Silk Road
Privacy Policy
Last Modified: April 22, 2026
Introduction
Ardent Blue Technologies LLC ("Company" or "We") respect your privacy and are committed to protecting it through our compliance with this policy. This policy describes:
- The types of information we may collect or that you may provide when you download, install, access, or use Silk Road (the "App").
- Our practices for collecting, using, maintaining, protecting, and disclosing that information.
This policy applies only to information we collect in this App and in email, text, and other electronic communications sent through or in connection with this App.
This policy DOES NOT apply to information that:
- We collect offline or on any other Company apps or websites, including websites you may access through this App.
- You provide to or is collected by any third party (see Third-Party Information Collection).
Our websites and apps, and these other third parties have their own privacy policies, which we encourage you to read before providing information on or through them.
Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, do not download, register with, or use this App. By downloading, registering with, or using this App, you agree to this privacy policy. This policy may change from time to time (see Changes to Our Privacy Policy). Your continued use of this App after we revise this policy means you accept those changes, so please check the policy periodically for updates.
Data Controller
Ardent Blue Technologies LLC will be the entity responsible for your data. To ask questions or comment about this privacy policy and our privacy practices, you can contact us at:
Email: allisontolpa@travelsilkroad.ai
Children Under the Age of 13
We do not knowingly collect personal information from children under 13. If we learn we have collected or received personal information from a child under 13 without verification of parental consent, we will delete that information. If you are a parent and believe that your child under the age of 13 has accessed and/or used the App and provided personally identifiable information to us, please contact us at: allisontolpa@travelsilkroad.ai. This is in compliance with the Children's Online Privacy Protection Act (COPPA).
Information We Collect and How We Collect It
We collect information from and about users of our App:
- Directly from you when you provide it to us.
- Automatically when you use the App.
The table below summarizes the categories of personal data we collect, why we collect it, how long we keep it, and who receives it:
| Category | Examples | Purpose | Retention | Recipients |
|---|---|---|---|---|
| Account data | Email, name, bio | Account creation and management | Active period + up to 30 days after deletion | Supabase |
| User-generated content | Travel stories, photos, videos | App functionality and display | Active period + up to 30 days in backups after deletion | AWS, Supabase |
| Usage and crash data | App activity logs, crash reports, performance data | KPI measurement and debugging | Up to 90 days | Internal only |
| Support correspondence | Emails or messages sent to support | Customer support | Up to 1 year | Internal only |
| Anonymized/aggregated data | Derived statistics with no personal identifiers | Product improvement | Indefinite | Internal only |
Information You Provide to Us
When you register for or use this App, we collect the following personal information that you provide directly:
- Email address — used to create and manage your account.
- Name — a display name of your choosing, visible to other users of the App.
- Bio — a short personal description, visible to other users of the App.
- Travel stories, photos, and videos — content you post within the App, which is visible to other users. Note that once posted, this content may be viewed by other users of the App.
- Records and copies of your correspondence (including email addresses), if you contact us, including data generated during a customer support request.
Publicly Visible Information: Your name, bio, and the travel stories, photos, and videos you post are visible to other users within the App. Please do not include information in these fields that you do not wish to be publicly viewable within the App. Additionally:
- Profiles are not currently indexed or searchable outside the App.
- There is currently no feature allowing other users to reshare or export your content; if this changes, this policy will be updated.
- Our moderation team may review posted content for safety and compliance with our Acceptable Use Policy.
- Content you delete may persist in backup systems for up to 30 days before being fully purged (see Data Retention).
Automatic Information Collection and Tracking
When you download, access, and use the App, it may use technology to automatically collect:
- User ID. When you access and use the App, we may automatically collect your account ID or other user-level identifier used to identify your account.
- Usage Details. When you access and use the App, we may automatically collect certain details of your access to and use of the App, including traffic data, crash data, logs, performance data such as launch time, hang rate and energy use, and other usage data such as your activity within the App and the features you access and use.
- Device Information. We may collect information about your mobile device and internet connection, including the device's unique device identifier, operating system, device model, and hardware information.
We use this automatically collected information for KPI measurement, product improvement, and debugging purposes. We do not use this information for targeted advertising.
Information Collection and Tracking Technologies
We do not currently use third-party advertising, analytics, or behavioral tracking technologies within the App. We do not embed any analytics SDKs, ad networks, or tracking libraries in the client application.
