Privacy Policy
Effective Date: April 19, 2026 · Last Updated: May 31, 2026 · Last Reviewed: May 31, 2026
WayCrumb, Inc. · https://waycrumb.com
This Privacy Policy ("Policy") explains how WayCrumb, Inc. ("WayCrumb," "we," "us," or "our") collects, uses, discloses, protects, and retains information when you access or use the website, products, and services available at https://waycrumb.com and related applications (collectively, the "Service"). This Privacy Policy also includes information about cookies, tracking technologies, and specific consumer privacy rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).
By accessing or using the Service, you consent to the terms of this Privacy Policy.
1. Plain English Summary
WayCrumb is designed to help you plan, experience, and preserve meaningful travel memories with the people you trust. Here is a plain-language overview of our key privacy commitments. Please read the full Policy below for complete details.
- We do not sell your travel memories, private itineraries, or personal trip history to advertisers or data brokers.
- Your trips remain private unless you intentionally share them with others.
- You control who can view, edit, or collaborate on your trips.
- Location sharing is optional and can be disabled at any time in your device settings.
- Memory Vault content stays private until the unlock date and the recipients you choose.
- You can export or delete your data at any time.
- We use security measures designed to protect your information and reduce unauthorised access.
- We do not use your personal trip content to train public or third-party AI models.
- WayCrumb seeks to collect and retain only the information reasonably necessary to provide and improve the Service.
2. Information We Collect
2.1 Information You Provide Directly
- Account Information: name, email address, profile photo, username, and hashed password.
- Trip and Memory Vault Content: trips, destinations, pins, itinerary entries, notes, photos, videos, voice memos, and any other content you upload or create in the Service, including content marked for time-delayed delivery via the Memory Vault.
- Collaboration Data: invitations you send, members you add to a trip, comments, votes, and messages exchanged within a trip.
- Contact Information: communications you send to us, including support requests and feedback.
- Billing Information: payment and transaction data processed by our third-party payment providers. We do not store raw card numbers or full payment credentials.
2.2 Photo Metadata and Embedded Location Information
Photos, videos, and other media uploaded to the Service may contain embedded metadata ("EXIF data"), including timestamps, geolocation coordinates, device information, orientation data, and camera settings.
WayCrumb may process this metadata to organise memories, improve trip timelines, suggest memory placement, associate content with destinations, and enhance travel-related features within the Service.
How we handle EXIF data:
- Geolocation and other metadata are read at upload and stored separately from the media file itself in order to power trip features.
- Raw EXIF metadata embedded in your original files is not publicly exposed to other trip members.
- When content is exported or downloaded from the Service, metadata may remain embedded in exported files depending on format. You are responsible for reviewing media before sharing it outside the Service.
- You may disable geolocation tagging through your device or camera settings before capturing or uploading media.
2.3 Automatically Collected Information
When you use the Service, we may automatically collect:
- Usage Data: IP address, browser type, device identifiers, operating system, pages visited, features used, and timestamps.
- Location Data: approximate or precise location data you choose to share (for example, when adding a pin or capturing a memory). You can disable precise location sharing in your device settings at any time.
- Cookies and Tracking Technologies: small data files placed on your device to maintain session state, remember preferences, and enable core Service features. See Section 5 for full details.
2.4 Voice, Media, and Biometric Information
WayCrumb allows users to upload voice memos, videos, photos, and other media as part of trip planning and memory-preservation features.
WayCrumb does NOT:
- use facial recognition technology to identify users,
- create biometric identifiers or biometric profiles from uploaded media,
- collect voiceprints for identity analysis or authentication, or
- process biometric characteristics for surveillance purposes.
Voice recordings, photos, and media are used solely to provide and improve Service functionality, including storing memories, organising trips, enabling collaboration, and delivering Memory Vault experiences. If WayCrumb introduces biometric-related functionality in the future, we will update this Policy and provide any notices or consents required under applicable law, including the Illinois Biometric Information Privacy Act (BIPA) and similar state statutes.
2.5 Third-Party Sources
We may receive information about you from third-party partners such as analytics services, mapping providers, link-preview services, and integrations necessary for the Service to function. We handle such data in accordance with this Policy.
2A. Device Permissions
WayCrumb may request the following device permissions to provide core and optional features. You can manage or revoke permissions at any time in your device settings.
