Last updated 2026-07-06
GPX Vault is a small, independently-run tool for storing and organizing GPS track and waypoint data you choose to upload. This page explains what happens to your data in plain language, without legal boilerplate you'd need a lawyer to parse.
We use one strictly-necessary cookie to keep you signed in, and, only if you check "Keep me logged in," a second cookie so you don't have to log in again for 30 days. Neither is used for tracking or advertising, and we don't use any third-party cookies.
A couple of pieces of the app come from outside services:
Outbound email (verification and password reset messages) and encrypted backup storage both run on infrastructure we own and operate ourselves, not a third-party email or cloud storage vendor.
We keep your data for as long as your account exists. If you delete a track, waypoint, or folder, it goes to Trash and can be restored until you empty it or permanently delete it, at which point the underlying file is removed from storage. If you delete your account, everything (your account record, every saved item, every stored file) is removed immediately, not just hidden. Nightly encrypted backups roll over daily, with each night's backup replacing the last, so we don't keep a long trail of historical backups sitting around indefinitely.
GPX Vault isn't directed at children, and we don't knowingly collect information from anyone under 13. If you believe a child has created an account, contact the site owner and it will be removed.
Data is stored on a dedicated server, isolated from other services, behind a firewall, with encrypted backups. As with any online service, no system is perfectly secure, so don't upload anything you wouldn't want stored on a small independent server.
If this policy changes in a way that matters, we'll update the date above. Questions or deletion requests: contact the site owner.