Skip to main content
Wanderlearn

Privacy

What we collect and how we handle it

Draft: pending legal review

This page describes Wanderlearn's current data practices but has not yet been reviewed by counsel. A finalized policy will be published before public launch. In the meantime, the facts below are accurate to how the app operates today.

Wanderlearn is designed to collect as little as it can and reuse what it must. This page describes what we actually store, which vendors we rely on, and how to reach us if you have questions or want your data removed.

What we collect

  • Account information

    Your email address (for sign-in) and optional display name. Birth year if you provided one during sign-up (used to confirm you're at least 13, then stored).

  • Authentication data

    Encrypted session tokens and, if you enabled them, passkeys / one-time codes / two-factor-authentication secrets. Managed by Better Auth. We never store plaintext passwords.

  • Learning progress

    Which courses you enrolled in, which lessons you've started or completed, and where you last left off. Used to let you resume across devices.

  • Purchase records

    If you buy a paid course, Stripe processes the payment. We store a Stripe purchase ID and your enrollment, not your card number. Stripe's policy governs card handling.

  • Media you upload (creators only)

    If you're a creator, files you upload are stored in Cloudinary under your account context. Creators retain full rights to their source media.

  • Support conversations

    If you open a support thread, the messages you write and any files you attach are stored so we can respond. You can request deletion.

  • What we do not collect

    We do not run third-party advertising trackers. We do not sell your data. We do not build a profile of you across apps. The only cross-site fetches are to our own vendors listed below.

Vendors we use

Each of these vendors processes data on our behalf. They're selected for security posture and documented in our infrastructure notes.

  • Neon (Postgres): Primary database. Hosted in AWS us-east region.
  • Vercel: Hosting for the Wanderlearn application.
  • Cloudinary: Media storage and delivery: 360° photos, 360° video, images, audio.
  • Better Auth: Authentication framework (runs against our own Neon database).
  • Stripe: Payment processing for paid courses.
  • Mailgun: Transactional email (receipts, support notifications).

Your rights

You can request a copy of the data we hold about you, corrections to incorrect data, or deletion of your account and associated data. Open a support thread and we will respond within a reasonable timeframe. For users in the EU/EEA, UK, or California, statutory rights apply and will be detailed in the finalized policy.

Contact us via support

Draft last reviewed: 2026-04-17