Privacy Policy

Effective May 10, 2026

MoseyFam is operated by John Cerdon, doing business as Cerdon AI Solutions (“MoseyFam,” “we,” “us”), a California-based sole proprietorship. This Privacy Policy explains what personal information we collect, why we collect it, who we share it with, and how you can exercise your rights under U.S. state privacy laws. The Service is currently available in the United States only.

Who we are and how to contact us

Privacy questions and data-rights requests: support@moseyfam.com. General support: /contact.

What information we collect

Mapped to California Consumer Privacy Act categories (Cal. Civ. Code §1798.140(v)):

• Identifiers: email address, account ID, IP address (hashed before storage).
• Customer records: display name and preferences you set in your profile (palette, units, home base label).
• Internet/network activity: itineraries you generate or save, filters you enter, shuffles used, free-trial day counter.
• Geolocation data: the ZIP code or city you type to plan a day, and the latitude/longitude derived from it. We treat precise device-level location as Sensitive Personal Information under California law (see below).
• Commercial information: pack and subscription purchases (transaction IDs, amounts, refund status).
• Inferences: cohort tags (e.g. “0–2 anchor”) the planner derives from filters you submit.

We do not collect Social Security numbers, driver’s license numbers, financial-account credentials, or biometric identifiers. Card details are entered directly into Stripe’s hosted checkout and never reach our servers.

Sources of information

• Directly from you (sign-up, filters, profile, payment).
• Automatically from your device (IP address, browser metadata).
• From service providers acting on our instructions (e.g. Stripe webhook events confirming a purchase).

How we use information

• Generate itineraries that match your filters.
• Authenticate your account (magic-link login).
• Save plans you choose to keep, deliver itineraries by email, and process refunds.
• Enforce free-trial limits, rate limits, and prevent abuse.
• Improve the Service via aggregated, non-identifying telemetry (latency, success rates).
• Comply with law and respond to valid legal process.

Sensitive personal information — precise geolocation

We resolve the ZIP or address you type into approximate latitude/longitude in order to query third-party data sources. We do not collect device-level GPS, do not link precise coordinates to advertising profiles, and do not sell or share precise geolocation for cross-context behavioral advertising. Coordinates persisted with a saved itinerary are stored only so we can re-render the map view; you may delete a saved plan at any time, which removes its coordinates.

Service providers (sub-processors)

We share information only with vendors that process data on our behalf under written contract (DPA / Data Protection Addendum). The current list is published at /sub-processors and includes:

• Anthropic, PBC — AI model that drafts the itinerary text from a filtered list of candidate places. Operates under a zero-data-retention contract; outputs containing third-party data are not persisted beyond your saved plan.
• Supabase, Inc. — database and authentication.
• Stripe, Inc. — payment processor (PCI DSS Level 1).
• Resend (Plus Five Five, Inc.) — transactional email delivery.
• Vercel Inc. — hosting and content delivery.

No sale or sharing for advertising

We do not sell personal information for money, and we do not share it for cross-context behavioral advertising as those terms are defined in the CCPA. We do not run advertising trackers on the site. We honor the Global Privacy Control (GPC) browser signal as an opt-out of any future sale or sharing.

Cookies and similar technologies

Cookies are small text files stored by your browser. MoseyFam uses cookies sparingly and only for the purposes below. We do not run advertising, analytics, or cross-site tracking cookies today.

Strictly necessary — no consent required:

• sb-* — Supabase auth session token. Set by our auth library after a successful magic-link login. Lifetime: session.
• mf_trialed — remembers an anonymous user already used their one free trial roll. Lifetime: 1 year.
• palette — remembers your color-palette preference across sessions. Lifetime: 1 year.

We do not run third-party advertising pixels (Meta, Google Ads, TikTok, etc.). We do not use cross-site tracking. The Stripe checkout page (when you click “Buy a pack”) loads under stripe.com and is governed by Stripe’s own cookie policy. Browsers let you delete cookies and block them per-site — disabling strictly-necessary cookies will break login.

Our servers detect the Sec-GPC: 1 request header and treat it as a verifiable opt-out of any sale, sharing, or targeted advertising. See /privacy-choices.

AI processing disclosure

Itineraries are drafted by Claude (Anthropic). When you generate an itinerary, we send Anthropic the filters you entered and the candidate-stop metadata returned by third-party data sources. Anthropic does not train its models on this content under our agreement, and it is not retained beyond the request. AI-generated content can be inaccurate — verify hours, prices, age suitability, and availability with each venue before traveling.

