Privacy Policy

We collect only what's needed to build and operate your plan:

• Email address — required for sign-in (magic link) and for transactional emails about your plan.
• Onboarding answers — destination, timing, family situation, motivation, top concerns. You provide these during the wizard.
• Plan data — tasks you check off, documents you upload, notes you write, dates you set.
• Billing details — for paid tiers. Card data is collected and stored by Stripe, not by us; we only see the last four digits and the subscription state.
• Usage signals — pages viewed, features used, device type. Collected via PostHog with IP truncation.

We do not collect: government IDs, passport images, financial account numbers, or anything we don't need to make your plan work. If a future feature requires that kind of data, we'll ask explicitly and explain why.

Production data lives in a Supabase Postgres instance in us-west. Row-level security policies enforce that only you (and Nomad employees with operational need) can read your rows.

• Auth: Supabase Auth (magic links). No passwords are stored.
• Database: Supabase Postgres, encrypted at rest and in transit.
• File uploads: Supabase Storage with private buckets and signed URLs.
• Payments: Stripe (PCI-DSS Level 1).
• Transactional email: Resend.
• Product analytics: PostHog, EU-region project.
• Error monitoring: Sentry. Stack traces are scrubbed before submission so request bodies and headers don't leak.

We use your data only for the following:

• Generating and tailoring the relocation plan you asked for.
• Sending you transactional email about that plan.
• Running the product (auth, payments, support, debugging).
• Aggregated, de-identified product analytics so we can make the product better. Never tied back to your email.

We do not sell your data, rent it, share it with advertisers, or feed it into third-party AI training. Full stop.

We set the minimum required:

• Session cookies — required for sign-in to persist across page loads.
• Preference cookies — remember your theme and layout choices.
• Analytics cookies — PostHog distinct-id for funnel analysis. Truncated IP. You can opt out in your account settings.

We use the following providers to operate Nomad. Each is bound by their own DPAs and listed publicly so you can read their policies:

• Supabase (auth, database, storage)
• Stripe (payments)
• Resend (transactional email)
• Vercel (hosting and edge functions)
• PostHog (product analytics)
• Sentry (error monitoring)
• Anthropic (AI features that summarize your plan)

When we add or remove a sub-processor we update this list. If you'd like advance notice for material changes, email hello@nomadlifestyle.io.

Some features use AI (currently Anthropic's Claude) to draft checklist text, summarize visa rules, and personalize tasks. When we send data to a model:

• We send only what's needed for the specific feature, never your entire profile.
• We never send government IDs, passport images, or financial account numbers.
• Anthropic does not use API data to train their models per their commercial terms.

You can:

• Access the data we hold on you — visible in your account, exportable as JSON.
• Correct any answer you gave during onboarding from settings.
• Delete your account and all associated data from settings. We delete from production immediately and from backups within 30 days.
• Export a full copy of your plan, tasks, documents, and notes.
• Object to processing or restrict it; email us and we'll handle within 30 days.

If you're in the EEA / UK, you have additional rights under GDPR; the same email handles those requests.

Active accounts: we keep your data while your account exists.

Deleted accounts: removed from production immediately; purged from automated backups within 30 days; audit logs of the deletion event itself are kept for 12 months for compliance.

Billing records (invoices, refunds): retained for 7 years per tax law, even after account deletion. These contain email and billing address only — no plan content.

Nomad is not intended for users under 18. If a parent uses the product to plan a family move, the parent is the account holder and the data subject; children listed as dependents are referenced only by first name and age, not as separate accounts.

We host in the United States. If you're in the EEA / UK / Swiss jurisdiction, your data is transferred to the US under Standard Contractual Clauses with our sub-processors. We carry equivalent technical and organizational measures across regions.

When we change this policy, we update the date at the top and email account holders for material changes. Minor language tightening doesn't trigger an email.

For any privacy question or request, email hello@nomadlifestyle.io. We aim to respond within two business days; statutory requests are answered within 30 days.