Privacy Policy
Last updated: June 14, 2026
Clean Itinerary turns messy travel confirmations — uploaded on the web or forwarded by email — into a single clean PDF. This page explains what we do with your data, in plain English. If anything is unclear, email us at support@cleanitinerary.com.
Accounts and sign-in
You don’t need an account to use Clean Itinerary. You can upload a confirmation, edit the result, and download your PDF without signing in. Anonymous trips simply live at their own shareable link.
If you do sign in, authentication is handled by Clerk, our identity provider. Clerk stores your email address and a unique user ID, and we mirror those in our own database so we can associate your trips with your account. Signing in sets a session cookie in your browser so you stay logged in.
Your trips and travel data
The original files you upload — PDFs, images, and email files — and the raw emails you forward are processed in memory on our server, used to extract your itinerary, and then discarded. We do not keep the original files. We do not log their contents. We do not train any models on them.
What we do keep is the extracted travel details — things like flight numbers, dates and times, airports, hotels, car rentals, traveler name, and confirmation numbers. We save these as a trip so you can review, edit, share, and re-download it later. If you created the trip while signed in, it belongs to your account; if you created it anonymously, it stays accessible to anyone with its link. Trips are stored until you delete them (or, for account-owned trips, until you delete your account — see “Data retention and deletion” below).
The clean PDF we generate is produced on demand from your trip data; we don’t keep a separate copy of it.
Email-In (forwarding confirmations)
Paid subscribers can forward travel confirmations to clean@cleanitinerary.com. We use Postmark to receive and parse those forwarded emails. To make sure a message really came from you, we check the email’s authentication signals (SPF/DKIM) and match the sender to your account. We then extract the itinerary the same way we do for web uploads and email you back a link to review the result.
As with uploads, we do not store the raw forwarded email — only the extracted trip data, plus a small record of the message (an ID and status) used to avoid processing the same email twice.
Billing and subscriptions
Paid plans are handled by Stripe. Stripe processes your payment details directly — we never see or store your full card number. From Stripe we receive and store only what we need to manage your subscription: your plan tier, its status, and the current billing period. Stripe’s handling of your payment information is governed by its own privacy policy.
Custom branding (Pro)
If you’re on a plan that supports custom branding and you upload a logo, we store that image file on our server so we can render it on your PDFs. You can remove it at any time from your account, and it is deleted when you delete your account.
Email updates
If you submit your email address through a sign-up form on our site, we store it along with the date you signed up, and use it only to send occasional updates about Clean Itinerary (rarely — at most a few times a year). We do not sell your email address, share it with third parties, or use it to market other products. You can unsubscribe at any time using the link in any email we send, or by emailing support@cleanitinerary.com.
What we collect automatically
When you visit Clean Itinerary, our web server records standard log information: your IP address, browser type, the pages you visited, and the time of your visit. We use this only for security and operational purposes (debugging issues, blocking abuse). These logs are retained for 30 days and then deleted.
We do not currently use any analytics or tracking services. If we add analytics in the future, we’ll update this page.
Cookies and local storage
Clean Itinerary uses your browser’s local storage to remember small preferences, such as your page-size choice (Letter or A4), so you don’t have to set them every visit. If you sign in, Clerk sets a session cookie to keep you logged in. We do not set advertising or cross-site tracking cookies.
Third parties
We rely on a small set of service providers to run Clean Itinerary. Each receives only the data it needs for its role:
- Render — hosts the app and stores our database on our behalf.
- Anthropic (Claude API) — receives the content of your uploaded or forwarded documents in order to extract your itinerary. The processing is transient; Anthropic does not retain API request data for training. See anthropic.com/legal/privacy.
- Clerk — manages sign-in and stores your account email and user ID.
- Stripe — processes subscription payments.
- Postmark — receives forwarded confirmation emails and delivers our reply and notification emails.
- Google Fonts — serves the typefaces on this site; Google may log requests for these fonts under its own privacy policy.
Data retention and deletion
If you delete your account, we delete your account record and all trips you own. Anonymous trips aren’t tied to an account; if you’d like one removed, email us the link at support@cleanitinerary.com and we’ll delete it. You can also ask us to remove your email from our updates list at any time.
Your rights
You can ask us:
- What information we hold about you (your account email, your trips, or your updates-list signup).
- To delete your information.
- To correct anything we have wrong.
Email support@cleanitinerary.com for any of these and we’ll respond within 30 days.
If you’re in the EU or UK, you have additional rights under GDPR. We comply with these on request.
Children
Clean Itinerary is not directed at children under 16. We don’t knowingly collect data from children. If you believe a child has provided us data, email support@cleanitinerary.com and we’ll delete the record.
Changes to this policy
If we change how we handle data, we’ll update this page and change the “Last updated” date at the top.
Contact
Email: support@cleanitinerary.com