Beta

Privacy Policy

Our privacy policy and how we use your data

Last updated: April 1, 2026

1. Who We Are

Plano Travel (“we”, “us”, “our”) operates the website plano.travel. We are based in the European Union and are committed to protecting your personal data under the General Data Protection Regulation (GDPR) and applicable EU data protection laws.

Contact: hello@plano.travel

2. What Data We Collect

Account Data

When you create an account, we collect:

Your email address
Your name (if you sign in with a third-party provider)
Authentication tokens to keep you logged in

Trip Data

When you use our planning features, we collect:

Trip preferences (destination, dates, travel group, interests, pace)
Messages from your trip planning conversations
Generated itineraries and any edits you make

Usage Data

With your consent, we collect analytics data including:

Pages visited, features used, and interactions
Device type, browser, and operating system
Approximate location (country/region level)

Payment Data

When you purchase a Trip Pass, we store only what is necessary to manage your entitlement:

Your Stripe customer ID
Purchase history (date, amount, product)
Entitlement status (active, expired, disputed)

Plano does not store your card number, CVV, or bank account details. All payment processing is handled by Stripe, who act as a data processor under their own privacy policy.

Error and Performance Data

To keep the service running smoothly, we automatically collect error reports and performance data. This is essential for service operation and does not require separate consent.

3. How We Use Your Data

Service delivery: To generate itineraries, save your trips, and provide the planning features you request
Account management: To create and manage your account and communicate about your account
Service improvement: To understand how the service is used and improve features (with your consent)
Error monitoring: To detect and fix technical issues
Security: To protect against abuse, fraud, and unauthorized access

4. Legal Basis for Processing

Contract performance: We process your trip data to provide the service you signed up for
Consent:Analytics and usage tracking — you can opt out at any time
Legitimate interest: Error monitoring, security, and service stability

5. Third-Party Services

We work with trusted third-party providers to operate Plano Travel. These include:

Cloud infrastructure providers for hosting, authentication, and data storage
Analytics services to understand how the service is used (with your consent)
Error monitoring services to detect and fix issues
Mapping and location services for venue and map data
AI services to generate itineraries and recommendations
Stripe for payment processing — Stripe handles all card data under their own privacy and security standards

Our data is primarily hosted within the EU. Where data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place as required under GDPR.

6. Data Retention

Account data: Retained while your account is active. Deleted when you request account deletion.
Trip data: Retained while your account is active. You can delete individual trips at any time.
Payment & accounting records: Retained for 7 years to meet tax and accounting obligations. These records are kept even if you delete your account, and are anonymised where feasible.
Analytics data: Retained for up to 14 months.
Error data: Retained for up to 90 days.

7. Your Rights

Under the GDPR, you have the right to:

Access— request a copy of your personal data
Correction— fix inaccurate personal data
Deletion— request deletion of your personal data
Restriction— ask us to limit processing of your data
Portability— receive your data in a reusable format
Objection— object to processing based on our legitimate interests
Withdraw consent — withdraw analytics consent at any time

To exercise any of these rights, contact us at hello@plano.travel. We will respond within 30 days.

8. Data Security

We use appropriate technical and organizational measures to protect your data, including encrypted connections, access controls, and regular security monitoring.

9. Children's Privacy

Plano Travel is not intended for children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the “Last updated” date at the top of this page.

11. Supervisory Authority

If you believe we have not adequately addressed your data protection concerns, you have the right to lodge a complaint with your local EU data protection authority.

12. Contact

For privacy-related questions or requests, contact us at hello@plano.travel.