Privacy policy

Last updated: February 2026

Your travel research is personal. We treat it that way. This policy explains what we collect, why, and what happens to it. No surprises.

What we collect

  • Account details: Your email address when you sign up.
  • Content you save: URLs, page titles, collection names, notes, and travel preferences you add to your account.
  • Browser extension data: When you click save in our extension, we capture the URL and page title of that page.
  • Analytics: Basic usage data (pages visited, features used) via PostHog, hosted in the EU. You can disable analytics cookies in your browser.

How we use it

  • To run the service: storing your saved content, authenticating your account, displaying your collections.
  • To extract metadata: when you save a URL, we send it to Jina Reader API to pull in titles, descriptions, and images.
  • To generate itineraries: if you choose to use our AI features, your collection data is sent to Google Gemini. This is opt-in — it only happens when you ask for it.
  • To improve the product: anonymous analytics help us understand which features people use.

Third parties

We use a small number of services to run Epic Itineraries:

  • Supabase (EU region) — database and authentication
  • Vercel — hosting
  • Jina Reader API — extracting metadata from saved URLs
  • Google Gemini — AI itinerary generation (opt-in only)
  • PostHog (EU instance) — analytics

We do not sell your data. We do not share it with advertisers. These services only receive what they need to do their job.

Cookies

We use authentication cookies (Supabase) to keep you logged in, and analytics cookies (PostHog) to understand how the product is used. You can disable analytics cookies in your browser settings without affecting how the app works.

Your data, your control

Your content stays until you delete it. When you delete something, it’s soft-deleted and permanently removed after 30 days. You can export or delete all your data at any time. Our primary database is hosted in the EU (Supabase EU region), in line with GDPR requirements.

Changes

If we update this policy, we’ll note the date at the top. For significant changes, we’ll let you know by email.

Questions?

Reach us at hello@epic-itineraries.com