Privacy Policy — Bordermath

1. What we collect

Bordermath (operated by ChimeStream) collects the following data: • Account data: email address, password (hashed), passport nationality/nationalities (for visa calculations) • Route data: destination countries, travel dates, visa types, route names — used solely to provide the planning service • Usage analytics: page visits, feature usage (anonymized), error logs — used to improve the product • Email alerts: your email is used to send route deadline alerts when you enable them

2. What we don't do

We do NOT: • Sell your travel data to any third party • Share itinerary data with governments or border agencies • Use your passport details for advertising • Share your email with external marketing platforms without explicit consent

3. Data storage

Data is stored on encrypted servers in the EU. We use industry-standard encryption at rest and in transit (TLS 1.3). Access to production databases is restricted to authorized ChimeStream team members.

4. Your rights

You can export or delete your account at any time from Settings → Data. You can request a copy of all data we hold about you by emailing hello@bordermath.io. We will fulfill data deletion requests within 30 days.

5. Cookies

We use minimal cookies for authentication and session management. We do not use third-party tracking cookies or advertising pixels. Analytics are anonymized and processed by self-hosted tooling.

6. Third-party services

Bordermath uses Stripe for payment processing. Stripe's privacy policy applies to payment data. We do not store full credit card numbers. We use SendGrid for transactional emails (alerts and receipts). Email content is not shared with third parties.

7. Changes to this policy

We may update this privacy policy. When we do, we'll notify users via email and update the 'Last updated' date above. Continued use of Bordermath after a policy change constitutes acceptance of the new terms.

8. Contact

For privacy-related questions or requests, contact: hello@bordermath.io