Privacy Policy

Privacy Policy

Last Updated:

Last Updated:

Jan 27, 2026

Jan 27, 2026

1. Who We Are (Data Controller)

This Privacy Policy explains how Go Locally AI S.L., a Spanish company registered in Madrid (“Go Locally”, “we”, “our”, “us”), collects, uses, shares, and protects your information when you use the Go Locally mobile application, websites, and related services (the “Services”).

Data Controller: Go Locally AI S.L. (Madrid, Spain)
Contact: mario@golocally.ai

2. Scope

This Privacy Policy applies to:

  • The Go Locally App

  • Any Go Locally websites

  • AI chat, maps, wallet, credits, and related features

  • Support, communications, and feedback channels

If you click a link to a third-party booking, ticketing, reservation, or other external service, that provider processes your data under their own privacy policy.

3. Data We Collect

We collect information depending on your settings, permissions, and the features you use:

3.1 Account Data

  • Email

  • Username

  • Profile preferences

3.2 Usage & Interaction Data

  • Screens viewed, clicks, feature usage

  • Saved places, routes, lists, favorites

  • Wallet events (credits usage events)

  • App interactions and engagement signals

3.3 Device & Technical Data

  • Device model and identifiers

  • Operating system and app version

  • IP address

  • Logs, diagnostics, crash reports

3.4 Location Data

  • Approximate location (e.g., city-level or inferred) depending on device signals

  • Precise location only if you enable it in your device and/or in-app settings

3.5 AI Interaction Data

  • Chat inputs you submit

  • AI outputs generated for you

  • Feedback signals and safety-related signals (e.g., abuse prevention)

3.6 Wallet & Purchase Data

  • Credit balance and usage history

  • Purchase history for Credit Packages

  • Receipt validation metadata (e.g., receipt IDs, product IDs, timestamps, entitlement status)

3.7 Support Communications

  • Messages to support

  • Surveys and feedback

3.8 Sensitive Data Notice

We do not intentionally collect special categories of data (e.g., health data). Please do not provide sensitive personal information through chat or other inputs.

4. How We Use Data (Purposes and Legal Bases)

We process Personal Data for the following purposes:

(a) Provide and operate the Services (performance of a contract)
(b) Personalization, recommendations, and AI guidance (performance of a contract and/or legitimate interests; consent where required)
(c) Analytics, quality, debugging, and product improvement (legitimate interests)
(d) Security, fraud prevention, abuse detection (legitimate interests and/or legal obligations)
(e) Customer support and communications (performance of a contract and/or legitimate interests)
(f) Marketing communications (consent where required; legitimate interests where permitted)
(g) Legal compliance, dispute resolution, enforcement (legal obligations and legitimate interests)

5. Cookies, SDKs, Tracking, and Advertising

5.1 Technologies We May Use

We may use cookies, SDKs, and similar technologies for:

  • Essential operations (authentication, security, fraud prevention)

  • Analytics (performance and usage measurement)

  • Functional personalization (preferences, language, feature toggles)

  • Marketing measurement (campaign attribution, install/source measurement)

  • Advertising (only if enabled and permitted by law; may require consent)

5.2 Your Controls

You can control permissions in device settings and, where available, in-app privacy controls. Where required by law, we will request consent for certain tracking (including ad identifiers). If you decline, some features may be limited.

6. Sharing and Disclosure of Data

6.1 Service Providers (Processors)

We share data with vetted service providers who help operate the Services (e.g., hosting, analytics, crash reporting, security, AI tooling). They act under contractual confidentiality and data protection obligations.

6.2 Third-Party Providers

If you click out to third-party booking/ticketing/reservation providers, they process data under their own policies. We are not responsible for their privacy practices.

6.3 Legal and Safety

We may disclose data to comply with law, protect rights and safety, enforce our terms, or respond to lawful requests.

6.4 Corporate Transactions

If we undergo a merger, acquisition, reorganization, or asset sale, data may be transferred subject to safeguards and applicable law.

7. Chat Content and Insights (De-identified Only)

We may use chat content and usage patterns for:
(a) internal improvement and product positioning
(b) marketing and communications (e.g., anonymised examples, aggregated trends)
(c) third-party market insights (e.g., aggregated interest in neighborhoods/categories)

Safeguards: such use is aggregated and/or de-identified. We do not include direct identifiers (name/email) and we aim to remove obvious identifiers in examples. We prohibit re-identification and maintain safeguards to reduce re-identification risk.

8. International Transfers

The Services are offered worldwide. Data may be processed in Spain, the EU, and other jurisdictions where we and our providers operate. For transfers outside the EEA/UK/Switzerland, we rely on appropriate safeguards (e.g., SCCs, adequacy decisions, and supplementary measures).

9. Data Retention

We retain Personal Data only as long as necessary for:

  • providing the Services

  • security, fraud prevention, and abuse detection

  • legal compliance

  • dispute resolution and enforcement

We may retain de-identified/aggregated data for longer periods.

10. Your Rights

Depending on your location, you may have rights to:

  • Access your data

  • Correct your data

  • Delete your data

  • Port your data

  • Object to or restrict processing

  • Withdraw consent where processing relies on consent

To submit a request: email mario@golocally.ai with subject “Privacy Rights Request”.

11. US State Privacy Rights (Including California)

11.1 Rights (Where Applicable)

If you reside in certain US states, you may have rights to access, delete, correct, and obtain a copy of your information; opt out of targeted advertising; opt out of “sale” or “sharing” as defined by law; and limit certain uses of sensitive data.

11.2 Do Not Sell or Share

We primarily use data to operate and improve the Services and do not sell personal information in the ordinary sense. We provide this mechanism to address legal definitions of “sale” or “sharing” where applicable.

To opt out (where available): email mario@golocally.ai with subject “Privacy Rights Request”.

11.3 Non-Discrimination

We will not discriminate against you for exercising privacy rights, subject to lawful differences where processing is required to provide a feature.

12. Account Deletion

12.1 How to Request

You can request account deletion via an in-app form or by contacting support.

12.2 What Happens When You Delete Your Account

  • We schedule deletion of your personal data from active systems and processors within operational cycles

  • Deletion typically completes within 3–5 working days (or as stated in-app)

  • We may retain limited data where required by law or for legitimate legal purposes (e.g., fraud prevention, accounting/tax compliance, disputes, enforcement)

  • We may require verification to prevent unauthorized deletion

The deletion request form may include: First Name, Last Name, Email Address, Reason for Deletion, and optional explanation.

13. Security

We use reasonable technical and organisational measures to protect information. No system is perfectly secure.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on our website and/or in-app with a revised “Last updated” date.

15. Contact

Go Locally AI S.L.
Madrid, Spain
mario@golocally.ai