Privacy Policy

Effective July 3, 2026. The plain-language version of how Navio handles your data.

Who we are

Navio (“Navio”, “we”, “us”) is a travel planning and companion service operated from Toronto, Ontario, Canada. This policy explains what personal information we collect when you use naviotravel.com and the Navio application (together, the “Service”), why we collect it, and the choices you have. Questions about anything here can go to support@naviotravel.com.

What we collect

Information you give us

  • Account details: your name, email address and password when you create an account, plus anything you add to your profile (photo, phone number, location, bio).
  • Trip data: destinations, travel dates, itineraries, activities, budgets, expenses, packing lists, reservations you import or enter, notes, and images you upload or select.
  • Messages: what you write to our support channels and, when you use companion features, the questions you ask.

Information collected automatically

  • Usage data: pages visited, features used and general interaction patterns, collected through privacy-respecting analytics.
  • Device data: browser type, operating system, screen size and approximate region derived from your IP address.
  • Local storage: we use browser storage to keep you signed in and remember preferences. See the cookies section below.

How we use your information

  • To provide the Service: storing your trips, syncing them across devices, and rendering maps, search and recommendations.
  • To power companion features: your trip context (destination, dates, planned activities) is used to generate relevant suggestions and alerts.
  • To operate the business: processing subscriptions, responding to support requests and sending service emails such as receipts or important account notices.
  • To improve Navio: understanding, in aggregate, which features help and which don't.
  • To keep the Service safe: detecting abuse, fraud and security incidents.

We do not sell your personal information, and we do not use your trip data for third-party advertising.

AI processing

Navio's companion features may process your trip context (for example your destination, dates and planned activities) using large language model providers to generate suggestions and packing lists. These features currently use Google's Gemini API. When this happens, we send only the information needed to answer the request. The information is never sold.

Third-party services

Google Maps and Places

We use the Google Maps and Google Places APIs for location search, place details, photos and mapping. When you search for destinations or view maps, your queries and approximate location may be processed by Google and are subject to Google's Privacy Policy. We do not store Google-sourced data longer than necessary for the Service to function, we use location queries solely to provide travel information and recommendations, and we comply with Google's API Terms of Service on data usage and retention.

Other providers

  • Hosting and analytics: the Service is hosted on Vercel, whose infrastructure processes requests (including IP addresses) to serve the site, and we use privacy-focused, aggregate analytics.
  • Support chat: our live chat widget is provided by Neeto; conversations you start there are processed by that provider.
  • Payments: Stripe collects and processes payment details on its hosted checkout pages. Navio stores only Stripe identifiers and the plan, payment, and subscription status needed to provide paid access.

Cookies and local storage

We use a small number of first-party cookies and browser local storage for things that are genuinely necessary: keeping you signed in, remembering preferences and keeping the Service secure. We do not run third-party advertising cookies. You can clear browser storage at any time; you will simply be signed out.

Data retention

We keep your information for as long as your account exists. If you delete your account, your profile and trip data are permanently deleted from our production systems, with residual copies in encrypted backups expiring on a rolling basis within 90 days. We may retain minimal records where the law requires it (for example, billing records for tax purposes).

Your rights

Wherever you live, we extend the same set of rights: you can access the personal information we hold about you, correct it, export your trip data, and delete your account and data (from Settings, or by writing to us). If you are in Canada, these rights are backed by PIPEDA; in the European Economic Area or the UK, by the GDPR, including the right to lodge a complaint with your supervisory authority. We will respond to any request within 30 days.

Security

Data is encrypted in transit (TLS) and at rest. Access to production systems is restricted and logged. No system is perfectly secure, and we will notify affected users and the relevant authorities without undue delay if a breach involving personal data ever occurs.

Children

Navio is not directed at children under 13 (or the higher minimum age in your jurisdiction), and we do not knowingly collect personal information from them. If you believe a child has created an account, contact us and we will delete it.

International transfers

We operate from Canada, and our infrastructure providers may process data in the United States and other countries. Where data leaves your jurisdiction, we rely on our providers' standard contractual safeguards.

Changes to this policy

If we make material changes, we will update the date at the top and, for significant changes, notify you by email or in the app before they take effect. The current version always lives at this address.

Contact

Privacy questions, access requests, or anything unclear: support@naviotravel.com or via our contact page. We're based in Toronto, Ontario, Canada.