2A.1 Camera
We request access to your device's camera solely to allow you to capture photos for use within the app (for example, adding photos to a trip or place). Camera access is requested only when you initiate a photo capture action. We do not access your camera at any other time, and images captured are stored on your device or uploaded to your account at your direction.
2A.2 Photo Library
We request access to your photo library to allow you to select and attach existing photos to your trips or places within WayCrumb. We access only the specific photos you select and do not scan, index, or retain access to your broader photo library. You can revoke this permission at any time in your device settings.
2A.3 Microphone
We request access to your device microphone to support voice input features, such as dictating notes or using speech-based search. Microphone access is only active when you explicitly trigger a voice input feature. Audio captured is processed locally or via our speech recognition provider (see Section 2A.4 below) and is not stored beyond the duration of the session unless you choose to save the resulting text.
2A.4 Speech Recognition
When you use voice input features, audio may be sent to Apple's or Google's on-device or cloud-based speech recognition services depending on your device platform. This processing is governed by the respective platform's privacy policy. WayCrumb does not retain the raw audio after transcription is complete.
2A.5 Precise Location
We request access to your precise location to power core features of WayCrumb, including showing nearby places, creating location-tagged itinerary items, and surfacing relevant travel content based on where you are. Precise location is used only while the app is in use (foreground only) unless you explicitly grant always-on access. You can revoke location permission at any time in your device settings, though doing so will disable location-dependent features.
2A.6 Push Notifications
We may request permission to send push notifications to keep you updated on your trips, reminders you set, or relevant app updates. Push tokens (device identifiers used to deliver notifications) are stored securely on our backend and associated with your account. You can opt out of push notifications at any time through your device settings or within the app. Revoking notification permission does not affect your ability to use WayCrumb.
3. AI-Assisted Features and Recommendations
WayCrumb uses artificial intelligence, machine learning, and automated systems to improve the Service and enhance your travel experience. These features may include itinerary recommendations, destination and place suggestions, pacing and scheduling optimisation, collaborative trip planning assistance, travel summaries, smart organisation of memories and media, and future conversational or AI-assistant features integrated into the Service.
3.1 How We Use Your Data for AI Features
To provide these features, WayCrumb may analyse information such as places you save, itinerary structure, travel timing, preferences you explicitly provide, and interactions within shared trips. These systems are designed solely to improve your experience within WayCrumb and do not share outputs externally unless you choose to do so.
3.2 Our AI Commitments
WayCrumb does NOT:
- sell AI-generated behavioural profiles derived from your trips,
- sell your travel history to advertisers or data brokers,
- use your private trip content to train publicly available AI models, or
- allow third-party AI providers to independently reuse your private content for their own model-training purposes unrelated to delivering the Service to you.
Where we use third-party AI APIs to power recommendations or other features, those providers are bound by contractual obligations that prohibit them from using your content for independent model training. We will identify the categories of third-party AI providers we use in our subprocessor documentation, available on request or through our Trust and Privacy page where published.
AI-generated suggestions are intended to assist you but may occasionally contain inaccuracies, outdated recommendations, or incomplete information. You remain responsible for your own travel decisions. Where applicable, you may be able to disable certain personalisation or recommendation features within your account or privacy settings.
3.3 Third-Party Recommendations and Content Accuracy
WayCrumb may display or generate recommendations, listings, maps, destination information, restaurant suggestions, hotel information, travel insights, events, or other third-party content. This information may be produced through user activity, third-party providers, mapping services, AI-assisted systems, or publicly available information sources.
Travel information, recommendations, operating hours, availability, pricing, safety conditions, and third-party listings may change over time and may occasionally become inaccurate, incomplete, or outdated. WayCrumb provides such information for general informational and trip-planning purposes only and does not guarantee the accuracy, availability, quality, legality, safety, or suitability of third-party destinations, businesses, services, or recommendations. Users remain responsible for independently verifying travel details and making their own travel decisions.
4. How We Use Your Information
We use the information we collect for the following purposes:
- Providing, operating, maintaining, and improving the Service.
- Verifying and managing your account and authenticating your identity.
- Enabling collaboration features such as shared trip planning, invites, votes, comments, and real-time itinerary coordination.
- Operating the Memory Vault, including storing time-locked media and delivering it to designated recipients at the scheduled unlock date.
- Generating smart recommendations as described in Section 3.
- Processing payments and preventing fraud.
- Sending operational, administrative, or promotional communications. You may opt out of marketing messages at any time via the unsubscribe link in any email or through your account settings.
- Analysing usage patterns to improve functionality and develop new features.
