Venture Privacy Policy

Last Updated: February 19, 2026

About This Policy

This Privacy Policy explains how Naprio LTD, trading as Naprio Studios ("we," "us," or "our"), collects, uses, discloses, and safeguards your personal data when you use the Venture mobile application (the "App"). We are committed to processing your data lawfully, fairly, and transparently in accordance with the UK GDPR, EU GDPR, and all other applicable data protection legislation.

1. Data Controller

The data controller responsible for your personal data is:

Naprio LTD (trading as Naprio Studios)

Company Number: 17024491

Registered Address: 71-75 Shelton Street, London, England, WC2H 9JQ

Email: support@napriostudios.com

Website: https://napriostudios.com

2. Information We Collect

2.1 Information You Provide Directly

Account Info: Email, password, and optional profile details (name, DOB, photo, bio).
Preferences: Travel interests, semantic tags, and "vibe" selections.
User Content: Reviews, ratings, notes, travel plans, and saved places.
Search Queries: Text entered into the semantic search feature.

2.2 Information Collected via SDKs and Automated Means

We use Software Development Kits (SDKs) and other tools to collect data automatically:

Device Info: Device type, OS version, and unique device identifiers.
Usage Data: Interactions, screens viewed, and session duration.
Location Data: Precise geographic location (with permission) collected on a "one-shot" basis for recommendations and passport stamps. We do not track you continuously.
Analytics & Crash Data: Collected via the Firebase SDK to improve App performance.
Advertising Data: Collected via the Google AdMob SDK (identifiers and ad interaction data).

3. Lawful Basis for Processing

PurposeData UsedLawful Basis (GDPR)Account & DiscoveryEmail, PreferencesContractAI PersonalisationSearch queries, historyContractLocation FeaturesGPS CoordinatesConsentSocial FeaturesProfile data, UGCConsentAnalytics/SecurityDevice IDs, LogsLegitimate InterestMarketing/AdsEmail, Ad IDsConsent

Export to Sheets

4. AI-Powered Content and Automated Processing

4.1 AI Personalisation

The App uses artificial intelligence (Google Gemini) to rank places and interpret search queries. Your data is NOT used to train, fine-tune, or improve the underlying AI models.

4.2 AI Hallucinations

You acknowledge that AI systems are subject to "hallucinations" or "confabulations," where the AI may generate information that is factually incorrect or entirely fabricated. We do not guarantee the accuracy of AI-generated content.

4.3 Automated Decisions and "Human-in-the-Loop"

While our AI enhances discovery, it does not make decisions with legal effects. However, if you believe an automated recommendation has significantly impacted you, you have the right to request a human review of the logic used by contacting support@napriostudios.com.

5. Data Sharing & Transfers

We share data with third-party processors (Supabase, Google, Apple, RevenueCat) only to provide the service. For transfers to the United States, we rely on Standard Contractual Clauses (SCCs) and the EU-US Data Privacy Framework to ensure your data remains protected.

6. Data Retention

Account Data: Lifetime of account + 30 days.
Server Logs: Purged after 90 days.
Location Data: Used transiently; only the resulting country code (for stamps) is stored.
Deleted Content: Purged from backups within 30 days.

7. Data Security

We implement encryption (TLS/HTTPS) at rest and in transit. Our database utilizes Row-Level Security (RLS) to ensure you can only access your own data. In the event of a high-risk data breach, we will notify the ICO and affected users within 72 hours.

8. Your Rights (EEA and UK)

Under the GDPR, you have the right to access, rectify, erase ("Right to be Forgotten"), or export your data. You may also object to processing based on legitimate interests. To exercise these rights, email support@napriostudios.com. We respond to all requests within one calendar month.

9. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the right to know what information we collect and to request its deletion. We do not "sell" your personal information.

9.1 Global Privacy Control (GPC)

We honor Global Privacy Control (GPC) signals. If your browser or device transmits a GPC "Do Not Track" signal, we will treat that as a valid request to opt-out of the "sharing" of your data for cross-context behavioral advertising.

10. Children's Privacy

The App is not directed at children under 13 (or 16 in the EEA/UK). If we discover we have inadvertently collected data from a child, we will delete it immediately.

11. Changes to This Policy

We may update this policy periodically. Significant changes will be notified via an in-app prompt. Your continued use of the App constitutes acceptance of the updated policy.

12. Contact Us

For any privacy-related queries or to exercise your data rights, please contact: