Sojourn · Last updated 14 July 2026
Plain-language summary: Sojourn helps you track where you spend your nights so your tax residence stays clear. We collect the data you enter, and — only if you turn them on — your nightly location and travel emails. Your data is yours: you can export it or delete your account at any time. We never sell it.
This service ("Sojourn", "we", "us") is operated by its founder, based in Zurich, Switzerland; a Swiss company is being incorporated and will take over as operator and data controller once registered (this page will be updated accordingly). For any privacy question, contact us at [email protected]. We are the data controller for the personal data described below. Being based in Switzerland, we are primarily subject to the Swiss Federal Act on Data Protection (FADP); where they apply to you, we also comply with other privacy laws such as the EU/UK GDPR.
| Account | Email address and name you provide when creating an account. |
| Residence & travel data | The countries, regions, nights, trips, worked days and targets you enter to use the tracker. |
| Location (optional) | If you enable nightly location, we record a single device location each night — including while the app is in the background — to attribute that night to a country and region. You can turn this off at any time in Settings. |
| Forwarded travel emails (optional) | If you enable email detection, the app gives you a personal forwarding address (your-token@hellosojourn.com). Travel and lodging confirmation emails that you choose to forward to that address are received by our email provider and analysed automatically (see section 4) to extract the trip details (dates, cities, countries, booking reference). We never connect to or read your mailbox — we only receive what you forward. We do not keep the raw email in our database: only the extracted trip fields plus the email's subject and sender are stored, as a pending suggestion you can accept or reject in the app. |
| Website waitlist | If you join the waitlist on hellosojourn.com, we store your email address to send you your invitation. It is deleted on request and not used for anything else. For cookies on the website, see section 8. |
| Proofs | Documents and files you upload or import as evidence (e.g. transport tickets, lodging invoices). |
| Technical | Basic device and app diagnostics needed to run and secure the service. |
| Usage & analytics (see section 8) | How you use the app and website (screens viewed, features used, crashes, aggregate site visits), to understand and improve the product. Where your consent is required for this, we ask first. |
We use your data for the purposes below. Where the law of your country requires a legal basis to process personal data (such as under the EU/UK GDPR, the Swiss FADP, Brazil's LGPD or similar laws), the bases we rely on are indicated:
We do not sell your personal data. We share it only with service providers ("processors") who act on our instructions:
| Supabase | Database, authentication, file storage and hosting. Data stored in Frankfurt, Germany (EU); infrastructure runs on AWS. |
| Anthropic (USA) | Automated extraction of trip details from the travel emails you forward. The email content is processed by Anthropic's Claude API in the United States, is not used to train models, and is retained by Anthropic for a maximum of 7 days. Safeguard: EU standard contractual clauses with Swiss addendum. |
| Resend (USA / EU) | Sending transactional emails and receiving the travel emails you forward. Resend Inc. is a US company; email data is processed in Ireland (EU, via Amazon SES). Safeguard: EU standard contractual clauses. |
| Expo / EAS | App builds and push-notification delivery (push token). |
| Apple / Google | App distribution and, where applicable, in-app review and sign-in. |
| Cloudflare | Hosting of the hellosojourn.com website. |
| Analytics providers | Product-analytics and audience-measurement services (privacy-focused, EU-hosted where available). The up-to-date list of active providers is maintained in this policy. |
| Advertising partners | Only if we run advertising campaigns, and only with your consent (see section 8): advertising platforms such as Meta or Google may process identifiers to measure campaigns. None are active unless the cookie banner or in-app prompt says so. |
We may also disclose data where required by law.
Your data is primarily stored in the European Union (Supabase, Frankfurt, Germany; Resend, Ireland). Switzerland and the EU/EEA mutually recognise each other's level of data protection (adequacy), so data flows freely between them. The exception is the United States: the content of travel emails you forward is processed there by Anthropic (see section 4), and our email provider Resend is a US company. These US transfers are covered by the EU standard contractual clauses (2021), with the Swiss addendum, as required by art. 16 FADP and art. 46 GDPR. You can request a copy of these safeguards at [email protected].
We keep your data while your account is active. In addition:
Wherever you live, we offer you the following controls over your data:
Depending on your country of residence, your local law may give you additional rights (for example under the EU/UK GDPR, the Swiss FADP, the California CCPA/CPRA, Brazil's LGPD, and comparable laws). We honour applicable rights regardless of where you are, and respond within 30 days. Our supervisory authority in Switzerland is the Swiss Federal Data Protection and Information Commissioner (FDPIC); if you are in the EU or UK, you may also lodge a complaint directly with your local authority (for example, the CNIL in France, or your national or state regulator). We do not make automated decisions producing legal effects about you.
We keep tracking to the minimum the product needs, and we tell you here exactly what is active. Four categories:
When a category becomes active, we update this section (with the named providers) and, where required, ask for your consent before anything runs. Refusing non-essential cookies never blocks the website or the app.
Data is encrypted in transit and at rest. Your session credentials are stored in the device's secure keychain. No method of transmission or storage is perfectly secure, but we work to protect your data.
Sojourn is not intended for anyone under 18, or the minimum age required in your country. We do not knowingly collect data from children.
We may update this policy. We will post the new version here and update the date above; significant changes will be notified in-app or by email.
Questions or requests: [email protected].