- Enforcing our Terms of Service, securing the Service, and complying with legal obligations.
WayCrumb seeks to collect and retain only the information reasonably necessary to provide and improve the Service.
5. Cookie Notice and Tracking Technologies
5.1 What Are Cookies?
Cookies are small data files stored on your device that help us recognise your browser and enable features of the Service. We and our partners may also use similar technologies such as pixel tags and local storage. Under U.S. privacy laws including CCPA/CPRA, cookies are considered personal information and are subject to the rights described in Section 13.
5.2 How We Use Cookies
- Essential: maintaining your login session and basic Service functionality. These cookies are strictly necessary and cannot be disabled without affecting core features.
- Analytics: understanding how users interact with the Service (pages visited, features used) to improve performance and identify issues.
- Personalisation: remembering your preferences and tailoring your experience within the Service.
5.3 Your Choices
You may control or disable cookies through your browser settings. Disabling essential cookies may affect your ability to use the Service. If you are accessing the Service from a jurisdiction with stronger consent requirements (for example, the EEA or UK), you will be presented with a consent interface before non-essential cookies are set. You may also opt out of certain tracking by enabling Global Privacy Control (GPC) in your browser, which we honour as a valid opt-out signal under CCPA/CPRA.
5.4 Analytics, Performance, and Tracking Providers
To help us understand how users interact with the Service, diagnose technical issues, improve performance, and develop new features, WayCrumb may use third-party analytics, attribution, product-improvement, and performance-monitoring tools. These providers may include services such as Google Analytics, PostHog, Mixpanel, Amplitude, Hotjar, FullStory, Meta Pixel, or comparable technologies.
These tools may collect information such as pages viewed, features used, browser and device information, referral sources, interaction patterns, crash diagnostics, and general session activity within the Service.
WayCrumb does not permit analytics or advertising providers to use your private trip content, Memory Vault content, uploaded media, or personal travel history for their own independent advertising, profiling, or unrelated commercial purposes.
Where required by applicable law, non-essential analytics, advertising, or tracking technologies will only be activated after obtaining your consent. You may manage tracking preferences through browser settings, device privacy controls, cookie consent banners, or supported opt-out mechanisms such as Global Privacy Control (GPC).
5A. Analytics
We collect anonymised usage data to understand how WayCrumb is used, identify bugs, and improve the product. This may include information such as screens viewed, features used, error logs, and session duration. Analytics data is not linked to your name or email address and is not used to build advertising profiles.
We do not sell analytics data to third parties. You may opt out of analytics collection in the app's settings. Where required by applicable law, analytics tools are activated only after your consent has been obtained.
6. Visibility and Sharing Controls
WayCrumb provides different visibility states depending on content type and how it is shared. The table below summarises the default visibility of each content type.
| Content Type | Who Can See It |
|---|---|
| Private drafts and personal planning notes | Visible only to you unless explicitly shared |
| Shared trip itineraries, comments, pins, and collaborative content | Visible to all invited trip members |
| Memory Vault content | Visible only to designated recipients after the scheduled unlock date |
| Exported or downloaded content | Controlled by the user after export. WayCrumb has no further control |
Users are responsible for managing trip permissions and carefully selecting collaborators and recipients. WayCrumb cannot control how recipients use, retain, copy, or redistribute content after it has been shared or unlocked from the Memory Vault.
We may introduce additional privacy and sharing controls over time to provide greater flexibility and transparency.
7. Sharing of Information
7.1 Service Providers
We share information with third-party service providers who help us operate the Service (for example, cloud hosting, database management, authentication, analytics, mapping, email delivery, and payment processors). These providers are bound by confidentiality obligations and are not permitted to use your information for their own independent purposes.
7.2 Other Trip Members
Content you add to a trip, including pins, itinerary entries, photos, comments, and votes, is visible to the other members of that trip. Your name, profile photo, and contributions will be shown to people you invite or who are invited alongside you.
Memory Vault content operates differently: media, voice memos, and notes marked for time-delayed delivery will be disclosed to designated recipients only at the scheduled unlock date, which may be months or years after the content was created. By creating time-locked content and designating recipients, you consent to this future disclosure. Recipients may retain copies of delivered content after the unlock event.
7.3 User-Generated Content and Collaborative Trips
WayCrumb allows users to upload, create, store, and share content including itineraries, photos, videos, voice memos, comments, trip notes, recommendations, and Memory Vault entries. You are responsible for the content you upload or share through the Service.
