TrekMeet Privacy Policy

Privacy Policy

Last updated: 30 April 2026

Welcome to TrekMeet. We are building a community-first platform designed to help people connect through a shared love for the outdoors. We believe that meaningful technology respects both nature and your personal privacy. This Privacy Policy explains what information we collect, why we collect it, and how we use it — always with your best interests at heart.

1. The Information We Collect

We collect only the data we need to provide a safe, functional, and enjoyable experience. When you use TrekMeet, we may collect:

  • Account Information: Your name, email address, profile photo, and an optional bio. Sign-in is via Google or Apple OAuth.
  • Profile & Identity: Optional outdoor profile details you provide during onboarding — experience level, preferred activities, intensity level, and emergency contact (stored locally on your device).
  • Event & Plan Data: Events you create, RSVP to, or save; solo plans you create; GPX routes you upload; and any feedback you provide on events or organisers.
  • Social & Connections Data: Follows, Trail Bonds (mutual connections), people you have blocked, and any reports you submit. Used to enforce your privacy preferences and community safety.
  • Chat & Messaging Content: Messages you send in event-specific group chats. Stored to deliver the conversation and display history when you re-open a thread.
  • Location Data (Foreground Only): We collect precise location data only while the TrekMeet app is in use, to power the “Live Trek” and “Safety” features — displaying your position on the offline map, sharing breadcrumb GPS with your group during an active trek, and calculating accurate sunset times for your coordinates. We do not track your location in the background while the app is closed or your screen is off.
  • Push Notification Tokens: If you enable notifications, we store an anonymous device token (Firebase Cloud Messaging) so we can deliver event reminders and social updates. The token is not linked to your contact details.
  • Device & Usage Information: Basic, non-personal information like your operating system, app version, and crash diagnostics, to help us improve performance and resolve issues.
  • Media & Photos: If you choose to upload a profile photo or event cover, we request access to your device’s camera or photo gallery.
  • Cookies (web only): We use minimal, essential cookies on trekmeet.com to keep you logged in and remember preferences. We do not use cookies for advertising or third-party tracking.

2. How We Use Your Information

Your data is used to make TrekMeet work well for you. Specifically, we use it to:

  • Help you discover and join outdoor events that match your interests.
  • Provide organisers with the information they need to run safe, well-managed events.
  • Deliver real-time safety features — Live Trek, breadcrumb sharing, and emergency tools.
  • Power social features such as Connections, Trail Bonds, and group chat — respecting the privacy controls you set.
  • Send you important updates, event reminders, and social notifications (which you can toggle in Settings at any time).
  • Improve the performance, reliability, and design of the app and website.
  • Foster authentic community connections based on shared interests and trust.
We will never sell your personal data or share it with third-party advertisers. Period.

3. When We Share Information

Transparency is a core value. We only share your information in a few necessary circumstances:

  • With Event Organisers: Your name and RSVP status are shared with organisers of events you join, so they can manage their attendees.
  • With Other Members (per your privacy settings): Your display name, profile photo, and chosen public details are visible to people you connect with via Trail Bonds, group membership, or event participation. You control message permissions in Settings (Anyone / Trail Bonds / Off).
  • With Service Providers: We use trusted infrastructure partners to operate TrekMeet:
    • Firebase Auth (Google): Sign-in, identity, and authentication.
    • Supabase (PostgreSQL): Cloud database for syncing your account, plans, events, groups, and connections across devices. Protected by row-level security.
    • PowerSync: The bidirectional sync engine that keeps your offline-first device data in sync with Supabase.
    • Firestore (Google): Real-time channels for the “Live Trek” GPS feature (breadcrumbs, 24-hour retention) and group chat.
    • Firebase Cloud Messaging (Google): Push notification delivery.
    • MapTiler: Vector map tiles for offline-capable trail rendering. We do not share your account details with MapTiler.
    • OpenMeteo: Weather forecast data for trail conditions. No personal information is shared.
    All providers are held to industry-standard privacy and security obligations.
  • For Legal Reasons: We may share information if compelled by law, such as in response to a valid court order or to protect the safety of our community.

4. Your Choices & Controls

You are in control of your data. You can:

  • Access and Edit: Update your profile information and privacy preferences directly in the app under Settings.
  • Privacy Settings: Choose who can message you (Anyone / Trail Bonds / Off), toggle online status, last-seen, and precise-location visibility (“Ghost Mode”).
  • Notification Preferences: Enable or disable categories of notifications (events, social, safety, system) in Settings.
  • Location Permissions: Manage location access via your device settings at any time. The app only requests foreground location when you start a Live Trek.
  • Block & Report: Block any user or report content via the in-app menus. Blocked users cannot contact you or appear in your search results.
  • Delete Your Account: You have the right to permanently delete your account and all associated data.
    • In-App: Settings > Account > Delete Account.
    • Web Portal: If you cannot access the app, request deletion at trekmeet.com/delete-account. Web requests are processed manually and completed within 7 days.

For any requests or concerns, please contact us at hello@trekmeet.com. We’re here to help.

5. Data Storage & Security

TrekMeet is built local-first: your events, plans, groups, and offline maps live on your device in an encrypted SQLite database. Cloud sync (where enabled) uses Supabase + PowerSync with row-level security tied to your authenticated identity, so only you and the people you have explicitly connected with can access your data.

Real-time GPS data shared during a Live Trek lives in Firestore for 24 hours, then is automatically deleted. Authentication is handled by Firebase Auth (Google or Apple OAuth). All data in transit is protected by TLS, and at rest by industry-standard encryption.

We follow security best practices to protect your information from unauthorised access or misuse. No system is perfectly secure, but we treat your data the way we would want our own treated.

6. Children’s Privacy

TrekMeet is intended for users aged 16 and older. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected such information, please contact us at hello@trekmeet.com and we will delete it promptly.

7. Updates to This Policy

We may update this policy from time to time to reflect changes in our services, infrastructure, or relevant law. When we make material changes, we will note them at the top of this page and update the “Last updated” date. For significant changes, we will also notify you in the app or by email.

8. Contact Us

Have questions or feedback about your privacy?

Email: hello@trekmeet.com
Based in: Sydney, Australia

TrekMeet is built on trust. As hikers and explorers ourselves, we are committed to protecting your privacy as part of the trail we walk together.

Join The Community
Join The Community