TrailLegs — Privacy Policy

Effective date: 10 April 2026 · Last updated: 14 April 2026 · Version 1.1

1. Introduction

This Privacy Policy explains what data the TrailLegs app ("App") collects, why, and how it is used.

The short version: TrailLegs collects minimal data. There is no account, no email, and no user profile. You may optionally set a trail name that is shown alongside your community reports. The App does not track you for advertising.

Controller:

Trail Legs
Chamber of Commerce (KVK) registration number: 84235381
Country: Netherlands
Contact: support@traillegs.app
Website: traillegs.app

As a Netherlands-based developer, we comply with the General Data Protection Regulation (GDPR) and Dutch data protection law (UAVG).

2. What Data We Collect

2.1 Data Collected Automatically

Anonymous Device Identifier

When you use community features (submitting trail reports, confirming or flagging reports), the App generates a random identifier (UUID) stored locally on your device. This identifier:

Is not linked to your Apple ID, Google account, name, email, or any personally identifiable information;
Is used to attribute your reports and enforce rate limits (max 20 reports per day);
Is transmitted to our server only when you interact with community features.

Legal basis (GDPR): Legitimate interests — preventing abuse and ensuring service integrity.

IP Address (transient)

Our server temporarily logs your IP address for rate-limiting purposes on API requests. This data is stored in memory for a rolling window of one hour and is not written to a database or retained beyond that window.

Legal basis (GDPR): Legitimate interests — preventing abuse.

App Metadata with Community Reports

When you submit a community report, the following metadata is stored alongside it:

App version (e.g. "2.0.0");
Device locale (e.g. "en-US").

This helps us debug issues and understand report quality. It is not linked to your identity.

No Analytics

We do not collect analytics, crash reports, or usage metrics on our own servers. We do not use any third-party analytics SDK (no Firebase, Amplitude, or similar).

2.2 Data You Provide Voluntarily

GPS Location

The App requests access to your device's GPS location only when you enable location features (e.g. to show your position on the map, to auto-scroll weather to your current stage). Location data is:

Processed in real time on your device;
Never stored or logged by us;
Not transmitted to our servers during normal map use.

Exception: When you submit a community report, your device's GPS coordinates are included in the submission for quality-assurance purposes. These coordinates are not stored in our database — only the POI's trail coordinates (which come from the trail data, not your device) are persisted.

You can use the App without granting location access. Navigation features will use manual stage selection instead.

Legal basis (GDPR): Consent — you explicitly grant location permission in your device settings.

Trail Name (optional)

You may set a trail name (nickname) in the App's settings. If set, this name is:

Stored locally on your device;
Included with any community report you submit;
Visible to all App users alongside your reports.

You can change or remove your trail name at any time in Settings. If you remove it, future reports will be anonymous, but your trail name remains on previously submitted reports until they expire.

Legal basis (GDPR): Consent — you voluntarily choose to set a trail name.

Community Reports

When you submit a trail condition report (water source status, trail condition, etc.), we store:

The report text you write;
Your trail name (if set);
The POI's trail coordinates (latitude, longitude from trail data);
A timestamp;
Your anonymous device identifier;
App version and device locale.

Reports are visible to all App users and stored on our server (traillegs.app, hosted in the EU).

Legal basis (GDPR): Consent — you voluntarily submit the report.

2.3 Data Collected by Third-Party Services

The App integrates third-party services that process data independently. We have no control over their data practices. Review their privacy policies:

Mapbox

Purpose: Map tile rendering, offline map downloads.
Data sent: Tile requests, which include approximate map viewport coordinates. Your precise GPS position is not sent unless you centre the map on your location.
Privacy policy: mapbox.com/legal/privacy

RevenueCat

Purpose: Subscription management and receipt validation.
Data sent: Anonymous device ID generated by RevenueCat (separate from our community device ID), App Store or Google Play purchase receipts, subscription status. RevenueCat does not receive your name, email, Apple ID, or Google account from us.
Privacy policy: revenuecat.com/privacy

Apple StoreKit / App Store & Google Play Billing

Purpose: Processing in-app purchases and subscriptions.
Data sent: Payment and purchase data per Apple's and Google's standard practices. We receive only subscription status (active/inactive) — no payment details.
Privacy policy: apple.com/legal/privacy · policies.google.com/privacy

Open-Meteo

Purpose: Weather forecasts and snow depth data.
Data sent: GPS coordinates of trail stages you are viewing (to fetch forecasts for those locations). Open-Meteo is a free, open-source weather API. No account or API key required.
Privacy policy: open-meteo.com/en/terms

RainViewer

Purpose: Precipitation radar imagery (available to all users).
Data sent: Standard map tile requests. No GPS coordinates or API key sent.
Privacy policy: rainviewer.com/privacy

Rainbow.ai

Purpose: High-resolution precipitation radar (Pro subscription only).
Data sent: Tile requests with an API key. No GPS coordinates sent — tiles use standard tile scheme.
Privacy policy: rainbow.ai/privacy-policy

