Privacy Policy

1. Overview

This Privacy Policy describes how Cruisy ("Cruisy," "we," "us," or "our") collects, uses, shares, stores, and protects information when you use the Cruisy mobile application, website, and related services (collectively, the "Service"). We are committed to handling your information responsibly and transparently. By using Cruisy, you agree to the practices described in this Policy. If you do not agree, please do not use the Service.

This Policy applies to all users of Cruisy, including users who access the Service through third-party authentication providers such as Apple or Google. It does not apply to third-party services that Cruisy may link to or integrate with; those services have their own privacy policies that govern their data practices.

2. Information you provide

When you create an account, you may provide information such as your name, email address, username, profile photo, and authentication credentials. If you sign in through Apple or Google, we receive basic account information from those providers as permitted by your settings with them.

When you use Cruisy to organize trips, you may add cruise line names, ship names, sailing dates, embarkation and disembarkation ports, cabin details, booking reference numbers, itinerary notes, packing lists, check-in task status, and reminders. When you upload documents, you may add photos of boarding passes, booking confirmations, travel insurance cards, or other cruise-related materials. When you use group and social features, you may add guest names, share trips with friends, post updates, or link your Cruisy Passport with other users.

You are not required to provide any specific category of information beyond what is needed to create an account. However, many features of Cruisy depend on the information you add, so limiting what you provide may limit what features are available to you.

3. Permissions and device data

Cruisy may request access to certain device features and data, depending on the features you use. All permissions are optional and can be managed through your device operating system settings at any time.

Photos and camera access may be requested to allow you to upload booking documents, scan QR codes, or add photos to your trip history. Contacts access may be requested to help you find and invite friends who also use Cruisy. Calendar access may be requested to allow you to add trip dates and reminders to your device calendar. Location access may be requested to provide map context for ports of call or embarkation terminals. Notification access is used to deliver trip reminders, countdown alerts, and activity updates you have configured.

Denying or revoking a permission will prevent the features that depend on it from functioning, but will not affect your ability to use the rest of the Service.

4. Automatically collected information

When you use Cruisy, we automatically collect certain technical information to operate, secure, and improve the Service. This includes device type and model, operating system version, app version, unique device identifiers, session timestamps, screen interactions, feature usage events, error logs, crash reports, and network information such as connection type. We may also collect approximate location derived from your IP address for purposes such as fraud detection and regional service delivery.

We use analytics tools to aggregate and analyze usage patterns across users. This analysis helps us understand how the app is being used, which features are most valuable, and where improvements are needed. Analytics data is associated with device identifiers rather than your name or email address wherever possible.

5. How we use information

We use information we collect to provide, maintain, and improve the Cruisy Service. This includes creating and managing your account, syncing your trip data across devices, enabling group and social features, sending reminders and notifications you have configured, processing document uploads, and displaying your Cruisy Passport and cruise history.

We use technical and usage information to monitor app performance, diagnose errors, prevent abuse, detect fraud, protect account security, and improve the reliability and quality of the Service. We may use contact information such as your email address to send important service communications, including account confirmations, security alerts, and policy updates. We will not use your email to send marketing messages without your consent.

We do not use your trip content, documents, or personal data to train machine learning models, sell to data brokers, or share with advertisers. We do not show advertising in Cruisy.

6. Sharing and social features

Cruisy includes features that allow you to share trip information with other users. When you invite guests to a trip, those guests may see trip details you have associated with the shared trip. When you connect with friends on Cruisy, certain profile information such as your name and Cruisy Passport stats may be visible to those connections depending on your privacy settings.

If you use shareable passport links or public trip recaps, those links may be accessible to anyone who has the link, including people who do not have a Cruisy account. You can control and revoke shareable links through your account settings. Cruisy is not responsible for content that has been shared externally and then copied or redistributed by others.

Your default privacy settings limit visibility of your information to people you have explicitly connected with. You can review and adjust your privacy settings in the app at any time.

