Privacy Policy

Last updated: October 2025

1. Overview

Passport is a mobile app that lets you keep track of the places you’ve visited by marking them on beautiful maps. Most of the data you enter stays on your device. Some minimal information is stored online so that your friends can see which countries you have visited and your current XP level.

2. Data We Collect

• Visited places: Saved locally on your device. These include the names of places you’ve added (e.g., Paris, Rome). We do not collect this information on our servers.
• Country codes: If you add friends, we upload only the ISO country codes of the countries you’ve visited to Firebase. This allows your friends to see which countries you’ve been to. We do not upload visit dates, notes, or detailed location data.
• XP level: Your current XP (experience points) is also stored in Firebase so that your friends can see your level. XP is calculated locally on your device.
• Account information: To use Firebase, users sign in with Apple. Firebase stores basic account information such as your email address, username, and profile photo (compressed). This data is used only to create and maintain your user account. We do not use this information for analytics, advertising, or any commercial purpose. Profile photos are not reviewed by us, but Firebase may automatically filter inappropriate images.

3. How We Use Data

• To synchronize visited countries with your friends.
• To display your XP level to your friends.
• To enable sign‑in with Apple and maintain your user account in Firebase.

We do not use your data for analytics, advertising, or any commercial purpose.

4. Data Storage & Security

Your visited places are stored locally on your device. Country codes and XP are stored in Firebase to enable sharing with friends. Firebase provides secure data storage and transmission. We do not share this data with any third parties.

5. Legal Basis (GDPR)

Under the GDPR, the legal basis for processing the minimal online data (country codes and XP) is your consent, which you give by adding friends and choosing to share this information. The legal basis for processing authentication data (email, username, profile photo) is Article 6(1)(b) GDPR (performance of a contract), as it is necessary to provide you with account functionality.

6. Your Rights

You can stop sharing at any time by removing friends or clearing your data in the app. You can also request deletion of any online data by contacting us at crew@passport-app.com.

You can also permanently delete your account and all associated data (including Firebase authentication data, country codes, and XP) through the in‑app “Delete Account” option. When you do this, all your data is removed from our systems.

7. Contact

For any questions about this privacy policy or data handling, you can reach us at:

Upsilon Software UG (haftungsbeschränkt)
Denninger Strasse 110
81925 München, Germany
Email: crew@passport-app.com

← Back to homepage