By submitting content to WayCrumb, you represent that:
- you own the content or have the necessary rights and permissions to share it,
- your content does not violate applicable laws or third-party rights, and
- your uploads do not infringe copyrights, privacy rights, publicity rights, or other legal protections.
We encourage users not to upload highly sensitive personal information, such as government identification documents, financial account details, medical records, or confidential third-party information, unless specifically required as part of a Service feature.
Because WayCrumb supports collaborative trips and shared experiences:
- content shared within a trip may remain visible to other trip members even after you leave the trip,
- recipients of Memory Vault content may retain copies after delivery, and
- shared trip content may continue to exist within collaborative trips in anonymised form after you close your account, unless you request full deletion under Section 9.
WayCrumb does not actively monitor all user-generated content but reserves the right to remove content that violates our Terms of Service, applicable law, or user safety standards.
7.4 Legal, Safety, and Compliance
We may disclose information to comply with applicable laws or regulations, respond to lawful requests from public authorities, protect the rights or safety of WayCrumb, our users, or others, or enforce our policies.
7.5 Business Transfers
In connection with a merger, acquisition, reorganisation, or sale of assets, user information may be transferred as part of the transaction. We will notify you by email or a prominent notice on the Service before your information is transferred and becomes subject to a different privacy policy.
7.6 No Sale of Personal Information
We do not sell personal information for monetary consideration. We do not share personal information with third parties for cross-context behavioural advertising.
7.7 Subprocessors and Third-Party Infrastructure
WayCrumb relies on carefully selected third-party service providers ("subprocessors") to help operate, secure, maintain, and improve the Service. These providers may support cloud hosting and infrastructure, authentication, payment processing, mapping services, analytics and monitoring, media storage, customer communications, content delivery, security operations, and AI-assisted functionality.
Categories of providers we may use include services such as Amazon Web Services (AWS), Supabase, Stripe, Google Maps, OpenAI, Anthropic, and comparable infrastructure or software providers. These providers are contractually restricted from using your information for their own independent purposes except as necessary to provide services on our behalf and in accordance with applicable law.
WayCrumb may maintain and make available a current list of major subprocessors through a dedicated Trust, Security, or Privacy page, or upon request where required by applicable law.
7.8 Human Review, Safety, and Operational Access
Authorised WayCrumb personnel and trusted service providers may access limited user content only where reasonably necessary to:
- provide customer support,
- investigate abuse or policy violations,
- maintain platform security,
- prevent fraud or misuse,
- comply with legal obligations, or
- protect the rights, safety, and integrity of WayCrumb, our users, or the public.
Access to user content is restricted through internal access controls, logging, and least-privilege access policies designed to minimise unnecessary exposure to personal information. WayCrumb does not routinely review private trips, Memory Vault content, or user media unless required for the purposes described above.
7A. Third-Party Processors
We work with a limited number of third-party service providers to operate WayCrumb. These providers process your data only on our behalf, in accordance with our instructions, and are contractually required to protect your information. Our current third-party processors include:
| Provider | Purpose | Data Shared |
|---|---|---|
| Backend Infrastructure (Supabase) | Hosting, database, and API services that power WayCrumb | Account data, trip data, app content |
| Google Places (Google LLC) | Place search, autocomplete, and location details | Search queries, general location |
| Lovable AI | AI-assisted features within the app | Content you submit to AI features |
| Resend | Transactional email delivery (e.g., account confirmations, trip exports) | Your email address, email content |
| Cloudflare | DNS, content delivery, and security (DDoS protection) | IP address, request metadata |
We do not sell your personal data to any third party. If we add new processors that materially affect how your data is handled, we will update this Policy and notify you as required by applicable law. A complete and current list of subprocessors is available on request.
8. Data Retention
We retain personal information only as long as necessary to fulfil the purposes outlined in this Policy, comply with legal obligations, resolve disputes, and enforce our agreements.
- Trip content (pins, itinerary entries, photos, notes, comments) remains available to its members until deleted by a member with sufficient permission or until your account is closed.
- Memory Vault content is retained until its scheduled unlock date has passed and all designated recipients have received it, or until the content creator or an account administrator deletes it. Deleting your account permanently removes all undelivered Vault content. Content already delivered to other trip members remains in their accounts subject to their own deletion choices.
- Voice memos, photos, and videos are retained for the duration of the Memory Vault schedule you set, up to a maximum of five (5) years from the upload date unless you extend or modify the schedule.