7. Service providers

We share information with trusted third-party service providers that help us operate Cruisy. These providers may include cloud hosting and infrastructure services, database and storage providers, push notification delivery services, authentication providers, email delivery services, analytics platforms, error monitoring tools, mapping services, and document processing services. These providers access information only as necessary to perform their functions and are contractually required to protect it appropriately.

We do not sell, rent, or trade your personal information to third parties for their own commercial purposes. We may disclose information if required by law, court order, or government authority, or if we believe in good faith that disclosure is necessary to protect the rights, property, or safety of Cruisy, our users, or the public.

8. Business transfers

If Cruisy is involved in a merger, acquisition, asset sale, financing, or other business transaction, your information may be transferred as part of that transaction. We will provide notice through the app or by email before your information is transferred and becomes subject to a different privacy policy, where reasonably practicable.

9. International data transfers

Cruisy is operated from the United States, and our service providers may process information in the United States and other countries. If you use Cruisy from outside the United States, your information will be transferred to and processed in countries that may have different data protection laws than your country of residence. By using Cruisy, you consent to this transfer. We take steps to ensure that information transferred internationally is protected in a manner consistent with this Privacy Policy and applicable law.

10. Data retention

We retain information for as long as necessary to provide the Service, fulfill the purposes described in this Policy, comply with legal obligations, resolve disputes, enforce agreements, and maintain security. If you delete your Cruisy account, we will delete or de-identify your personal information within a reasonable period, subject to retention needed for legal compliance, security, fraud prevention, or backup systems that cycle on a standard schedule. Trip content that you have shared with other users may remain visible to those users in their own trip history even after your account is deleted.

11. Security

We implement reasonable technical and organizational measures to protect your information against unauthorized access, loss, misuse, alteration, and disclosure. These measures include encryption of data in transit and at rest, access controls limiting who within our team and among our providers can access your data, and monitoring for suspicious activity. We require service providers who handle your data to maintain appropriate security standards.

No security system is perfect, and we cannot guarantee that unauthorized access, loss, or disclosure will never occur. If you believe your account has been compromised, contact us at team@trycruisy.com immediately and change your password through your authentication provider.

12. Children

Cruisy is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without verifiable parental consent, we will take steps to delete that information. If you are a parent or guardian and believe your child has provided personal information to Cruisy, please contact us at team@trycruisy.com so we can take appropriate action.

13. Your choices and rights

You can review and update your account information at any time through the profile and settings sections of the app. You can manage device permissions such as camera, contacts, calendar, location, and notifications through your device operating system settings. You can adjust sharing and visibility settings for your trips and passport through the app's privacy controls. You can opt out of non-essential notifications in the app's notification settings.

Depending on where you are located, you may have rights under applicable law to access, correct, delete, or restrict the processing of personal information we hold about you, or to object to certain processing activities. To exercise any of these rights, contact us at team@trycruisy.com. We will respond within the time period required by applicable law. We may ask you to verify your identity before fulfilling a request.

14. California and state privacy rights

If you are a California resident, you may have additional rights under the California Consumer Privacy Act ("CCPA") and related regulations, including the right to know what personal information we collect and how it is used, the right to request deletion of your personal information, the right to opt out of the sale of your personal information (note: Cruisy does not sell personal information), and the right not to be discriminated against for exercising your privacy rights. To make a request under the CCPA or any other applicable state privacy law, contact us at team@trycruisy.com.

15. Updates and contact

We may update this Privacy Policy from time to time as Cruisy evolves. If we make material changes, we will notify you through the app, on the Cruisy website, or by email before the changes take effect. The date at the top of this Policy reflects when it was last revised. Your continued use of Cruisy after the effective date of changes constitutes your acceptance of the updated Policy.

If you have questions, concerns, or requests related to this Privacy Policy or your personal information, please contact us at team@trycruisy.com.