Global privacy notice · Effective July 14, 2026
How UpTrip handles your information.
What UpTrip collects, why it is needed, who receives it, how long it is kept, and the choices available to you.
Who is responsible
UpTrip Inc. is the controller or accountable organisation for UpTrip data. The accountable contact is the UpTrip Privacy Lead. Use the tracked privacy request channel or email privacy@uptrip.com.
Information we collect
| Category | Examples and source | Required? |
|---|---|---|
| Identity and contact | Name, verified email, account identifier; supplied by you and Auth0. | Email and account identity are required for account access. Waitlist name and email are required to respond. |
| Loyalty profile | Program, tier, points, qualifying nights, certificates and status dates; entered by you or, only with explicit permission, retrieved through AwardWallet. | Optional. UpTrip never asks for a loyalty password. |
| Trips and preferences | Destination, dates, guests, budget, requested hotel features, notes, saved hotels and searches; supplied by you. | Optional except fields needed for a match you request. Describe the hotel feature you need, not a diagnosis, medical history or other health detail. |
| Support, traveler notes and privacy requests | Support messages, first-hand hotel-experience notes, privacy requests and operator status; supplied by you and UpTrip operators. Traveler notes are not published automatically. | Optional, except details needed to investigate or respond to a request. |
| Eligibility and legal confirmations | The applicable Terms, Privacy Notice and adult-eligibility versions, the minimum age confirmed, the confirmation times, and any linked invitation; supplied by you. | Required to join the waitlist or activate account access. UpTrip records the confirmation, not your birth date. |
| Derived information | Match scores, ranking components and caveats generated from your selected inputs and the verified property catalog. | Created when you ask UpTrip to calculate matches. |
| Technical and security | Session state, consent choices, timestamps, IP/device information handled by infrastructure, provider status, transactional-email delivery results and security audit events. | Necessary to deliver and protect the service; optional tracking remains off by default. UpTrip does not retain email-open or link-click events. |
| Official outbound-link data | When you open an official hotel or loyalty-program page, that destination may receive the request, referrer, device/network data, and its own cookies under its privacy notice. UpTrip does not add referral or affiliate identifiers to those links. | Optional. UpTrip’s public guides never ask for a loyalty password, account number, tax identifier, or payment details to open an official link. |
Why we use information
| Purpose | Information | GDPR/UK basis where applicable |
|---|---|---|
| Provide account access, loyalty matching, trips, shortlists, support and requested editorial follow-up | Identity, loyalty profile, trip/preferences, support and traveler notes | Performance of a contract or steps you request before a contract; legitimate interests in responding to voluntary editorial contributions. Publication requires separate follow-up and permission. |
| Connect an optional loyalty-data provider | Provider identifier, approved scopes, balances and status | Your consent. You may withdraw it and disconnect. |
| Secure, debug and prevent abuse | Technical events, session and audit information | Legitimate interests in service security and legal compliance. |
| Send requested transactional messages | Email, invitation/support state and delivery result | Contract steps and legitimate interests. Marketing requires a separate valid permission. |
| Comply with law and defend rights | Relevant account, request and audit records | Legal obligation and legitimate interests. |
UpTrip does not sell personal information, share it for cross-context behavioural advertising, use it for targeted advertising, or use sensitive data to infer characteristics. It does not send promotional email without the permission and unsubscribe controls required where you live.
Who receives information
Access is limited to authorised UpTrip operators and service providers needed to run the product. Providers that are active or prepared for activation are Vercel (hosting), Auth0 by Okta (authentication), Neon (database), Resend (transactional email), and AwardWallet (public point values and optional user-authorised account access). Their exact role and deployment state are listed on the subprocessor page. UpTrip may also disclose information when required by law, to protect people or the service, or as part of a transaction with appropriate notice and safeguards.
International transfers
Providers may process information outside your province, state, country, the EEA, or the UK. Before personal data is enabled with a provider, UpTrip requires an appropriate processing agreement and, where relevant, an adequacy decision, the EU Standard Contractual Clauses, the UK Addendum or another lawful transfer mechanism. Transfer details can be requested through Privacy Choices.