- Users are responsible for maintaining backup copies of important Memory Vault content. WayCrumb's retention of your content is subject to the deletion and inactivity rules described in this section and does not constitute a permanent backup service.
- EXIF metadata extracted from uploaded media is retained for as long as the associated content remains in the Service and is deleted when the content is deleted.
- Usage and analytics data is retained in identifiable form for up to 24 months, after which it may be aggregated or anonymised.
- If you close your account, we will delete or anonymise your personal information within 90 days, except where retention is required by applicable law.
8.1 Inactive Accounts and Archived Data
To maintain system performance, manage storage resources, and reduce unnecessary retention of personal information, WayCrumb may archive, anonymise, or delete inactive accounts after extended periods of inactivity. Where reasonably required by applicable law, we will attempt to provide advance notice before permanently deleting an inactive account.
Certain information may be retained after account deletion where necessary to comply with legal obligations, resolve disputes, enforce our agreements, protect user safety, prevent fraud or abuse, or maintain limited backup and disaster recovery systems. Any retained information will remain subject to this Privacy Policy.
9. Account Deletion and Data Export
You may export all of your trip content, including pins, itinerary data, photos, notes, and voice memos, at any time from your account settings. Exported data is provided in a standard portable format.
You may delete individual trips, specific content within a trip, or your entire account at any time. Deleting a trip removes it from all members' views. Deleting your account removes your profile and all trip content you created, including all pending Memory Vault deliveries.
Content you contributed to trips owned by other members may be retained in those trips in anonymised form unless you request full deletion. To request full deletion of your personal information, including any contributions to other members' trips, please contact us using the details in Section 15.
10. Security
We implement technical, organisational, and administrative safeguards designed to protect personal information from unauthorised access, misuse, disclosure, alteration, or destruction. These safeguards include:
- encryption of data in transit using TLS,
- encryption of sensitive data at rest,
- role-based and least-privilege access controls,
- authentication and account protection mechanisms,
- internal access restrictions,
- security monitoring and logging,
- periodic security reviews and testing,
- backup and disaster recovery procedures, and
- secure deletion practices designed to reduce unnecessary data retention.
Access to personal information is limited to authorised personnel and service providers who require access in order to operate, support, or improve the Service.
While we strive to protect your information using commercially reasonable safeguards, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security. In the event of a data breach that is reasonably likely to result in a risk to your rights or freedoms, we will notify affected users and relevant authorities as required under applicable law.
11. International Data Transfers
Your information may be transferred to, processed in, and stored in countries where privacy laws differ from those in your jurisdiction. If we transfer personal data from the EEA or the UK to a country that the European Commission or UK Information Commissioner's Office has not deemed to provide adequate protection, we will implement appropriate safeguards such as Standard Contractual Clauses.
By using the Service from any jurisdiction, you acknowledge that your data may be processed in the United States and other countries. WayCrumb operates globally and seeks to comply with applicable privacy and data protection laws in the jurisdictions where we operate, including evolving U.S. state privacy laws, GDPR, UK GDPR, and other applicable international privacy frameworks.
12. Children's Privacy
The Service is not directed to children under the age of 13, or under the applicable age of digital consent in your jurisdiction where that age is higher. We do not knowingly collect personal data from children below that threshold. If we become aware that we have collected personal data from a child below the applicable age, we will take steps to delete that information promptly. If you believe we have inadvertently collected such data, please contact us using the details in Section 15.
13. Your Privacy Rights
13.1 Platform Philosophy and Advertising Practices
WayCrumb is designed as a travel planning, collaboration, and memory-preservation platform, not as an advertising-driven social network. We do not sell personal trip histories, private itineraries, Memory Vault content, or behavioural travel profiles to advertisers or data brokers. Our goal is to provide users with meaningful travel tools while respecting user privacy, intentional sharing, and ownership of personal memories and experiences.
13.2 General Rights
Depending on your jurisdiction, you may have rights concerning your personal information, including:
- Right of Access: accessing the personal information we hold about you and receiving a copy in a portable format.
- Right to Rectification: correcting inaccurate or incomplete personal information.
- Right to Erasure: requesting deletion of personal information we hold about you, subject to certain legal exceptions.
- Right to Object / Restrict: objecting to or requesting restriction of certain processing activities.
- Right to Withdraw Consent: where processing is based on your consent, withdrawing that consent at any time without affecting the lawfulness of prior processing.
