Back to DigitalPassport

PRIVACY POLICY

Last updated: January 2026

OUR COMMITMENT

DigitalPassport is built with privacy as a core principle. We believe you should be able to visualize your travel memories without compromising your personal data.

HOW IT WORKS

When you select photos in DigitalPassport:

• Photos are processed entirely in your browser using JavaScript
• GPS coordinates are extracted locally using the exifr library
• Your photos never leave your device and are never uploaded to any server
• All calculations (clustering, statistics, distances) happen in your browser

DATA WE ACCESS

Data Type	Accessed	Uploaded	Stored
Your Photos	Local only	Never	Never
GPS Coordinates	Local only	To geocoding*	Never
Photo Dates	Local only	Never	Never
Camera/Device Info	Local only	Never	Never
File Names	Local only	Never	Never
Google Drive Files	Direct to browser	Never to us	Never
Google Account Info	Never	Never	Never
Dropbox Files	Direct to browser	Never to us	Never
Dropbox Account Info	Never	Never	Never

*GEOCODING SERVICE

To convert GPS coordinates into city/country names, we use the Nominatim service (OpenStreetMap). This is the only external request made:

• Only latitude and longitude numbers are sent (e.g., 48.8566, 2.3522)
• No photos, filenames, dates, or personal information is transmitted
• Nominatim does not log queries for tracking purposes
• See OpenStreetMap's Privacy Policy

GOOGLE USER DATA

DigitalPassport integrates with Google Drive and Google Photos to allow you to import your photos. This section explains exactly how we handle your Google user data in compliance with the Google API Services User Data Policy.

1. Data Accessed

When you use our Google integration, we access the following Google user data:

• Photo files: Image files (JPEG, PNG, HEIC) that you explicitly select via Google Picker
• Photo metadata: EXIF data embedded in photos (GPS coordinates, date taken, camera model)
• File names: Names of the photo files you select

We do not access your Google account information, email, contacts, or any files you don't explicitly select.

2. Data Usage

Your Google user data is used exclusively for the following purposes:

• Display on globe: GPS coordinates are extracted to plot your travel locations on the interactive map
• Travel statistics: Dates and locations are used to calculate countries visited, distances traveled, and trip timelines
• Device filtering: Camera model information allows you to filter photos by device

All processing happens entirely in your browser. Your photos and their metadata are never transmitted to our servers.

3. Data Sharing

We do not share your Google user data with any third parties. Specifically:

• Your photos are never uploaded to our servers or any third-party service
• Your Google credentials and tokens are never shared
• We do not sell, rent, or trade any user data
• We do not use your data for advertising purposes

The only external service that receives any data is the geocoding service (Nominatim/BigDataCloud), which receives only GPS coordinates (e.g., 48.8566, 2.3522) to convert them to city/country names. No photos, filenames, or personal information is sent.

4. Data Storage & Protection

Your Google user data is protected through the following practices:

• No server storage: Photos are processed in your browser and never uploaded to any server
• Memory-only tokens: Google OAuth tokens are stored only in browser memory (not localStorage or cookies) and are automatically cleared when you close the tab
• Minimal permissions: We request read-only access and cannot modify or delete your Google files
• Secure connections: All communication with Google APIs uses HTTPS encryption
• No persistent storage: We do not maintain any database of user data or Google account information

5. Data Retention & Deletion

Our data retention practices:

• Session-only: All Google user data exists only for the duration of your browser session
• Automatic deletion: When you close the browser tab, all photo data and access tokens are automatically cleared from memory
• No backups: Since we never store your data on our servers, there are no backups or archives to delete

To delete your data or revoke access:

• Close the browser tab to immediately clear all data from memory
• Revoke DigitalPassport's access to your Google account at Google Account Permissions
• For any questions about data deletion, contact us at DigitalPassport2026@proton.me

DROPBOX USER DATA

DigitalPassport integrates with Dropbox to allow you to import your photos using the Dropbox Chooser.

How Dropbox Integration Works

• Chooser-based selection: We use the official Dropbox Chooser, which means you select files directly through Dropbox's interface
• Direct downloads: Photo files are downloaded directly from Dropbox to your browser - they never pass through our servers
• Limited access: We only access the specific files you explicitly select - we cannot browse or access any other files in your Dropbox
• No account access: We do not access your Dropbox account information, email, or any personal details

Data Storage & Deletion

• Session-only: Dropbox files exist only for the duration of your browser session
• Automatic cleanup: When you close the tab, all downloaded photo data is cleared from memory
• No persistent access: We do not store any tokens or maintain ongoing access to your Dropbox
• To revoke access, visit Dropbox Connected Apps

WHAT WE DON'T DO

• We don't upload your photos anywhere
• We don't store your data on any server
• We don't use cookies for tracking
• We don't have user accounts or logins
• We don't collect analytics about your travel history
• We don't share any data with third parties

CODE TRANSPARENCY

All photo processing happens entirely in your browser. No images are ever uploaded to our servers. You can verify this by inspecting network requests in your browser's developer tools.

CONTACT

If you have any questions about this privacy policy, please email us at digitalpassport2026@proton.me.