Our backend infrastructure providers (AWS and Supabase) act as data processors on our behalf and may access user data solely as necessary to deliver their services. They are not analytics providers and do not use your data for their own purposes. See the Third-Party Information Collection section for details.
Third-Party Information Collection
Our App relies on third-party infrastructure providers that act as data processors on our behalf. The table below maps each vendor to the data they process, the purpose, and their role:
| Vendor | Data Processed | Purpose | Role | Privacy Policy |
|---|---|---|---|---|
| Amazon Web Services (AWS) | Photos and videos | Cloud storage | Processor | https://aws.amazon.com/privacy/ |
| Supabase | Email, name, bio, app data | Database and authentication | Processor | https://supabase.com/privacy |
| Apple App Store | App download and device identifiers | Marketplace distribution | Independent Controller | https://www.apple.com/legal/privacy/data/en/app-store/ |
Your device manufacturer and mobile service provider may also collect information about your device and network usage independently; their data practices are governed by their own privacy policies.
Note: the links above are provided solely for your convenience and we are not responsible for updating them or ensuring their validity or correctness.
How We Use Your Information
We use information that we collect about you or that you provide to us, including any personal information, to:
- Provide you with the App and its contents, and any other information, products, or services that you request from us.
- Provide you with customer support.
- Optimize, develop, personalize and improve the App.
- Measure product key performance indicators (KPIs) to understand how the App is being used and where improvements can be made.
- Identify and correct software defects and debug issues.
- Respond to your correspondence if you contact us.
- Fulfill any other purpose for which you provide it.
- Carry out our obligations and enforce our rights arising from any contracts entered into between you and us.
- Notify you when App updates are available, and of changes to any products or services we offer or provide through it.
- Help maintain the safety, security, and integrity of the App, databases, and other technology assets.
- Comply with legal obligations, and to respond to legal process or inquiries from authorities.
- For any reason that we described to you when collecting your personal information or for any reason for which you have provided us with your consent.
- Protect the rights, interests, and safety of us, you, and any third parties, and to exercise and defend our rights.
- Create anonymous, de-identified, or aggregated datasets. Such datasets would not be "Personal Information" subject to this Privacy Policy. We may use anonymous, de-identified, or aggregated datasets for any purpose.
The usage information we collect helps us to improve our App and to deliver a better and more personalized experience by enabling us to:
- Estimate our audience size, demographics, and usage patterns.
- Store your preferences and other user settings locally on your device.
- Understand how well App features are working and whether users are getting stuck or experiencing issues.
- Identify and correct software defects.
Disclosure of Your Information
We may disclose aggregated information about our users, and information that does not identify any individual, without restriction.
In addition, we may disclose personal information that we collect or you provide:
- To our subsidiaries and affiliates.
- To contractors, service providers, and other third parties we use to support our business (including those listed under Third-Party Information Collection above).
- To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Ardent Blue Technologies LLC's assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by Ardent Blue Technologies LLC about our App users is among the assets transferred.
- To fulfill the purpose for which you provide it.
- For any other purpose disclosed by us when you provide the information.
- With your consent.
- To comply with any court order, law, or legal process, including to respond to any government or regulatory request.
- To enforce our rights arising from any contracts entered into between you and us.
- If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Ardent Blue Technologies LLC, our customers, or others.
We do not sell or share your personal information with third parties for advertising or marketing purposes.
Your Choices About Our Collection, Use, and Disclosure of Your Information
We strive to provide you with choices regarding the personal information you provide to us.
- Managing your profile information. You may update your name, bio, and other profile information at any time within the App's settings.
- Account deletion. You may request deletion of your account and associated personal data by contacting us at allisontolpa@travelsilkroad.ai. Upon receiving your request, we will delete your account, profile information (name, bio, email), and all posted content (travel stories, photos, videos) within 30 days. Anonymized or aggregated data derived from your activity, and any data we are required to retain by law, may be retained after deletion. Content may persist in backup systems for up to 30 days following deletion before being fully purged.
- Using your phone's privacy settings. You may be able to limit certain data collection through your phone's privacy and security settings.
- Third Party Options. We do not control third parties' collection or use of your information. However, these third parties may provide you with additional ways to choose not to have your information collected or used. You can consult the privacy policies listed in the Third-Party Information Collection section above to see if they offer additional options for limiting collection.
Data Rights of European Residents
The laws of the European Economic Area and other territories provide their residents with certain data protection rights. If you are a resident of the European Economic Area, these are your rights:
- The right to access — You have the right to request that Company provide you with copies of your personal data. We may charge you a small fee for this service.
