Your Privacy. Your Data. Your Control.
OZZI is built on a foundation of trust. We use end-to-end encryption to protect your data and never sell your information to third parties.
Our Security Principles
Three foundational commitments that guide how we protect your data
End-to-End Encryption
Your location data, itineraries, and personal information are encrypted from your device to our servers. Not even OZZI can read your private data.
No Data Sales
We never sell your data to third parties. Your information is used exclusively to provide you with safety services and improve your experience.
Privacy by Design
Privacy isn't an afterthought—it's built into every feature. We collect only what's necessary to keep you safe while traveling.
How We Protect Your Data
Multi-layered security measures to keep your information safe
Military-Grade Encryption
AES-256 encryption protects your data in transit and at rest, the same standard used by governments and financial institutions worldwide.
Secure Authentication
Multi-factor authentication options ensure that only you can access your account, with additional verification methods for enhanced security.
Secure Cloud Infrastructure
We use enterprise-grade cloud security with redundant backups, DDoS protection, and 24/7 system monitoring to prevent unauthorized access.
Privacy Controls
You maintain full control over your data with granular privacy settings. Choose what to share, pause location tracking, or delete your account at any time.
What Data We Collect & Why
Complete transparency about the information we collect to keep you safe
Location Data (Encrypted)
Why we collect it: To provide real-time safety alerts, geofenced guidance, and emergency assistance when you're in danger zones.
How it's protected: End-to-end encrypted and only accessible by you and your designated emergency contacts.
Travel Itineraries
Why we collect it: To deliver destination-specific safety guidance, risk assessments, and timely alerts for your planned routes.
How it's protected: Encrypted on your device and stored securely with zero-knowledge encryption.
Emergency Contact Information
Why we collect it: To notify your trusted contacts immediately in case of emergency or when you enter high-risk areas.
How it's protected: Encrypted and only accessible for emergency notification purposes.
Usage Analytics (Anonymized)
Why we collect it: To improve app performance, fix bugs, and understand which features help travelers stay safe.
How it's protected: Fully anonymized and aggregated—never tied to your personal identity.
Compliance & Standards
Meeting the highest international standards for data protection
GDPR Compliant
We fully comply with the General Data Protection Regulation (GDPR), giving you complete control over your personal data with the right to access, modify, or delete your information at any time.
CCPA Compliant
California residents have additional privacy rights under the California Consumer Privacy Act (CCPA). We honor all requests for data access, deletion, and opt-out of data sales (though we never sell your data).
PCI-DSS Level 1
All payment data is processed through PCI-DSS Level 1 certified payment providers, the highest level of payment security certification in the industry.
App Store Privacy Labels
We provide complete transparency through Apple's App Privacy Labels and Google's Data Safety section, so you know exactly what data we collect before you download.
Security & Privacy FAQ
Your location data is end-to-end encrypted before it leaves your device. OZZI's servers process encrypted data to provide safety alerts, but we cannot decrypt or view your actual location. Only you and your designated emergency contacts can access your real-time location.
When you delete your account, all your personal data—including location history, itineraries, and emergency contacts—is permanently deleted from our servers within 30 days. Some anonymized analytics data may be retained for service improvement, but it cannot be linked back to you.
We only share user data with law enforcement when legally required by valid court orders or subpoenas, and only to the extent required by law. We will notify users of such requests unless legally prohibited. We have never sold data to law enforcement or government agencies.
We use anonymized, aggregated usage data to understand how travelers use our features, identify bugs, and improve safety algorithms. This data is stripped of all personal identifiers and cannot be traced back to individual users.
No. Büddies only receive the specific location notifications you configure (such as Spot Notifications when you arrive at saved locations). Your continuous location tracking is never shared with Büddies unless you explicitly enable real-time location sharing during an emergency.
Yes. We never store your full credit card details on our servers. All payment processing is handled by PCI-DSS compliant payment processors (Apple Pay, Google Pay), and only encrypted payment tokens are stored in our system.
In the unlikely event of a data breach, we will notify affected users within 72 hours and provide clear guidance on steps to protect your account. Due to our end-to-end encryption, even in a breach scenario, your sensitive location and itinerary data would remain encrypted and unreadable.
