Privacy Policy — Roamers List

Summary (plain language): We collect as little data as possible. Your packing list progress is stored on your device only — never on our servers. We do not sell your data. We do not run ads. If you contact us by email, we use your email address only to reply. This policy explains everything in full detail below.

Contents

1. Data controller
2. What data we collect and why
3. Cookies and local storage
4. Third-party services
5. Your rights (GDPR, CCPA and others)
6. Data retention
7. Security
8. Children's privacy
9. Changes to this policy
10. Contact

1. Data controller

The data controller responsible for this website is:

Roamers List
Website: roamerslist.com
Email: hello@roamerslist.com

For EU/GDPR purposes, "data controller" means the entity that determines the purposes and means of processing personal data. For any questions about how we handle your data, please contact us at the email above.

2. What data we collect and why

2.1 Data you actively provide

We only collect personal data when you actively provide it:

Email contact: If you send us an email at hello@roamerslist.com, we receive your email address and the content of your message. We use this solely to reply to your enquiry. We do not add you to any mailing list without your explicit consent.
Luggage tag generator: When you use our luggage tag generator, you may enter your name, email address, phone number, and address. This information is encoded directly into the QR code and stored only in your downloaded file. We do not transmit or store this data on our servers.

2.2 Data collected automatically

When you visit roamerslist.com, standard technical data is processed by our hosting provider (Strato AG, Germany) as part of normal web server operation. This includes:

Your IP address (anonymised after processing)
Browser type and version
Operating system
The page you requested and the referring page
Date and time of access

This data is processed on the basis of legitimate interests (Art. 6(1)(f) GDPR) — specifically, to ensure the security and functionality of our website, and to diagnose technical problems. It is not used to identify individual users and is not combined with other data sources.

2.3 Packing list data

Your packing list selections and progress are stored exclusively in your browser's localStorage — a mechanism that keeps data on your own device. This data never leaves your device and is never transmitted to our servers. You can delete it at any time by clearing your browser's site data.

2.4 Analytics (optional)

If you have accepted optional analytics cookies, we may use privacy-respecting analytics tools to understand how visitors use our site (e.g. which pages are popular). Any analytics we use are configured to anonymise IP addresses, not use cross-site tracking, and not collect personally identifiable information. You can withdraw this consent at any time by clearing your cookie consent preference in your browser.

3. Cookies and local storage

We use the following types of browser storage:

Essential (always active)

rl_cookie_consent — stores your cookie preference so we do not ask you again. Stored in localStorage.
roamerslist_checks / roamerslist_checks_master — stores your packing list progress. Stored in localStorage. Never transmitted to our servers.

Optional analytics (only if accepted)

Anonymous usage analytics to understand how the site is used. No personally identifiable information is collected.

You can withdraw your cookie consent at any time by clearing your browser's localStorage for this site, or by clearing all site data in your browser settings.

4. Third-party services

4.1 Hosting — Strato AG

Our website is hosted by Strato AG (Germany). As our hosting provider, Strato processes server log data as described in section 2.2. Strato is a German company and processes data within the EU/EEA. Their privacy policy is available at strato.de/datenschutz.

4.2 Fonts

Our site uses only system fonts (the fonts already installed on your device such as Segoe UI, Helvetica, or Arial). We do not load any external fonts from Google Fonts or any other third-party font service. No font-related requests are made to external servers when you visit our site.

4.3 Etsy (future feature)

When our Etsy shop launches, purchases made through Etsy will be subject to Etsy's own privacy policy. We will update this policy accordingly at that time.

4.4 Affiliate links

Our gear recommendations page may contain affiliate links to third-party retailers (such as Amazon). Clicking these links will take you to third-party websites with their own privacy policies. We have no control over and assume no responsibility for the privacy practices of third-party sites. Affiliate commissions help us keep the core tool free.

5. Your rights

5.1 EU/EEA residents (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right of access (Art. 15 GDPR): You may request a copy of personal data we hold about you.
Right to rectification (Art. 16 GDPR): You may request correction of inaccurate data.
Right to erasure (Art. 17 GDPR): You may request deletion of your personal data ("right to be forgotten").
Right to restrict processing (Art. 18 GDPR): You may request that we limit how we use your data.
Right to data portability (Art. 20 GDPR): You may request your data in a portable format.
Right to object (Art. 21 GDPR): You may object to processing based on legitimate interests.
Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, contact us at hello@roamerslist.com. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority. In Germany, this is the Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI).

5.2 California residents (CCPA/CPRA)

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have the right to:

Know what personal information is collected about them
Know whether personal information is sold or disclosed and to whom
Opt out of the sale of personal information
Access their personal information
Request deletion of personal information
Non-discrimination for exercising privacy rights

We do not sell personal information. To exercise your rights, contact us at hello@roamerslist.com.

5.3 UK residents (UK GDPR)

Following the UK's departure from the EU, UK residents have equivalent rights under the UK GDPR and Data Protection Act 2018. You may also contact the Information Commissioner's Office (ICO) at ico.org.uk.

5.4 Other jurisdictions

We respect applicable privacy laws in other jurisdictions including Brazil (LGPD), Canada (PIPEDA), Australia (Privacy Act 1988), and others. If you have a question about your rights under a specific law, please contact us.

6. Data retention

We retain data only as long as necessary:

Email correspondence: Retained for up to 2 years for record-keeping, then deleted.
Server logs: Retained by Strato for up to 7 days for security purposes, then automatically deleted.
Packing list data: Stored in your browser only. No retention on our side. Delete it at any time via your browser settings.

7. Security

We take appropriate technical and organisational measures to protect the data we process. Our website is served over HTTPS (TLS encryption). We do not store passwords or payment card details. Our server infrastructure is hosted with Strato AG in Germany, subject to German and EU data protection standards.

However, no method of transmission over the internet or electronic storage is 100% secure. If you believe your data has been compromised, please contact us immediately at hello@roamerslist.com.

8. Children's privacy

Roamers List is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. If you believe we have inadvertently collected data from a child under 16, please contact us and we will delete it promptly.

9. Changes to this policy

We may update this privacy policy from time to time to reflect changes in our practices or in applicable law. When we make changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our site after changes constitutes acceptance of the updated policy.

10. Contact and supervisory authority

For any privacy-related questions, requests, or complaints:

Roamers List
Email: hello@roamerslist.com
Website: roamerslist.com

If you are not satisfied with our response, you have the right to contact your national data protection supervisory authority:

Germany: BfDI — bfdi.bund.de
EU (other): List of EU DPAs — edpb.europa.eu
UK: ICO — ico.org.uk
EU dispute resolution: ec.europa.eu/consumers/odr