How long we keep information
| Record | Standard period |
|---|---|
| Active account and loyalty profile, trips and saves | While the account is active, then deleted or de-identified after a verified deletion request, subject to narrow legal/security holds. |
| Waitlist request | 12 months after the last action for requested/declined entries; up to 24 months while approved or invited; 90 days after conversion. |
| Waitlist legal confirmation | Kept with the associated waitlist request and deleted when that request is deleted. |
| Account legal confirmation | Kept with the account and deleted with it, subject to a narrow legal hold where required to establish or defend rights. |
| Accepted, revoked or long-expired invitation | 90 days after it is no longer usable. |
| Consumed or expired provider authorisation state | 30 days. |
| Transactional delivery result | 90 days. |
| Resolved support, traveler-note or privacy request and audit record | 24 months, unless a shorter request is granted or law requires a longer hold. A note selected for publication is handled under the separate permission agreed with its contributor. |
| Cookie consent choice | 12 months, or until you clear it or make a new choice. |
A daily deletion process enforces these periods once production storage is active. Backups may retain encrypted copies for their documented recovery window before automatic expiry.
Matching and automated decisions
UpTrip uses a versioned, deterministic policy to rank hotels using destination fit, stated needs, preferences, loyalty alignment and comparable budget information. Results show components and caveats and are decision support only. UpTrip does not make decisions that produce legal or similarly significant effects, determine loyalty-program eligibility, set a hotel price, or make a booking.
Your privacy rights
Depending on where you live, you may request access, a portable copy, correction, deletion, restriction, objection, consent withdrawal, or an appeal of a denied request. You may also opt out of sale, sharing, targeted advertising or certain profiling and limit sensitive-information use. UpTrip does not sell or share personal information or use it for targeted advertising. UpTrip records those requests so the choice follows future changes. You will not receive discriminatory treatment for exercising a right.
Use Your Privacy Choices. UpTrip targets acknowledgement promptly and completion within 30 days, subject to identity verification and any lawful extension. Signed-in users can also use Data controls to download a machine-readable account export. UpTrip will request only the information reasonably needed to verify you and will not act on destructive requests until identity is confirmed.
Regional information
EEA and UK notice explains GDPR/UK GDPR rights, lawful bases, complaints, and representatives. California and US state notice provides the notice at collection, preceding-12-month disclosures, state rights, appeals, and Global Privacy Control response. Canada notice describes PIPEDA accountability, consent, access, challenge, and breach handling.
Cookies and browser signals
Necessary storage supports consent memory, security and sign-in when requested. Optional categories default off. No advertising or analytics tracker is installed. The preference centre detects Global Privacy Control and forces analytics and marketing off. See the Cookie Policy and reopen cookie settings at any time.
Official outbound links
Outbound hotel and loyalty-program links on the current site are ordinary official links without referral or affiliate identifiers. When you choose to follow one, the destination provider processes the request under its own privacy notice and may receive the referrer, device or network information, and cookies or other technologies it controls. UpTrip does not install third-party advertising or affiliate tracking scripts on its pages and does not record outbound-link clicks. Do not send UpTrip loyalty credentials, account numbers, payment details, tax details, or screenshots containing them.
Security and incidents
UpTrip uses encrypted transport, managed authentication, server-side authorisation, scoped provider access, security headers, isolated secrets and auditable operator actions. No internet service can promise absolute security. Suspected incidents are assessed under applicable breach rules, documented, and reported to regulators and affected people when required.
Children
UpTrip is for adults aged 18 and over. We do not knowingly collect personal information from children. Ask us to remove information submitted by a child.
Changes
Material changes will be posted here with a new effective date and, when the change affects an existing permission or account materially, communicated through the service or email. UpTrip will not silently repurpose information in a way incompatible with this notice.
Questions and complaints
Contact the UpTrip Privacy Lead through Your Privacy Choices or privacy@uptrip.com. Select “Data-protection complaint” for a complaint rather than a rights request. Complaints are acknowledged and investigated, with progress and outcome recorded.