- The right to rectification — You have the right to request that Company correct any information you believe is inaccurate. You also have the right to request Company to complete information you believe is incomplete.
- The right to be forgotten — You have the right to request that Company erase your personal data, under certain conditions.
- The right to restrict processing — You have the right to request that Company restrict the processing of your personal data, under certain conditions.
- The right to object to processing — You have the right to object to Company's processing of your personal data, under certain conditions.
- The right to data portability — You have the right to request that Company transfer the data that we have collected to another organization, or directly to you, under certain conditions.
- The right to lodge a complaint — You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have not complied with applicable data protection law.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at: allisontolpa@travelsilkroad.ai.
Legal Bases for Processing (EEA Users)
Where the GDPR applies, we rely on the following legal bases to process your personal data:
| Processing Purpose | Legal Basis |
|---|---|
| Account creation and management | Contract performance (Art. 6(1)(b)) |
| Providing App features (posting content, viewing stories) | Contract performance (Art. 6(1)(b)) |
| KPI measurement and debugging | Legitimate interests (Art. 6(1)(f)) — to improve the App and resolve technical issues |
| Responding to support requests | Legitimate interests (Art. 6(1)(f)) |
| Legal compliance and responding to legal process | Legal obligation (Art. 6(1)(c)) |
| Business transfers | Legitimate interests (Art. 6(1)(f)) |
California Residents
This section applies to residents of California. We do not sell or share your personal information as those terms are defined under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). California residents have the following rights:
- Right to know — You may request information about the categories and specific pieces of personal information we have collected about you, the purposes for collection, and the categories of third parties with whom it is shared.
- Right to delete — You may request that we delete your personal information, subject to certain exceptions.
- Right to correct — You may request that we correct inaccurate personal information we hold about you.
- Right to opt out of sale or sharing — We do not sell or share personal information for cross-context behavioral advertising.
- Right to non-discrimination — We will not discriminate against you for exercising any of these rights.
To exercise any of these rights, contact us at: allisontolpa@travelsilkroad.ai. We will respond within 45 days of receiving your verifiable request.
Data Security
We take reasonable and specific measures to protect your personal information from unauthorized access, use, alteration, and disclosure:
- Data in transit is encrypted using TLS 1.2 or higher for all communications between the App and our servers.
- Data at rest is encrypted using AES-256: photos and videos stored on AWS S3 use AWS server-side encryption (SSE-S3); account and app data stored in Supabase's managed PostgreSQL uses AES-256 encryption at rest.
- Access to personal data is restricted to authorized personnel and our contracted processors (AWS and Supabase) on a need-to-know basis.
International Transfers (EEA/UK Users): Your personal data is stored and processed in the United States. Transfers of personal data from the European Economic Area or United Kingdom to the United States are conducted under Standard Contractual Clauses (SCCs) as adopted by the European Commission, which our processors (AWS and Supabase) support. By using the App, you acknowledge that your data will be transferred to and processed in the United States under these safeguards.
The safety and security of your information also depends on you. If you do not wish your name or bio to be publicly viewable, please do not provide them in the App. If you do not wish your travel stories, photos, or videos to be viewable by other users, please do not post them.
Unfortunately, the transmission of information via the internet and mobile platforms is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted through our App. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures we provide.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, subject to the following category-specific criteria:
| Data Category | Retention Period |
|---|---|
| Account data (email, name, bio) | Retained while your account is active, plus up to 30 days following account deletion |
| User-generated content (travel stories, photos, videos) | Retained while your account is active; deleted upon account deletion, with residual copies in backups purged within 30 days |
| Usage and crash logs | Up to 90 days |
| Support correspondence | Up to 1 year from the date of correspondence |
| Anonymized or aggregated data | Indefinitely, as it no longer constitutes personal data |
| Data required to be retained by law | As required by applicable law or regulation |
To request deletion of your data, see the Account Deletion section under Your Choices above.
Changes to Our Privacy Policy
We may update our privacy policy from time to time. If we make material changes to how we treat our users' personal information, we will post the new privacy policy on this page with a notice that the privacy policy has been updated.
The date the privacy policy was last revised is identified at the top of the page. You are responsible for ensuring we have an up-to-date active and deliverable email address for you and for periodically visiting this privacy policy to check for any changes.
Contact Information
To ask questions or comment about this privacy policy and our privacy practices, contact us at: