Marmelstein.ai AI + Mobile

Trips with Friends Privacy Policy

How we handle data and privacy.

Last updated: January 2026

This Privacy Policy explains how Trips with Friends (the “Service”) collects, uses, and shares information. We are a sole trader based in the United Kingdom and act as the data controller for personal data we process.

Information We Collect

Account Information

  • Email address, display name, and profile photo.
  • Apple Sign In identifiers if you use Apple Sign In.

Trip and Expense Data

  • Trip details (names, dates, destinations, currencies).
  • Receipts and expense entries (amounts, merchants, dates, categories).
  • Receipt images and shared files.
  • Expense splits, settlements, and notes.

Location Data

  • Optional GPS coordinates when you tag receipts or locations.
  • Destination information you enter.

Device and Usage Data

  • Device identifiers for notifications.
  • App usage analytics and crash reports.
  • IP address, app version, and device model.

How We Use Your Information

We use your information to:

  • Provide and maintain trip management and expense splitting features.
  • Sync data across devices.
  • Send notifications about trip activity.
  • Improve performance, reliability, and security.
  • Respond to support requests.

Legal Bases for Processing (UK GDPR / EU GDPR)

We process personal data when:

  • It is necessary to perform a contract with you (providing the Service).
  • We have a legitimate interest (improving and securing the Service).
  • You consent (for optional permissions like location or notifications).
  • We need to comply with legal obligations.

Data Sharing

We do not sell your personal data. We share data only:

  • With trip members you choose to collaborate with.
  • With service providers that host or support the Service.
  • When required by law or to protect rights and safety.

Third-Party Services

We use trusted providers to operate the Service, including:

  • Analytics and performance monitoring (e.g., Amplitude).
  • Crash reporting (e.g., Sentry).
  • Authentication providers (e.g., Apple Sign In).
  • Cloud storage for receipt images and profile photos.

These providers process data on our behalf under contractual safeguards.

International Transfers

Your data may be processed outside the UK or EEA. When we transfer data internationally, we use appropriate safeguards such as standard contractual clauses or equivalent mechanisms.

Data Retention

We retain personal data for as long as your account is active or as needed to provide the Service. We may retain certain data longer to comply with legal obligations, resolve disputes, or enforce agreements.

Security

We use technical and organizational measures to protect data, including:

  • Encrypted transmission (HTTPS).
  • Secure storage for authentication tokens (device Keychain).
  • Time-limited access URLs for images.

Your Rights

Depending on where you live, you may have rights to:

  • Access, correct, or delete your personal data.
  • Object to or restrict processing.
  • Receive a copy of your data (data portability).
  • Withdraw consent where processing is based on consent.

To exercise your rights, contact us at privacy@marmelstein.ai.

California Privacy Rights

If you are a California resident, you have rights to know, delete, and correct personal information, and to opt out of the sale or sharing of personal information. We do not sell or share personal information as defined by the CPRA.

Children’s Privacy

The Service is not intended for children under 13 (or the minimum age required in your country). We do not knowingly collect personal data from children.

Device Permissions

The app may request access to:

  • Camera (to photograph receipts).
  • Photo library (to select images).
  • Location (to tag receipts).
  • Notifications (for trip updates).

Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version and change the “Last updated” date.

Contact

Questions about privacy? Email privacy@marmelstein.ai.