Improving the world, one bit at a time

Privacy Policy of Travel Stories

This application collects some Personal Data from its users.

Data Controller and Processor:

Name: Runtime Sharks SRL

Contact email:

Types of Data collected

Among the types of Personal Data that this Application collects, by itself or through third parties, there are: Cookies and Usage Data.

The Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this Application.

Mandatory Personal Data

  • When creating an account, the User is required to provide a username, a name and an email, without which the service can not be offered. If the Data becomes obsolete, or a mistake has been made, the User can edit its profile information through the Application's settings.

Indirect mandatory Personal Data

  • When another user follows the User, we will store and display this relation on both users' profiles. Even though the User has taken no action, there is no way to block other users from performing this action, because user profiles are public and can be seen, searched and followed by anyone using the service.
  • When another user follows the User, they will be able to see all of the User's public posts. If the User would like to keep any story or entry information private, they can mark it as private, as described below.
  • The User has the option to block another User — this way, both of them will stop seeing each other, as well as their stories and entries.

Optional Personal Data

The User can, at its free will, provide optional Personal Data, which is not required to run the service:

  • After creating an account, the User has the possibility to upload a profile picture.
  • When creating a story, the User is required to provide a title, a date and mark it as public or private. While this information is required in relation to this action, the User can choose not to create any stories, or mark it as private.
  • When creating an entry, the User is required to provide a picture, a title, a location, a description and mark it as public or private. An entry can also be marked as a "cover", which means the story that contains it will display its photo. While this information is required in relation to this action, the User can choose not to create any entries, or mark them as private.
  • When adding a "like" to a story or entry, we will store and display the fact that that User has now "liked" that story or entry. The User can choose not to like any stories, nor entries.
  • When following/unfollowing another user, we will store and display the relation between the User and the other user on both users' profiles. The User can choose not to follow any other users.

The User can choose to not perform any of these actions, however, this will limit their interaction with the Application — one of its main purposes is to interact with other users.

After any of this Data has been created, if the User desires their Data be excluded from being processed until they give their consent again, the User can deactivate their account. Any Data related to a deactivated account will be hidden from search results and feeds, and the account will be unusable. The User is required to give consent again, by requesting the reactivation of the account, on the next login attempt.

The User can mark any story and any entry as being private — these will not be searchable by other users, won't be seen on other users' feeds and will not be visible on the User's profile.

Mode and place of Data processing

Methods of processing

The Data Controller processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorised access, disclosure, modification, or unauthorised destruction of the Data.

The Data is transferred in and out of the Application through secure web channels.

The Data processing is carried out using computers and/or IT enabled tools, following organisational procedures and modes strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Data Controller at any time.


The Data is processed at the Data Controller's operating offices and in any other places where the parties involved with the processing are located. For further information, please contact the Data Controller.

Retention time

The Data is created at the moment the User creates it.

The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document, and the User can always request that the Data Controller suspend or remove the Data — the latter leads to the deletion of the User's account and all of its associated data.


The User can request a digital copy of any data held about them, which will be provided within a month of receiving the request.

The use of the collected Data

The Data concerning the User is collected to allow the Owner to provide its services, as well as for the following purposes: hosting and backend infrastructure and Managing support and contact requests.

The Personal Data used for each purpose is outlined in the specific sections of this document.

Detailed information on the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

1. Hosting and backend infrastructure

This type of services has the purpose of hosting data and files that enable this Application to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of this Application. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.

DigitalOcean Inc

DigitalOcean is a hosting company.

Personal Data collected: all data.

Place of processing: Amsterdam, Europe — DigitalOcean's Privacy Policy

3. Unique device identification

This Application may track Users by storing a unique identifier of their device, for analytics purposes or for storing Users' preferences.

4. Push notifications

This Application may send push notifications to the User.

5. Managing support and contact requests

This type of services allows this Application to manage support and contact requests received via email or by other means, such as the contact form.

The Personal Data processed depend on the information provided by the User in the messages and the means used for communication (e.g. email address).

Legal action

The User's Personal Data may be used for legal purposes by the Data Controller, in Court or in the stages leading to possible legal action arising from improper use of this Application or the related services.

The User declares to be aware that the Data Controller may be required to reveal personal data upon request of public authorities. 

System logs and maintenance

For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (System logs) or use for this purpose other Personal Data (such as IP Address).

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see the contact information at the beginning of this document.

The rights of Users

Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the Data Controller at the contact information set out above.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If a User objects to any of the changes to the Policy, the User must cease using this Application and can request that the Data Controller remove the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Controller has about Users.

Definitions and legal references

Personal Data (or Data)

Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.

Usage Data

Information collected automatically from this Application (or third-party services employed in this Application), which can include: the IP addresses or domain names of the computers utilised by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilised to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilised by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.


The individual using this Application, which must coincide with or be authorised by the Data Subject, to whom the Personal Data refers.

Data Subject

The legal or natural person to whom the Personal Data refers.

Data Processor (or Data Supervisor)

The natural person, legal person, public administration or any other body, association or organisation authorised by the Data Controller to process the Personal Data in compliance with this privacy policy.

Data Controller (or Owner)

The natural person, legal person, public administration or any other body, association or organisation with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.

This Application

The hardware or software tool by which the Personal Data of the User is collected.


Small piece of data stored in the User's device.