Last updated July 13, 2026
Most apps send your data to a company's server. dally doesn't have one.
Everything you create in dally, your trips, bookings, receipts, notes, is stored in your own iCloud account, using Apple's CloudKit service. dally can't see it any more than a filing cabinet can see what's inside it.
When you share a trip, the items you mark "shared" become visible to the people you invite, through Apple's own iCloud sharing system, not through any server dally runs.
That single fact shapes almost everything below: most of what dally "collects" is really just what Apple stores on your behalf, at your direction. dally is built and run by Kevin Kheira, an independent developer, not a company with a data team. Kevin is the person responsible for the choices on this page, referred to in some privacy laws as the "data controller."
dally uses Sign in with Apple to identify you. Depending on what you allow Apple to share, dally may receive:
Your name and photo (if you add one) appear to people on trips you share with them. Your email address is different: dally stores it privately on your own account and never shows or shares it with anyone, including other people on your trips. It exists only so your identity can be restored if you ever sign in again on a new device.
You can also add a home airport and a profile photo. Both are optional, and both live in your private iCloud record.
Everything you add to a trip, flights, hotels, restaurant reservations, activities, notes, and receipts (including receipt photos and amounts), is stored in your iCloud account.
Each item can be marked "Only me" or "Shared with the group." Items marked "Only me" are never sent to anyone else on the trip, even if the trip itself is shared. You choose this when you add the item, and can change it later.
If you allow calendar access, dally looks through your device calendar to find events that look like flights or hotel stays, so it can offer to build a trip around them.
That scan happens entirely on your phone. Your calendar's raw events are never uploaded, transmitted, or stored anywhere. Only the trip details you review and approve get saved, to your own iCloud, exactly like a trip you built by hand.
If you allow location access, dally uses your approximate location, not precise GPS, to show local weather for wherever you're traveling, using Apple's WeatherKit service.
Your location isn't logged or stored as a history. It's used live, in the moment, to fetch a forecast.
The camera is used only if you choose to photograph a receipt. dally doesn't browse or scan your existing photo library, you pick individual photos yourself when adding a receipt or profile picture, the same way any app's photo picker works.
dally can also save the trip poster images it generates back to your Photos library, but only when you tap to save one.
dally generates a skyline illustration for the places you visit. To do that, it sends only the name of the destination (for example, "Tokyo") to Google's Gemini API, which acts as a service provider for this one narrow purpose.
No personal information, trip details, photos, or anything that identifies you is ever included in that request. The resulting artwork is cached and reused for everyone traveling to that destination, so the same request rarely happens twice. Google's own privacy policy governs how they handle that request on their end.
When dally reads a pasted booking confirmation, it can optionally share anonymous signals about how well that went (for example, whether it succeeded, and a general country region) so the underlying logic can improve over time.
This never includes the document's text, your name, or anything that identifies you. It's on by default and can be turned off any time in Settings, under Your Data.
| Advertising | No ad networks, no ad identifiers, no ad tracking of any kind |
| Analytics SDKs | No Firebase, no Mixpanel, no third-party analytics of any kind |
| Cross-app tracking | dally can't see what you do in other apps, and doesn't try to |
| Selling your information | Never sold or shared for money, as those terms are defined under California and EU privacy law |
| Your contacts | dally doesn't read your address book |
| Your photo library | dally never scans it; you choose individual photos yourself |
You can delete any booking, note, or receipt at any time, or delete an entire trip. Use Reset everything, in Settings, to clear all of your trips and start fresh.
You can also export your trips, bookings, and receipts as a spreadsheet, or make a full backup, anytime from Export all data in Settings. That's your information, in a format you can open anywhere, whenever you want it.
Because your data lives in your own iCloud account and not on a company server, deleting the dally app and its iCloud data (from your device's Settings) removes it completely. There's no separate copy sitting anywhere else.
Wherever you live, you have real control over your information, not just because a law says so, but because of how dally is built.
You already have full access to everything dally has about you. It's right there in the app, in your trips, your profile, your settings. There's no separate request process to wait on, because there's no hidden copy to ask about.
Export all data, in Settings, gives you your trips, bookings, and receipts as a spreadsheet you can open anywhere, or a full backup file. That covers what privacy law calls the right to data portability.
Edit or delete anything yourself, a booking, a note, an entire trip, directly in the app. Because your private trip data lives only in your own iCloud account and dally keeps no separate copy, deleting it yourself is the complete, final word. There's nothing further for us to erase on our end.
The one exception is the anonymous diagnostic signals described above. They were never linked to your identity to begin with, so there's nothing tied to your name to find or remove.
dally doesn't sell or share personal information for money or cross-context advertising, as those terms are defined under California law, so there's nothing to opt out of. dally also honors Global Privacy Control browser signals, though again, there's no sale or sharing for one to affect.
You'll never be charged more, denied a feature, or treated worse for exercising any of these rights. There's nothing to lose by asking.
If anything here doesn't cover your situation, or you'd rather not use the in-app tools yourself, email support@planwithdally.com. We'll respond within 30 days.
If you're in the EU or UK, you also have the right to lodge a complaint with your local data protection authority. California residents can contact the California Attorney General's office. You don't need to contact us first.
dally is built by one developer, not a company with international offices, but the services it relies on are global. Apple's iCloud, and Google's Gemini API (used only for the single destination-name request described above), are both operated by companies headquartered in the United States with infrastructure and legal safeguards for handling data across countries.
Their own privacy policies describe this in detail: Apple's privacy policy and Google's privacy policy.
dally isn't directed at children under 13, and dally doesn't knowingly collect information from them. If you believe a child has used dally to create an account, contact us and we'll address it.
If this policy changes in a meaningful way, we'll update the date at the top of this page. We'd encourage checking back occasionally, but nothing here changes without a reason you could point to.
Questions about this policy, how dally handles your data, or a privacy request, can be sent to support@planwithdally.com.