Privacy Policy

Who we are

Journli (“we”, “our”, “us”) provides a travel planning application that lets you import trip-related emails to organize itineraries.

Contact

Email: karankumar230@gmail.com

Address: (update if you want to publish a business address; otherwise include city/state/country)

Data we collect and why

• Account data: email address, basic profile info (to create and manage your account).
• App usage data: logs/analytics needed to operate, secure, and improve the service.
• Travel data you provide or import (e.g., trips, stops, notes, attachments) to power itinerary features.

Gmail data (via Google OAuth)

• Scope used: https://www.googleapis.com/auth/gmail.readonly (read-only).
• Purpose: detect travel-related messages (flights, lodging, activities), extract trip details (dates, locations, confirmation numbers, times, reservation metadata), and create/update your itinerary.
• We do not send email, modify email, or access Gmail outside of this read-only scope.
• We do not store full message bodies indefinitely; we store only the extracted trip data and minimal metadata needed for deduplication and troubleshooting (e.g., message ID, parse hash).

How we use your data

• Provide and improve itinerary and collaboration features.
• Prevent duplicates and maintain trip accuracy.
• Secure the service (fraud/abuse prevention, error debugging).
• Communicate about service-related changes.

How we share your data

• We do not sell your data.
• We share only with essential service providers (e.g., hosting, databases, error logging) under confidentiality and data-processing terms.
• If required by law, we may disclose data after following applicable legal processes.

Data retention

• Extracted trip data is retained while your account exists or until you delete it.
• Processed email metadata (e.g., message IDs, parse hashes) is retained to prevent duplicate imports and may be purged periodically.
• If you delete your account, we delete associated trip data and metadata, subject to minimal legal/operational retention (e.g., logs).

Your choices and controls

• Revoke Gmail access at any time in your Google Account (Security → Third-party access) or via the app’s disconnect feature.
• Delete trips/stops or your entire account to remove stored trip data.
• Request data deletion or access via karankumar230@gmail.com.

Security

Data is encrypted in transit (HTTPS). We apply access controls, least-privilege, and monitoring on our infrastructure. No method is 100% secure, but we strive to use industry-standard safeguards.

Children

The service is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect their data.

Changes

We may update this policy. Material changes will be posted here with a new effective date.