionalities. (Legal Basis: Legitimate Interests)
  • To Communicate With You: Sending service-related notifications (e.g., booking confirmations, itinerary updates, account security alerts), responding to your inquiries, providing customer support, and sending marketing communications (with your consent where required). (Legal Basis: Performance of Contract; Legitimate Interests; Consent for marketing)
  • To Ensure Security and Prevent Fraud: Monitoring for suspicious activity, investigating potential violations of our Terms, protecting the rights and safety of Eatdosleep, our users, and the public. (Legal Basis: Legitimate Interests; Legal Obligation)
  • For Analytics and Performance Monitoring: Understanding how users interact with the Service to measure effectiveness and optimize performance. (Legal Basis: Legitimate Interests; Consent for certain cookies/tracking)
  • To Comply with Legal Obligations: Responding to lawful requests from authorities, enforcing our Terms, meeting regulatory requirements. (Legal Basis: Legal Obligation)

4. How We Share Your Information

We do not sell your Personal Information. We may share your information in the following circumstances:

  • Service Providers: We share information with third-party vendors and service providers who perform services on our behalf, such as cloud hosting, data storage, analytics, payment processing, mapping services, customer support tools, and email delivery. These providers are contractually obligated to protect your information and use it only for the services they provide to us.
  • Booking Partners: When you initiate a booking for accommodation, activities, or other travel services through our platform, we share the necessary information (e.g., your name, contact details, booking dates) with the relevant third-party Provider to facilitate the reservation. These Providers have their own privacy policies governing their use of your data.
  • Third-Party Login Services: If you connect using a third-party login, information may be shared with that service as described during the connection process.
  • Legal Requirements and Safety: We may disclose your information if required by law, subpoena, or other legal process, or if we have a good faith belief that disclosure is necessary to protect the safety or rights of Eatdosleep, our users, or the public, investigate fraud, or respond to a government request.
  • Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction, subject to standard confidentiality agreements. We will notify you of such a change in ownership or control of your Personal Information.
  • With Your Consent: We may share your information with third parties when we have your explicit consent to do so.
  • Aggregated or De-identified Data: We may share aggregated or de-identified information (which cannot reasonably identify you) for research, marketing, analytics, or other purposes.

5. Cookies and Tracking Technologies

We use cookies (small text files placed on your device) and similar tracking technologies (like web beacons, pixels, and local storage) to operate and improve the Service. These technologies help us:

  • Authenticate you and keep you logged in.
  • Remember your preferences and settings.
  • Understand how you use the Service (analytics).
  • Personalize content and recommendations.
  • Measure the effectiveness of communications.
  • Ensure security.

We may use session cookies (expire when you close your browser) and persistent cookies (remain until deleted or expire). We use first-party cookies (set by us) and third-party cookies (set by our service providers, like Google Analytics).

Your Choices: You can typically manage cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. We also provide [Describe Your Cookie Consent Mechanism - e.g., a cookie consent banner or a settings page] where you can manage your preferences for non-essential cookies. Please note that blocking essential cookies may impair the functionality of the Service.

6. Data Retention

We retain your Personal Information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Key criteria include:

  • Maintaining your active account and providing the Service.
  • Complying with our legal obligations (e.g., tax, accounting).
  • Resolving disputes and enforcing our agreements.
  • The duration required for security and fraud prevention.

When information is no longer needed, we will securely delete or anonymize it. Anonymized data may be retained indefinitely for analytics and service improvement.

7. Data Security

We implement reasonable administrative, technical, and physical security measures designed to protect your Personal Information from unauthorized access, use, alteration, or destruction. These measures include data encryption, access controls, secure software development practices, and regular security assessments.

However, please be aware that no security system is impenetrable. We cannot guarantee the absolute security of your information, and any transmission is at your own risk. You are also responsible for maintaining the security of your account credentials.

8. Your Privacy Rights

Depending on your location and applicable law (e.g., GDPR in Europe, CCPA in California), you may have certain rights regarding your Personal Information. These may include the right to:

  • Access: Request access to the Personal Information we hold about you.
  • Rectification: Request correction of inaccurate or incomplete Personal Information.
  • Erasure (Deletion / 'Right to be Forgotten'): Request deletion of your Personal Information, subject to certain legal exceptions.
  • Restriction of Processing: Request that we limit the processing of your Personal Information under certain circumstances.
  • Data Portability: Request a copy of your Personal Information in a machine-readable format to transfer it to another service.
  • Object to Processing: Object to our processing of your Personal Information based on legitimate interests or for direct marketing purposes.
  • Withdraw Consent: Withdraw your consent at any time where we rely on consent as the legal basis for processing (this will not affect the lawfulness of processing based on consent before withdrawal).
  • Lodge a Complaint: File a complaint with your local data protection authority if you believe our processing violates applicable privacy laws.

Exercising Your Rights: You can typically exercise some of these rights through your account settings. For other requests or questions about your rights, please contact us using the details in Section 12 ("Contact Us"). We will respond to your request in accordance with applicable law, and we may need to verify your identity before processing your request.

9. Children's Privacy

Our Service is not directed to individuals under the age of 18 (or the applicable minimum age specified in our Terms of Service). We do not knowingly collect Personal Information from children under this age. If we become aware that we have inadvertently collected Personal Information from a child under the specified age without parental consent, we will take steps to delete such information promptly. If you believe we might have any information from or about a child under the relevant age, please contact us.

10. International Data Transfers

Your Personal Information may be transferred to, stored, and processed in countries other than your own, including the United States, where our servers or those of our service providers may be located. Data protection laws in these countries may differ from those in your jurisdiction.

When we transfer your Personal Information internationally, we rely on appropriate safeguards to ensure your data is protected, such as Standard Contractual Clauses (SCCs) approved by relevant authorities (like the European Commission) or adequacy decisions, where applicable.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. If we make material changes, we will notify you by email (sent to the email address specified in your account), by posting a notice on the Service, or as otherwise required by law, prior to the change becoming effective. We encourage you to review this Privacy Policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the revised Privacy Policy.

12. Contact Us

If you have any questions, comments, or concerns about this Privacy Policy or our data practices, or if you wish to exercise your privacy rights, please contact us at:

Email: [email protected]