Email practices

Magic-link sign-in messages, itinerary delivery, and receipts are transactional and you cannot opt out without closing your account. If we ever send marketing emails, you opt in separately and may unsubscribe at any time via the link in each email; we honor unsubscribes within 10 business days. Replies to MoseyFam emails route to a small admin queue we use to read and answer support; we retain inbound messages for up to 30 days.

Payment processing

Web payments are processed by Stripe. Card numbers and CVV codes never touch our servers. Stripe’s privacy practices are governed by the Stripe Privacy Policy.

iOS in-app purchases (auto-renewable subscription and day packs) are processed by Apple through StoreKit and are governed by Apple’s Standard Terms of Use (EULA) and Apple’s own privacy practices. Apple shares with us only the transaction status and entitlement information needed to grant access; payment-card details never reach our servers.

Children’s privacy (COPPA)

MoseyFam is a general-audience service designed for parents and other adult caregivers. It is not directed to children under 13, and we do not knowingly collect personal information from a child under 13. You must be at least 13 years old to create an account and at least 18 years old (or the age of majority where you live) to make a purchase. If you believe a child under 13 has submitted personal information to us, contact support@moseyfam.com and we will delete it promptly.

Minor protections

We do not knowingly “sell” or “share” the personal information of any user we know or should know to be under 18 for cross-context behavioral advertising, and we do not run targeted advertising at all today.

How long we keep information (retention)

• Account, saved itineraries, preferences: while your account is active, then deleted within 90 days of account closure.
• Inbound mailbox messages: up to 30 days.
• Pipeline telemetry: 90 days raw, indefinite for aggregated metrics that contain no PII.
• Marketing-consent records (if any): 3 years.
• Payment records: as required by tax law (typically 7 years).
• Cached third-party data (Place IDs, lat/lng): capped at 30 days per Google Maps Platform terms.

Security

We use TLS in transit, AES-256 at rest (via Supabase and Vercel), magic-link authentication with single-use 15-minute links, row-level security on user tables, hashed IP addresses, and a written information-security program reviewed annually.

Your rights

Subject to applicable law (CCPA, Virginia CDPA, Colorado CPA, Connecticut CTDPA, Utah UCPA, Texas TDPSA, Oregon OCPA, Maryland MODPA, New Jersey DPA, Delaware DPDPA, New Hampshire HB 255, Iowa ICDPA, Indiana ICDPA, Tennessee TIPA, Montana CDPA, Minnesota CDPA, Rhode Island, Kentucky), you may:

• Access the personal information we hold about you.
• Correct inaccurate information.
• Delete your information.
• Receive a portable copy.
• Opt out of any sale, sharing, or targeted advertising (we do none today, and we honor GPC).
• Limit use of sensitive personal information.
• Appeal a denial.
• Be free from retaliation for exercising any of the above.

Submit requests via /privacy-choices, by email to support@moseyfam.com, or by deleting your account at /account. We respond within 45 days; we may extend by 45 more if reasonably needed and will tell you why. We verify your identity by sending a magic link to the email on file.

Universal opt-out / GPC

Our servers detect the Sec-GPC: 1 request header and treat it as a verifiable opt-out of any sale, sharing, or targeted advertising for the duration of the session. Authenticated users’ opt-outs persist across sessions.

State-specific notices

California residents may submit verifiable consumer requests as described above. Texas residents: we do not engage in “targeted advertising,” “sale of personal data,” or “profiling in furtherance of a decision that produces a legal or similarly significant effect.” Maryland residents: we process the minimum personal data reasonably necessary to provide the Service and we do not sell sensitive personal data. Colorado, Connecticut, Virginia, Oregon, Montana, Delaware, New Jersey, Minnesota, New Hampshire, Tennessee, Indiana, Iowa, Kentucky, Rhode Island residents: same data-rights menu as above; appeals sent to support@moseyfam.com with subject line “Privacy Appeal.”

Breach notification

If a breach affects your personal information, we will notify you and applicable regulators per state law, ordinarily within 30 days of discovery.

Business transfers

If MoseyFam is acquired or merged, your information may transfer to the successor entity, which will be bound by this policy or one substantially similar. We will notify you of any material change.

Changes to this Policy

We may update this Policy. Material changes will be announced by email or on this page at least 10 days before taking effect.