NASA GIBS

Purpose: Snow cover satellite imagery (MODIS/VIIRS sensors).
Data sent: Tile requests only. NASA is a US government service; no personal data is required or transmitted.
Privacy policy: nasa.gov/privacy

Expo / EAS Updates

Purpose: Delivering over-the-air JavaScript bundle updates to keep the App current between app store releases.
Data sent: When the App checks for updates, Expo's infrastructure may receive device metadata such as platform, app version, and runtime version. This is managed by Expo (a service of Vercel Inc.).
Privacy policy: expo.dev/privacy

3. What We Do NOT Collect

No email address or real name requirement (the optional trail name is a self-chosen nickname)
No Apple ID, Google account, or social login credentials
No account or user profile
No browsing history or cross-app tracking
No advertising identifiers (IDFA)
No contacts, photos, or media
No microphone or camera access
No payment card details (handled entirely by Apple and Google)
No health data, biometrics, or location history

The App does not use cookies or website tracking.

4. How We Use Data

Data	Purpose	Legal Basis
Anonymous device ID	Rate limiting, report attribution	Legitimate interests
IP address (transient, 1 hour)	API rate limiting	Legitimate interests
GPS location (when granted)	On-trail navigation, weather for current position	Consent
Trail name (optional)	Displayed with your community reports	Consent
Community report content + coordinates + timestamp	Trail condition information for other hikers	Consent
App version + locale (with reports)	Debugging and quality assurance	Legitimate interests
Subscription status (via RevenueCat)	Unlocking subscribed features	Contract performance

We do not use your data for advertising, profiling, or automated decision-making.

5. Data Sharing

We do not sell, rent, or trade your data. Data sharing is limited to:

Third-party services listed in Section 2.3, solely to provide the App's functionality;
Legal compliance: We may disclose data if required by law, court order, or government authority. We will notify you where legally permitted.

6. Data Storage and Retention

Community Reports

Stored on our EU-hosted server (traillegs.app). Reports have an expiry mechanism — older reports are automatically retired based on category and activity. You may request deletion by contacting support@traillegs.app with your report details and approximate submission date. Because reports are anonymous, we may need identifying details to locate the specific report.

Anonymous Device ID

Generated locally on your device. Sent to our server only with community report interactions. Not stored independently outside of report records.

IP Addresses

Retained in server memory for up to one hour for rate limiting. Not written to a database.

GPS Location

Processed in real time on your device. Not stored by us. Device GPS coordinates included in community report submissions are discarded on receipt and not persisted.

Subscription Data

Held by Apple, Google, and RevenueCat. We do not maintain our own copy of your subscription history.

7. Data Security

We use HTTPS for all API communication and take reasonable technical measures to protect data on our servers. No system is completely secure — do not include sensitive personal information in community report text.

8. International Data Transfers

Our server is hosted in the EU. Some third-party services (RevenueCat, Mapbox, Expo, NASA) are US-based. Data transfers to these services are covered by Standard Contractual Clauses or other GDPR-compliant transfer mechanisms as applicable. Refer to each service's privacy policy for details.

9. Children's Privacy

The App is not directed at children under 16. We do not knowingly collect data from children under 16. If you believe a child under 16 has submitted personal data, contact support@traillegs.app and we will delete it promptly.

10. Your Rights Under GDPR

If you are in the EU or EEA, you have the right to:

Access (Art. 15) — request a copy of your personal data;
Rectification (Art. 16) — request correction of inaccurate data;
Erasure (Art. 17) — request deletion of your data;
Data portability (Art. 20) — request your data in a machine-readable format;
Object (Art. 21) — object to processing based on legitimate interests;
Restrict processing (Art. 18) — request restriction in certain circumstances;
Withdraw consent — revoke GPS permission in your device settings, or request deletion of submitted community reports.

Because the App collects minimal data and uses no accounts, we may hold very little or no data identifiable to you.

How to exercise your rights: Email support@traillegs.app. We respond within 30 days. No charge.

Complaint: You may lodge a complaint with the Dutch data protection authority:

Autoriteit Persoonsgegevens
Postbus 93374, 2509 AJ Den Haag, Netherlands
www.autoriteitpersoonsgegevens.nl — Tel: +31 70 888 85 00

11. App Store Privacy Labels & Google Play Data Safety

In summary:

Data Used to Track You: None
Data Linked to You: None (all data is anonymous)
Data Not Linked to You: Anonymous device identifier (community reports), diagnostics (app version/locale)

12. Changes to This Policy

We may update this Privacy Policy. When we do, we update the "Last updated" date above. For material changes, we provide notice within the App. Continued use after changes take effect constitutes acceptance of the updated policy.

13. Contact

For questions, rights requests, or concerns:

Trail Legs
Email: support@traillegs.app
Website: traillegs.app

We aim to respond within 5 business days, and to formal GDPR requests within 30 days.