Privacy Policy
Last updated: January 17, 2026
Mapiry is designed with privacy in mind. You can create and share maps without an account, we use minimal cookies, and we don't use external analytics or advertising services. We only collect what's necessary to provide our service.
At Mapiry, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the site.
For All Users (Anonymous & Registered)
When you create a map on Mapiry, we collect:
- •Map data: Locations, markers, descriptions, custom icons, and colors you add to your maps
- •Usage data: Anonymous analytics about map views and shares (with IP hashing for privacy)
- •Edit tokens: For anonymous maps, a unique token stored in your browser to allow you to edit your maps
For Registered Users (Optional)
If you choose to create an account, we additionally collect:
- •Email address: For authentication and account recovery
- •Password: Stored securely using industry-standard encryption (we never store plain-text passwords)
- •Name: Optional, for display on your profile
- •Authentication cookies: To keep you logged in across sessions
Automatically Collected Information
- •IP address (hashed): We hash your IP address for privacy-preserving rate limiting and analytics. The original IP is never stored.
- •Browser information: User agent and browser type for compatibility and troubleshooting
- •Preferences: Theme preference (light/dark mode), sidebar state, and other UI preferences stored in your browser
We use the information we collect to:
Provide, maintain, and improve our mapping service
Allow you to create, save, edit, and share maps
Authenticate registered users and protect accounts
Process AI map generation requests using OpenAI
Provide customer support and respond to inquiries
Monitor usage trends (privacy-preserving analytics with IP hashing)
Prevent abuse through rate limiting
Send important service updates (registered users only)
What we DON'T do: We don't sell your data, use external analytics services like Google Analytics, serve personalized ads, or track you across other websites.
Mapiry uses several third-party services to provide our functionality. When you use Mapiry, your data may be processed by these services according to their own privacy policies:
Mapbox
We use Mapbox for map visualization and geocoding. When you view or create maps, Mapbox may collect location data.
Mapbox Privacy Policy →Supabase
We use Supabase for user authentication and data storage. Supabase provides our database infrastructure and handles authentication securely.
Supabase Privacy Policy →OpenAI
When you use our AI map generation feature, your text prompts are sent to OpenAI for processing. We don't send any personal information beyond the prompt itself.
OpenAI Privacy Policy →Cloudinary
We use Cloudinary for image storage and processing when you upload custom marker icons or map images.
Cloudinary Privacy Policy →We implement appropriate technical and organizational measures to protect the security of your personal data:
However, please be aware that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.
When you create a map without an account, we generate a unique "edit token" that allows you to edit that specific map. This token is:
- •Stored in your browser's localStorage and as a cookie
- •Not linked to your identity or any personal information
- •Used only to verify your permission to edit anonymous maps you created
- •Permanently lost if you clear your browser data (we cannot recover anonymous maps)
If you later register for an account, you can claim any anonymous maps you created using the stored edit tokens.
Stored indefinitely unless you delete them or request account deletion
Retained until you request account deletion
Aggregated analytics data (with hashed IPs) is retained for up to 2 years
Stored indefinitely unless deleted by the creator using their edit token
Depending on your location, you may have certain rights regarding your personal information:
Right to access
Request a copy of the personal data we hold about you
Right to rectification
Correct inaccurate or incomplete personal data
Right to erasure
Request deletion of your account and personal data
Right to restrict processing
Limit how we use your data
Right to data portability
Receive your data in a structured, machine-readable format
Right to object
Object to certain types of processing
To exercise any of these rights, please contact us at hello@mapiry.com. We will respond to your request within 30 days.
Our service is not intended for individuals under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at hello@mapiry.com, and we will take steps to delete such information.
Mapiry operates globally, and your data may be transferred to and processed in countries other than your own. We use third-party services (Supabase, Mapbox, OpenAI, Cloudinary) that may store data in various locations worldwide. These services comply with applicable data protection regulations and provide appropriate safeguards for international data transfers.
We may update our Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
If you have any questions about this Privacy Policy, please contact us at:
Email: hello@mapiry.com