Miles Miles Explore
Theme Send feedback Sign in

Privacy Policy

This policy applies to all information collected or submitted on the Miles website, and all information collected when users message with Miles through any of their devices.

🔒 Privacy Notice

Your conversations could contain sensitive personal or financial information. We take measures to protect your privacy, but cannot guarantee absolute security. Please:

  • Do not share sensitive data, such as credit card numbers
  • Review what information you share in conversations
  • Contact us if you have privacy concerns

Information We Collect

Account Information

When you create an account, we collect your email address for login and account management purposes. Navigate users may add a phone number for SMS chat access. We use cookies to keep you logged in.

Conversation Data

We collect and store all messages you send to Miles, including:

  • Your questions and requests
  • Our AI responses to you
  • Conversation history and context
  • Timestamps and usage patterns

Memory and Profile Data

Our AI memory system may extract and store persistent information from your conversations, including:

  • Travel preferences: Airlines, hotels, destinations you prefer
  • Spending patterns: Categories you spend in, types of purchases you make
  • Credit card preferences: Types of cards you're interested in, annual fee tolerance
  • Personal context: Family size, location, travel frequency
  • Current goals: Card applications in progress, upcoming trips, financial goals

Technical Information

Our server software stores basic technical information, such as your IP address, web-browser version, and usage analytics in logs and temporary memory.

Cookies

We use cookies to enhance your experience:

  • Authentication cookies: Keep you logged in across sessions
  • Preference cookies: Remember your display settings (e.g., dark/light mode)
  • Analytics cookies: Help us understand how visitors interact with our site so we can improve the experience. These cookies may assign you to different versions of page content to help us determine what works best.

These are first-party cookies set by askmiles.ai. We do not use third-party tracking cookies or share cookie data with advertisers.

Feedback

We collect any feedback you send us via email, which may include your name, email address, and any other information you include.

Third-Party Services

Artificial Intelligence Processing

Important: Your conversations are processed by third-party AI services to provide responses:

  • OpenRouter: May process your messages to generate responses. OpenRouter provides access to various AI models used by Miles.
  • Google: May process your messages to generate responses. May analyze conversations for context and memory extraction.

These services may process, analyze, and temporarily store your conversation data according to their own privacy policies. We recommend reviewing their privacy policies:

Google Cloud Platform

We use Google Cloud services to store and process your data, including conversation history and memory profiles. Google acts as our data processor and may access your data for service provision. See Google Cloud Privacy Policy.

Twilio

For Navigate users with SMS access, we use Twilio to send and receive SMS messages. Twilio may process and store phone numbers and message content to facilitate delivery. See Twilio's Privacy Policy.

Stripe

Payments are processed by Stripe, which may receive payment information and basic technical data. See Stripe's Privacy Policy.

How We Use Your Information

We use collected information to:

  • Provide AI responses: Process your questions through AI services
  • Account management: Manage your account, send account-related emails
  • Improve personalization: Use conversation history and memory data to provide better recommendations
  • Send notifications: Email updates and SMS messages (Navigate users only)
  • Process payments: Handle support payments and billing
  • Improve our service: Analyze usage patterns and service performance
  • Legal compliance: Meet legal obligations and protect our rights

Data Retention

We do not automatically delete your data. Information is retained as follows:

  • Active accounts: All data is retained indefinitely while your account is active
  • Deleted accounts: When you delete your account through Settings, we permanently delete:
    • All conversation history
    • All AI-extracted memory and profile data
    • Your wallet and card information
    • Point valuations and preferences
    • Email address and phone number
    • All other account data
  • Audit logs: Minimal deletion logs may be retained for up to 90 days for compliance purposes

You can delete your account at any time through your Settings page, or by contacting us at [email protected].

Data Sharing

We do not sell your personal information. In the ordinary course of business, we may share data only as follows:

  • Service providers: AI services, cloud hosting, payment processing (as listed above)
  • Aggregate statistics: Anonymous, aggregated data about service usage
  • Legal requirements: When required by law, court orders, or to protect our rights
  • Business transactions: In mergers, acquisitions, or asset sales, user information may be transferred

Your Rights and Choices

Access and Control

  • Account data: Access and modify through your account Settings page
  • Data export: Download all your data in JSON format using the "Download My Data" button in Settings
  • Account deletion: Permanently delete all your data using the "Delete Account" button in Settings
  • Alternative: Contact us at [email protected] for assistance with data requests

For EU Residents (GDPR Rights)

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing
  • Data portability
  • Object to processing
  • Lodge complaints with supervisory authorities

For California Residents (CCPA Rights)

You have the right to:

  • Know what personal information is collected
  • Delete personal information
  • Opt-out of sale (we don't sell data)
  • Non-discrimination for exercising rights

Security

We implement security measures including:

  • HTTPS encryption for all communications
  • Secure cloud storage with Google Cloud
  • No password storage (we don't collect passwords)
  • Encrypted backups
  • Regular security updates and monitoring

International Data Transfers

Your information may be processed, stored, and used outside your country of residence, including in the United States. By using our service, you consent to these transfers. Data privacy laws vary by jurisdiction.

Children's Privacy

We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us immediately.

Contact Us

For privacy questions, data requests, or to exercise your rights, email [email protected].

Changes to This Policy

We may update this policy and will post changes here with revision dates.

Change Log:

January 24, 2026: Updated AI providers to reflect current services (OpenRouter, Google). Removed OpenAI and Clarifai.

December 25, 2025: Added detailed cookie disclosure section including analytics cookies for site optimization.

December 13, 2025: Removed Pinecone from third-party services (no longer used).

December 8, 2025: Added Clarifai to third-party services. Clarified SMS access description.

July 25, 2025: Added AI processing disclosures, memory system details, data retention policies, and enhanced user rights sections.

March 15, 2025: Added Twilio.

March 10, 2025: First published.