Last updated: 9 July 2026
Guide by Vana — Privacy Policy
Guide by Vana is operated by Vana London Ltd (“Vana”, “we”, “us”), company number 16833118, England & Wales. We are the data controller for the personal data described here. Contact: hello@vanalondon.com.
This policy covers the Guide by Vana app (com.vanalondon.guide) and app.vanalondon.com. It sits alongside our main Privacy Policy, which covers the Vana website, waitlist and weekends. Guide by Vana is for adults aged 18 and over; we don’t knowingly collect data from anyone under 18.
1. Before you sign in
You can browse the Guide without an account. Before you sign in, your activity is anonymous. We run basic, cookieless analytics and anonymous interaction heatmaps to understand how the Guide is used, and we use your IP address to estimate an approximate (city-level) location — we don’t store the full IP beyond that. Any precise location is only ever used with your permission — see “Photos and location” below. Lawful basis: legitimate interests.
2. When you sign in
To create and secure your account we collect the phone number you verify (through our verification provider, Twilio). We store the places you save (in our database, Supabase). After you sign in, your app activity is linked to your account through an internal user ID so we can understand how the Guide is used — but never to your name or email. Lawful basis: performance of a contract, and legitimate interests in understanding usage.
3. Photos and location
Some optional features use your photos and your location, always with your permission. Your photo diary: you can add your own photos and note where each was taken. The photos themselves stay on your device — we don’t upload or store them on our servers. When you tag where a photo was taken, we save that place to your account so it can appear on your “Your London” map. Photo location (optional). If you turn on “Use photo location to suggest places”, the Guide reads the location saved in a photo’s metadata (EXIF) on your device to suggest where it was taken, so you don’t have to type it. This is off by default. When on, the coordinates are read only at the moment you add a photo and sent once to Google Places to look up a place name (Google acts as our processor); we do not store the raw coordinates, and any location metadata is removed from the image before it is saved. Photo-diary images stay on your device. You can turn this off at any time in Settings. “Near me” on the map: if you grant location access, the map’s “near me” option uses your device’s current location to sort places by distance. We use it in the moment to answer that request — we don’t track your location in the background. Places you’ve been: when you mark places or neighbourhoods as visited, we store that to build your personal “Your London” map. It’s tied to your account and you can remove entries. Lawful basis: your consent for the device and photo-location permissions (which you can withdraw any time in your device settings), and our legitimate interest in providing the diary and map features you choose to use.
4. Your taste
If you take the taste quiz or rate places, we store your answers and ratings and link them to your account so we can personalise your Recommended. If you choose to share your quiz result, that’s done through your device’s own share sheet — you decide where it goes, and it sends a link, not your account data. Lawful basis: our legitimate interest in tailoring the Guide to you.
5. Community features
The Guide includes optional social features. If you add friends or make yourself discoverable by username in Settings, other members can see your profile — your handle and the places, collections and notes you choose to share. Finding friends by phone number. Optionally, you can make yourself findable by phone number and find members you already know. This is off by default. If you turn on “Findable by phone number” (Settings), members who have your number can find your profile. If you use “Find friends from your contacts”, the numbers in your device’s address book are hashed on your device — a one-way transformation, so your actual numbers never leave your phone — and only those hashes are checked, in memory, against members who have chosen to be findable. Matches are shown so you can send a friend request; everything else is discarded at once. We don’t store your contacts, we store nothing about people who aren’t members, and we never message anyone on your behalf. You can also look up a single number, and turn all of this off in Settings. Lawful basis: your consent, and our legitimate interest in helping members connect — with non-members’ numbers processed only transiently and never stored. You control what you share and can keep saves private. If you opt in, we send a daily digest of places your friends have saved. You can report any profile or piece of user content, and block any member, from within the app; reports reach our safety team directly. Lawful basis: performance of a contract and our legitimate interest in operating features you choose to use. See our Child Safety Standards for how we handle abuse and exploitation.
6. AI concierge
The Guide includes an optional AI concierge (“Ask the Guide”) that returns suggestions drawn only from our own curated listings. To generate a reply, the text you enter is sent to our AI provider, Anthropic, which processes it to interpret your request and compose a response. Under Anthropic’s commercial terms this content is not retained by default and is never used to train AI models. Anthropic is based in the United States; where your text is processed outside the UK, that transfer is protected by appropriate safeguards (such as the UK International Data Transfer Agreement). Separately, we store concierge query text in anonymised form — not linked to your account, without a precise timestamp, and deleted after 90 days — to spot gaps in our coverage. Lawful basis: our legitimate interest in improving the service. You can report any concierge response using “report this answer”.
7. Session replay and surveys
Only if you opt in in Settings, we record anonymous session replays — we mask text and form inputs so we don’t capture what you type, exclude sign-in screens, keep recordings for 30 days, and you can turn it off any time. We may also show optional in-app surveys; your answers are stored with your feedback.
8. Who we share data with
We use trusted processors acting on our instructions only: Supabase (database hosting, EU), Twilio (phone verification), PostHog (product analytics, EU) and Anthropic (AI concierge). We never sell your data. Some processing may take place outside the UK under appropriate safeguards.
9. Retention
We keep your account and saved data while your account is active. Anonymous pre-sign-in analytics are kept in aggregate. Session replays are deleted after 30 days; anonymised concierge queries after 90 days.
10. Deleting your account
You can delete your Guide account and saved data at any time — in the app, on the web at https://www.vanalondon.com/delete-account, or by emailing hello@vanalondon.com.
11. Your rights
You can access, correct, delete, restrict or object to our use of your data, request portability, and withdraw consent at any time. To exercise any right, email hello@vanalondon.com. You can also complain to the Information Commissioner’s Office (ico.org.uk).
12. Changes
We’ll update this policy as the Guide develops and note the date above.