Last updated 13 July 2026
Who we are
Munro Planner (the app for iPhone and Android) and munroplanner.com are operated by Simon Grogan, an independent developer based in the UK. For anything in this policy, contact us via the contact page.
The short version
- You can use most of the app without creating an account.
- Your device's GPS location is used on your phone only — for showing where you are on the map, navigation, and auto-logging summits. It is never sent to our servers.
- If you create an account, we store your email address, a securely hashed password, and your logbook so it can sync between devices.
- Payments are handled entirely by Apple and Google. We never see your card details.
- There are no ads, no third-party analytics or tracking SDKs, and we never sell or share your data for marketing.
What the app collects, and why
Using the app without an account
The app fetches forecasts, route scores, map tiles and similar data from our server. Like almost every internet service, those requests include standard technical information (your IP address and device type) in short-lived server logs used for security and to keep the service running. We don't use this to identify or profile you.
Your location
With your permission, the app uses your device's location to show your position on the map, guide you along routes, and optionally auto-log a Munro when you reach the summit. This all happens on your device. Your GPS location is not transmitted to our servers or to anyone else.
Drive times
If you use drive times, the departure point you type in (a postcode, town or city) is sent to our server to calculate journey times to route start points. Results are cached by place, not by person, and your departure point is not linked to your identity or account.
Accounts and logbook sync
Creating an account is optional, and exists so your logbook can sync across devices. If you create one, we store:
- Your email address and a hashed password (we can't read your password).
- Your logbook data: completed Munros, dates, notes and related settings.
- Session tokens so you stay signed in, stored hashed.
You can delete your account at any time from inside the app (More → Account). Deletion is immediate and permanent — it removes your account, sessions and synced logbook from our server. You can also ask us to delete it via the contact page.
Subscriptions and gifts
Subscriptions are purchased through the Apple App Store or Google Play. Apple or Google handle the payment; we never receive your payment details. We receive confirmation of your subscription status so the app can unlock supporter features. Gift codes are stored as secure hashes — we keep only enough to validate a redemption.
Feedback and logbook imports
If you send feedback through the app, we keep the message (and your email, if you choose to include it) so we can read and act on it. If you use the logbook import feature — uploading a spreadsheet, notes or a saved Walkhighlands page — the content you upload is processed to build your logbook entries. Where automatic interpretation is needed, the uploaded content may be processed by an AI service (Google Gemini) solely for that purpose; it isn't used for anything else.
What the website collects
munroplanner.com doesn't use analytics or marketing cookies. The site is served through Cloudflare, which may set strictly necessary cookies for security. If you use the contact form, your name, email address and message are emailed to us (delivered via Mailgun) so we can reply — they're not stored in a database.
Third parties we rely on
| Service | What it does |
|---|---|
| Apple App Store / Google Play | App distribution, payments and subscription management. |
| Ordnance Survey | Licensed OS mapping. Tile requests are made through our server. |
| Cloudflare | Serves and protects the website. |
| Mailgun | Delivers email from the contact form and gift purchases. |
| Google Gemini | Interprets logbook files you choose to import — only when you use that feature. |
Weather, wildlife and route data are gathered and processed on our own server; no personal data of yours is involved in that.
How long we keep things
Account and logbook data are kept while your account exists and removed when you delete it. Server logs are short-lived and rotate automatically. Feedback is kept as long as it's useful for improving the app.
Security
All traffic between the app, the website and our server is encrypted (HTTPS). Passwords and session tokens are stored hashed. No method of storage is perfectly secure, but we deliberately keep the amount of personal data we hold small.
Your rights
Under UK data protection law (UK GDPR) you can ask for a copy of the personal data we hold about you, ask us to correct it, or ask us to delete it. The fastest route for deletion is in the app itself (More → Account → delete account); for anything else, use the contact page. You also have the right to complain to the Information Commissioner's Office.
Children
The app is not directed at children under 13, and we don't knowingly collect personal data from them.
Changes to this policy
If this policy changes in any meaningful way, we'll update this page and the date at the top. Nothing in a future version will quietly start selling your data — that isn't what this app is for.