The short version: Anywherely does not sell your data. We collect minimal information to run the service and improve it. Affiliate links may set third-party cookies when you click them.
Section 1
Who we are
Anywherely (anywherely.app) is a group flight search tool that helps friends find destinations everyone can fly to cheaply. The service is operated by an individual developer based in Portugal.
Questions about this policy? Email us at hello@anywherely.app.
Section 2
Data we collect
Information you provide
- Email address — if you voluntarily subscribe to our mailing list. Stored by our email platform (Brevo). You can unsubscribe at any time via the link in any email.
- Contact messages — if you email us or submit a contact form. Used only to respond to your enquiry.
Information collected automatically
- Cloudflare analytics — aggregated, privacy-preserving page-view data. No cookies, no fingerprinting. We cannot identify individual visitors from this data.
- Cloudflare Turnstile — bot-protection challenge data. Designed to be privacy-preserving and does not use tracking cookies. See Cloudflare's Turnstile privacy page.
- Search queries — departure airports, dates, and number of travellers entered into the search form. Passed to our flight-search API (SerpApi) to retrieve results. We do not log or store your searches.
Section 3
Affiliate links and third-party cookies
Anywherely earns commission through affiliate partnerships. When you click a "Find flights", "Book a hotel", or "Experiences" button, you are directed to a third-party website such as Kiwi.com, Booking.com, or GetYourGuide. These sites may set their own cookies to track referrals.
We have no control over these third-party cookies. Clicking an affiliate link does not share your email address or any personal data held by Anywherely with these partners.
Relevant third-party privacy policies:
Section 4
How we use your data
- To send you product updates and news (email subscribers only — with your consent)
- To respond to contact enquiries
- To protect the service from automated abuse (Turnstile)
- To understand aggregate usage patterns (Cloudflare analytics)
We do not sell, rent, or trade your personal data to third parties.
Section 5
Legal basis for processing (GDPR)
For users in the European Economic Area, we process personal data on the following legal bases:
- Consent — for email subscriptions. You may withdraw consent at any time.
- Legitimate interests — for security (bot protection) and aggregate analytics.
- Contract performance — to provide search results in response to your query.
Section 6
Data retention
- Email addresses — retained until you unsubscribe.
- Contact messages — retained for up to 12 months, then deleted.
- Search queries — not stored by Anywherely.
Section 7
Your rights
Under GDPR and applicable law, you have the right to:
- Access the personal data we hold about you
- Request correction or deletion of your data
- Withdraw consent at any time (e.g. unsubscribe from emails)
- Lodge a complaint with your local data protection authority
To exercise any of these rights, email hello@anywherely.app.
Section 8
Cookies
Anywherely itself does not set persistent cookies. Cloudflare may set short-lived technical cookies for security and performance purposes. Affiliate partners set their own cookies when you click through to their sites (see Section 3).
You can block or delete cookies via your browser settings at any time, though this may affect the functionality of third-party sites.
Section 9
Children's privacy
Anywherely is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.
Section 10
Changes to this policy
We may update this policy from time to time. Material changes will be communicated via the mailing list if you are subscribed. The "Last updated" date at the top of this page reflects the most recent revision.