Privacy Policy

Overview

Continuum ("we", "our", "us") is a personal travel management application available at gocontinuum.app and as native apps on iOS and Android. This policy describes what data we collect, how we use it, and which third-party services process it on our behalf.

Information we collect

When you create an account and use Continuum, we collect and store:

• Account information — your name and email address. You can create an account using email + password, a magic-link sent to your email, Sign in with Apple, or Sign in with Google.
• Travel data — trips, flight segments, hotel bookings, activities, rental cars, dates, destinations, and confirmation numbers you add or import.
• Expense data — receipts (including photos you snap or upload), merchants, amounts, currencies, dates, categories, and notes.
• Forwarded email content — when you forward a booking email to your personal @gocontinuum.app address, we store the raw email text (up to 10KB) so we can parse it and so you can review the source. We do not access your inbox unless you explicitly connect Gmail (see "Optional integrations" below).
• Loyalty programs — airline, hotel, rental, and credit card programs you choose to link, including your member numbers, balances, tier status, and reward vouchers.
• Expense-split data — names and emails of companions you split expenses with, plus the expenses themselves.
• Push notification tokens — if you enable notifications, the device/browser endpoint required to send them.

How we use your information

Your data is used solely to provide and improve the Continuum service:

• Display and organize your trips, expenses, and loyalty status.
• Parse forwarded emails and uploaded receipts into structured trip/expense data using AI (see "Third-party services" below).
• Generate expense reports as PDFs, optionally emailed to a recipient you specify.
• Send push notifications for booking changes, expiring vouchers, and trip reminders.
• Greet you by name and personalize the dashboard.
• Diagnose and fix bugs that affect your account.

Third-party services

Continuum operates on top of several third-party services. We carefully selected providers that respect data privacy and have data processing agreements in place.

• Supabase — hosts our primary database (Postgres) and authentication on AWS infrastructure. All your account data, trips, expenses, and receipts are stored here with row-level security so only you can access your own rows.
• Vercel — hosts the web application and serverless functions; request logs may transit Vercel.
• Anthropic (Claude API) — when you forward a booking email, upload a receipt for OCR, or drag in a PDF/Word itinerary, the content is sent to Anthropic's Claude API for AI parsing. Per Anthropic's API agreement, inputs are not retained for model training by default. We do not send any data to Claude that you did not explicitly trigger.
• Resend — sends outbound emails (e.g. expense reports you forward to a recipient). Resend receives the recipient address, your name + reply-to email, and the PDF attachment.
• Cloudflare — DNS and inbound email routing. Forwarded emails to @gocontinuum.app addresses transit Cloudflare before being processed.
• PostHog — product analytics. We log anonymous events such as which features you use, identified by your user ID and email so we can troubleshoot user-reported issues. PostHog is configured as first-party analytics and does not share data with advertising networks.
• Sentry — error and crash monitoring. When the app errors, we send a stack trace and your user ID to Sentry so we can diagnose what went wrong. No data is collected when the app runs normally.
• Google OAuth — optional sign-in provider. If you choose "Sign in with Google", Google verifies your identity and returns your name and email.
• Apple Sign-in — optional sign-in provider. If you choose "Sign in with Apple", Apple verifies your identity. Apple offers a relay email if you choose not to share your real email — we honor that.
• Google Maps Places API — used for city / hotel autocomplete when adding bookings manually. Queries you type are sent to Google but are not persisted by us.

Optional integrations

Continuum offers integrations that require additional permissions, all opt-in:

• Gmail import — if you explicitly authorize Continuum to read your Gmail, we filter for travel-related messages (matching airline, hotel, and booking-pattern keywords) and parse those into trips. We do not read messages outside that filter. You can disconnect at any time in Settings or revoke access in your Google Account.
• Camera / Photo library (iOS / Android native apps) — when you tap "Snap Receipt", we request camera access; when you pick a receipt photo from your library, we request photo library access. Permissions are requested only when triggered and are not used for any other purpose.
• Push notifications — when you opt in, we store a device-specific subscription endpoint so we can send notifications about your trips and vouchers.

Data we do not collect

We explicitly do not collect:

• Precise location (GPS).
• Coarse location (cell tower / Wi-Fi).
• Health or fitness data.
• Payment or financial data — Continuum is free; there are no in-app purchases or stored payment methods.
• Your iOS or Android contacts. When you add an expense-split companion, you type their email manually.
• Advertising identifiers (IDFA, AAID) — we have nothing to advertise.
• Browsing or search history outside of Continuum.

Tracking

Continuum does not share data with third-party data brokers, does not fingerprint devices, and does not combine your data with third-party data for advertising. We do not "track" you in the sense Apple defines the term. All analytics are first-party.

Data storage and security

Your data is stored in Supabase (Postgres on AWS) with row-level security ensuring only you can access your own rows. All client–server traffic is over HTTPS. Anthropic, Sentry, PostHog, and Resend each receive only the specific data described above, over HTTPS, and are governed by their own data processing agreements.

Data retention and deletion

Your data is retained as long as your account is active. You can permanently delete your account and all associated data directly from the app: Settings → Account → Danger Zone → Delete Account. This action is irreversible and removes all data tied to your user ID (trips, expenses, receipts, forwarding addresses, linked programs, vouchers, expense reports, split groups) plus your authentication record. Deletion typically completes within a few seconds.

If you cannot reach the app for any reason, you can also request deletion by emailing the address below.

Your rights

You have the right to:

• Access your personal data (Settings → Account → Export My Data downloads a JSON archive).
• Correct inaccurate data.
• Permanently delete your account and data (Settings → Account → Delete Account).
• Disconnect optional integrations (Gmail in Dashboard; camera / photos / notifications in OS Settings; Apple/Google sign-in by deleting your account).
• Contact us with questions or complaints.

Children's privacy

Continuum is not directed at children under 13 (or under 16 in the EEA / UK). We do not knowingly collect data from children.

International users

Continuum is operated from North America. By using the app, you consent to your data being transferred to and processed in the United States and other jurisdictions where our third-party processors operate, including those listed above.

Contact

For privacy-related questions, requests for access or deletion, or complaints, contact us at contact@gocontinuum.app.

Changes to this policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated effective date. Material changes will be highlighted in the app.