- Right to Complain: lodging a complaint with a relevant supervisory authority if you believe we have processed your data unlawfully.
To exercise any of these rights, please contact us using the information in Section 15. We will respond to verified requests within the timeframe required by applicable law, typically 30 days with a possible 30-day extension for complex requests.
13.3 California Privacy Rights (CCPA / CPRA)
This section applies to California residents. The CCPA as amended by the CPRA provides additional rights:
- Right to Know: request disclosure of the categories and specific pieces of personal information we collect, use, share, or sell about you, and the purposes for which it is used.
- Right to Delete: request deletion of personal information we have collected, subject to certain exceptions.
- Right to Correct: request correction of inaccurate personal information we maintain about you.
- Right to Opt Out of Sale / Sharing: opt out of the sale or sharing of your personal information, including via certain cookies or tracking mechanisms. You may do so by contacting us or by enabling Global Privacy Control (GPC) in your browser.
- Right to Limit Use of Sensitive Personal Information: limit our use or disclosure of sensitive personal information, such as precise geolocation data and voice recordings, to purposes necessary to provide the Service.
- Right to Non-Discrimination: we will not discriminate against you for exercising your privacy rights.
To submit a verified request under CCPA/CPRA, please contact us using the information in Section 15. We will respond within 45 days, extendable by a further 45 days where reasonably necessary. We do not sell personal information for monetary consideration. We do not share personal information for cross-context behavioural advertising. We will update this Policy at least once every 12 months as required by CCPA/CPRA.
13.4 EEA and UK Privacy Rights (GDPR / UK GDPR)
This section applies to users in the European Economic Area (EEA) and the United Kingdom (UK).
Lawful bases for processing. We process your personal data on the following lawful bases:
- Contract (Article 6(1)(b)): processing necessary to provide the Service to you, including account management, trip functionality, and Memory Vault delivery.
- Legal Obligation (Article 6(1)(c)): processing necessary to comply with our legal obligations.
- Legitimate Interests (Article 6(1)(f)): processing necessary for our legitimate interests, such as improving the Service, preventing fraud, and ensuring security, where those interests are not overridden by your rights and freedoms.
- Consent (Article 6(1)(a)): for non-essential cookies and marketing communications, we rely on your consent, which you may withdraw at any time.
WayCrumb, Inc. is the data controller for personal data processed through the Service. Our contact details are in Section 15.
In addition to the rights in Section 13.2, EEA and UK users have the right to data portability (receiving personal data in a structured, machine-readable format) and the right not to be subject to solely automated decision-making that produces legal or similarly significant effects.
You have the right to lodge a complaint with your local supervisory authority: in the UK, the Information Commissioner's Office (ICO); in the EEA, the supervisory authority in your member state.
13.5 State Biometric Privacy Laws
Where applicable, we comply with state biometric privacy statutes, including the Illinois Biometric Information Privacy Act (BIPA), the Texas Capture or Use of Biometric Identifier Act (CUBI), and the Washington My Health My Data Act, as well as any successor or similar legislation enacted in other states. As noted in Section 2.4, WayCrumb does not collect biometric identifiers or biometric information as defined under these statutes. If this changes, we will update this Policy and obtain any required consents before collection begins.
14. Changes to This Policy
We may update this Policy to reflect changes in our business, legal requirements, or industry practices. When we make material changes, we will notify you by email or by posting a prominent notice on the Service prior to the change taking effect, and we will revise the "Effective Date" at the top of this Policy. Your continued use of the Service following any changes constitutes your acceptance of the updated Policy.
14.1 Trust, Security, and Transparency Resources
WayCrumb may provide additional transparency resources through dedicated Trust, Security, AI Principles, or Privacy pages where available, including subprocessor information, security practices, AI usage principles, privacy controls, and updates regarding data protection practices. These resources may evolve over time as the Service grows and additional features are introduced.
15. Contact Us
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or have concerns about how we handle your personal data, please contact:
WayCrumb, Inc.
Privacy enquiries: privacy@waycrumb.com
Website: https://waycrumb.com
We aim to respond to all privacy-related enquiries within 30 days. For verified consumer rights requests under CCPA/CPRA, we will respond within 45 days of receipt of a verifiable request.
WayCrumb operates globally and seeks to comply with applicable privacy and data protection laws in the jurisdictions where we operate, including evolving U.S. state privacy laws, GDPR, UK GDPR, and other applicable international privacy frameworks.