Effective July 13, 2026 · Last updated July 13, 2026
This policy explains how Roamful collects, uses, shares, and protects your information. We keep data collection minimal, and we do not sell your personal information. By using the Service you agree to this policy.
Roamful is a service of Studypop LLC, a Massachusetts limited liability company ("we", "us"). For the EU and UK General Data Protection Regulation (GDPR), Studypop LLC is the data controller. Privacy contact and general support: hello@roamful.io.
We do not process payments and do not collect or store any payment card information.
If you are in the EU or UK, we process your data under these bases: your consent (for optional analytics and marketing emails), performance of a contract (providing the Service and managing accounts), our legitimate interests (product improvement, security, and abuse prevention), and legal obligation. You may withdraw consent at any time; this does not affect processing that already occurred.
We share personal information only with service providers that help us run Roamful, and only as needed. Each processes data on our behalf:
We may also disclose information if we believe in good faith it is required by law or legal process, or necessary to protect the rights, property, or safety of Roamful, our users, or the public. If Roamful is involved in a merger, acquisition, or sale of assets, information may be transferred as part of that transaction, and we will notify you before it becomes subject to a different privacy policy.
We do not sell your personal information, and we do not share it for cross-context behavioral advertising.
If you submit a photo, tip, or edit that we publish, it may be visible to others through the Service. Do not include anything private you do not want shown. See our Terms for the license you grant on submissions.
We keep waitlist and inquiry information until you ask us to remove it or it is no longer needed for the purpose it was collected. Account data is kept for the life of your account. Technical logs are kept for a limited period for security and diagnostics. Where we anonymize data, we keep it only in de-identified form.
Roamful is not directed to children under 13, and we do not knowingly collect their personal information. If you believe a child under 13 has given us personal information, contact hello@roamful.io and we will delete it.
You can ask us to access, correct, delete, or export your personal information, or to stop emailing you, by contacting hello@roamful.io. To protect your data, we verify your identity, usually by confirming control of the email on file.
You have the right to know what we collect, use, and share; to delete and correct your information; to opt out of sale or sharing (we do neither); to limit use of sensitive information; and to non-discrimination for exercising these rights. Because we do not sell or share personal information for advertising, we treat Global Privacy Control signals as consistent with our practices. We will respond within 45 days.
You have the rights to access, rectification, erasure, restriction, portability, objection, and to withdraw consent, and to lodge a complaint with your local supervisory authority. We will respond within 30 days.
Residents of states with comprehensive privacy laws (including Virginia, Colorado, Connecticut, Texas, Oregon, and others) may have similar rights to access, correct, delete, and obtain a copy of their data, and to opt out of targeted advertising, sale, and profiling. We do not sell data or use it for targeted advertising or profiling. To exercise any right, contact hello@roamful.io. If we decline, you may appeal by replying with "Privacy Appeal" in the subject.
We use administrative, technical, and physical safeguards to protect your information, including encryption in transit, secure password hashing, and access controls. As a Massachusetts business, we maintain a Written Information Security Program (WISP) consistent with 201 CMR 17.00. In the event of a data breach involving Massachusetts residents' personal information, we will notify affected individuals as soon as practicable and no later than required by law. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
Your data is stored on servers in the United States. If you are outside the United States, your information will be transferred to and processed in the United States. For EU and UK users, we rely on recognized transfer mechanisms such as Standard Contractual Clauses or the EU-US Data Privacy Framework where our providers are certified, and on your consent.
We use a session cookie to keep portal users signed in and to run the site, and pseudonymous analytics to understand usage. We do not use advertising cookies or cross-site tracking. Because there is no accepted standard for "Do Not Track" signals, we do not respond to them, but we do not track you across other websites.
If we send marketing emails, each includes an unsubscribe link. Transactional and account messages, such as security or legal notices, are sent regardless of marketing preferences.
We may update this policy. Material changes take effect when we post the updated policy with a new effective date. Your continued use of the Service after that constitutes acceptance.
Privacy, legal, and general support: hello@roamful.io (use the subject line "Data Rights Request" for a formal request).
See also our Terms of Service. · Return to Roamful