Privacy Policy

Privacy Policy for Sorom

At Sorom, protecting the individual’s privacy is crucial to the future of business. We have created this privacy statement to demonstrate our firm commitment to the individual’s right to data protection and privacy. It outlines how we handle information that can be used to directly or indirectly identify an individual (“Personal Data”).

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us through email at support@sorom.co  


1. General Data Protection Regulation (GDPR)

We are a Data Controller of your information under the terms of the European General Data Protection Regulation. To better understand your rights under the GDPR, see this resource provided by the UK Information Commissioner's Office.


Sorom Inc. (hereafter 'Sorom', 'we' or 'us') legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Information we collect and the specific context in which we collect the information:

  • We need to perform a contract with you
  • You have given us permission to do so
  • Processing your personal information is in our legitimate interests
  • We need to comply with the law

Sorom Inc. will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. If you wish to be informed what Personal Information we hold about you and if you want it to be removed from our systems, please contact us.

In certain circumstances, you have the following data protection rights:

  • The right to access, update or to delete the information we have on you.

  • The right of rectification.

  • The right to object.

  • The right of restriction.

  • The right to data portability

  • The right to withdraw consent


2. Log Files

Sorom follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services' analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users' movement on the website, and gathering demographic information.


3. Cookies and Web Beacons

Like any other website, Sorom uses 'cookies'. These cookies are used to store information including visitors' preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users' experience by customizing our web page content based on visitors' browser type and/or other information.


4. User-provided Information

To run Sorom, we collect and process the following kinds of information.


Google data

If you choose to sign in with Google, we will receive your email and Google account ID to help us authenticate you when signing in, and for contacting you with product updates and account changes.


Gmail data

If you choose to connect your Gmail account to Sorom, we will use access to your Gmail account to solely parse travel receipts. Specifically:

  • We will receive a notification from Gmail when you receive a new email.
  • We will parse the email with the help of Amadeus, AwardWallet, or OpenAI to identify whether it is a travel receipts (for hotels, flights, and other bookings).
  • If after parsing, we determine that the email is for travel, we will create a document on Sorom with the confirmation and store the receipt on our servers. Otherwise, we'll delete any temporary data we have about the email.
  • We will not store or process any emails other than as outlined above.

Sorom will never:

  • Use Gmail data for ad targeting or serving.
  • Allow any employees to read Gmail data unless we either (1) obtained your consent in writing; (2) need it for security purposes (bug investigation and abuse monitoring); or (3) are required to disclose it for legal purposes.

All internal uses not mentioned in item 2 above will be only of aggregated, anonymized Gmail data.

All uses of this data will also comply with the Google API Services: User Data Policy.


Facebook data

If you choose to sign in with Facebook, we will receive your basic profile information (your name, Facebook account ID) which we will use to authenticate you when signing in.

If you grant us permission to get your email address, we will also receive your email which we'll use to contact you with product updates.

If you grant us permission to see which of your friends also use Sorom, we will use that information only to display a list of itineraries/trip plans and other contributions that your Facebook friends have created on Sorom.


Twitter data

If you choose to sign in with Twitter, we will receive your basic profile information (your name, Twitter account ID) which we will use to authenticate you when signing in.

If you grant us permission to get your email address, we will also receive your email which we'll use to contact you with product updates.

If you grant us permission to see which of your friends also use Sorom, we will use that information only to display a list of itineraries/trip plans and other contributions that your Twitter followers or those you are following have created on Sorom.


User profile data

You can also sign up for Sorom using your email and a password. We will retain this information to authenticate you and occasionally contact you with product updates and account changes.

Once signed into Sorom, you may set a username, display name, and home base location to display on your profile. This information will be used as a part of your public profile on Sorom for readers to get to know you, and is associated with your posts.


Mobile data

No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.


Trip plan data

When using Sorom, you may select places, write comments, like specific places, and paste images/maps into your trip logs. This data will be stored and shown when someone views a trip log that you have authored.


Deleting your data

To delete your account and associated user data, you may sign in and visit our settings page, which includes a "Delete account" button. Our system will fully delete your account within two weeks of receiving the request.


5. Third Party Advertisers

Third-party ad servers or ad networks use technologies like cookies, JavaScript, or Web Beacons that are used in their respective advertisements and links that appear on Sorom, which are sent directly to users' browser. They automatically receive your IP address when this occurs. These technologies are used to measure the effectiveness of their advertising campaigns and/or to personalize the advertising content that you see on websites that you visit.

Note that Sorom has no access to or control over these cookies that are used by third-party advertisers.


6. Third Party Privacy Policies

Sorom's Privacy Policy does not apply to other advertisers or websites. Thus, we are advising you to consult the respective Privacy Policies of these third-party ad servers for more detailed information. It may include their practices and instructions about how to opt-out of certain options.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers' respective websites.


7. Children's Information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Sorom does not knowingly collect any Personal Identifiable Information from children under the age of 18. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.


8. Updates

While we strive to maintain a consistent Privacy Policy, we do update it from time to time. We may do this in some cases with limited or no notice.

We may also supplement this Privacy Statement with other privacy notices in the Sorom Services.


9. Consent

By using our website or app, you hereby consent to our Privacy Policy and agree to its terms.