Privacy & Cookie Policy

TripEarn is operated by an independent developer as a personal project. For any privacy request (access, correction, deletion of your data) contact: bookvibe100@gmail.com.

Wallet address. When you connect your World App wallet, we store your wallet address in a session cookie to keep you signed in and to register your rewards. A wallet address is pseudonymous — we do not link it to your name.

World ID proof. Check-in verification uses World ID zero-knowledge proofs. We receive only a cryptographic proof that you are a unique human — no biometric data, no name, no personal identity ever reaches TripEarn.

Booking details. To complete a booking we collect the guest's first name, last name and email. These are transmitted to the booking provider (Nuitée Travel Limited / LiteAPI) and to the hotel solely to fulfil your reservation. We do not use them for marketing.

Reward records. Reward statuses (amount, wallet address, timestamps) are recorded on the WorldChain public blockchain for transparency. Blockchain records are public and cannot be deleted — they contain only your wallet address and reward amounts, never your name or booking details.

TripEarn uses only technical cookies, strictly necessary to operate the App: a session cookie with your wallet address (expires after 7 days) and a short-lived login nonce. We use no profiling, advertising or analytics cookies, and no third-party trackers. Because only strictly necessary cookies are used, no cookie consent banner is required. Your recent bookings list is stored locally on your device (localStorage) and never leaves it.

Nuitée Travel Limited (LiteAPI) — receives guest and payment details to process bookings as merchant of record, acting as an independent data controller under its own Privacy Policy (GDPR, Ireland/EU). The hotel — receives the guest details needed for your stay. World Chain / Worldcoin — reward statuses and payments are public on-chain data. CoinGecko — we fetch the WLD market price; no personal data is shared. We do not sell or share your data with anyone else.

We process data to perform the service you request (booking, rewards) — Art. 6(1)(b) GDPR — and to prevent fraud (legitimate interest, Art. 6(1)(f)). Session data expires automatically. Reward index data is kept as long as needed to manage payouts and legal obligations. On-chain data is permanent by design.

Under the GDPR you can request access, correction, deletion, restriction or portability of your data, and object to processing, by writing to bookvibe100@gmail.com. For data held by the booking provider, you can also contact Nuitée directly. You may lodge a complaint with your local data protection authority.