Privacy Policy

Last updated: June 9, 2026

MyVV ("MyVV", "we", "us") is an independent app developed by CTT Apps LLC that helps Virgin Voyages sailors manage their sailings. This policy explains what information the MyVV app and myvv.io collect, how we use it, and the choices you have. By using MyVV, you agree to this policy.

MyVV is not affiliated with, endorsed by, or sponsored by Virgin Voyages. We are not Virgin Voyages and do not act on its behalf.

1. Information we collect

Profile information you provide or that the app syncs from your Virgin Voyages account so it can show your sailings:

Name, email address, and Virgin Voyages Sailor ID
Date of birth, phone number, gender, and citizenship
Your primary mailing address

Voyage information: your bookings and itineraries — ship, cabin, booking reference, sailing dates, ports, and related details, including booking and financial details the app syncs from your Virgin Voyages account (such as your account balance, payment schedule, and any bar tab, Sailor Loot, or add-ons).

Account & sign-in information: to let you sign in to the MyVV sailor portal, we briefly store one-time sign-in codes, and — if you set them up — passkeys (a public key and related device metadata). Your biometrics and private keys never leave your device.

Activity & usage data, which we log to operate and secure the Service and understand how it's used:

Sign-ins to the portal, and app opens and closes (including session length)
Pages you view in the sailor portal, and manual or background data syncs
The IP address, device platform, and app version associated with these events

Location information: we do not track your precise or continuous location. With your permission, the app may attach a coarse location (city, region, and country) to a sync, and we derive an approximate location from your IP address. This is used for security, troubleshooting, and showing relevant account activity — never for advertising.

Device & technical information, needed to deliver notifications and operate the service:

A per-install device identifier and push tokens (Apple Push Notification service on iOS, Firebase Cloud Messaging on Android)
Device platform and app version
IP address (recorded with requests for security and abuse prevention)

2. How we use your information

Show your itinerary, cabin, ports, and boarding/sail-away countdowns
Generate your boarding pass for Apple Wallet and Google Wallet
Send push notifications and Live Activities (boarding alerts, updates)
Generate AI port itinerary suggestions for your stops
Show your voyage history and statistics (cruises, nights on board)
Verify your identity and secure your account (sign-in codes, passkeys)
Understand how the app is used, and operate, secure, debug, and improve it

3. Push notifications

We use Apple Push Notification service (APNs) on iOS (including Live Activities) and Firebase Cloud Messaging (FCM) on Android to deliver notifications. You can turn notifications off at any time in your device settings (iOS Settings, or the app's notification settings on Android); the rest of the app continues to work.

4. SMS / text messages

If you choose to receive your sign-in code by text in the MyVV sailor portal, we use Twilio to send a one-time passcode (OTP) to the mobile phone number on file for your account. SMS sign-in is offered for U.S. mobile numbers only (we fall back to email otherwise). These are transactional security messages only — we do not send marketing or promotional text messages.

Message frequency depends on how often you request a sign-in code.
Message and data rates may apply.
Reply STOP to opt out at any time, or HELP for help.

Your mobile phone number and SMS opt-in/consent are never shared with any third parties or affiliates for marketing or promotional purposes. See our Terms & Conditions for the full messaging terms.

5. AI port planning

On iOS, port-day suggestions are generated using Apple Intelligence, Apple's built-in AI. Requests are handled on your device and, when additional processing is needed, by Apple's Private Cloud Compute — under Apple's terms, your requests are not stored and are not used to train Apple's models. MyVV only provides non-identifying context such as the port and dates; we do not send your profile identifiers (name, DOB, citizenship, address) for this purpose.

6. How we share information

We do not sell your personal information. We share it only with service providers who process it on our behalf to run MyVV:

Hosting & database (our application host and managed MongoDB database) to store and serve your data
Apple — APNs and Wallet (notifications and passes), and Apple Intelligence / Private Cloud Compute for port planning (see above)
Google / Firebase — Firebase Cloud Messaging to deliver push notifications on Android, and to generate an "Add to Google Wallet" pass when you choose it
Twilio — to deliver SMS sign-in codes; only your phone number and the code are sent, solely to deliver that message
Resend — to deliver email (sign-in codes, magic links, and account notices)
An IP-geolocation provider — to derive an approximate location from an IP address for security and account activity
Mapping and weather providers — to display route maps and port-day weather; these receive the coordinates of the ports shown, not your personal identifiers

No mobile information (including your phone number and SMS opt-in/consent data) is shared with third parties or affiliates for marketing or promotional purposes, and it is never sold. We may also disclose information if required by law, or to protect the rights, safety, and security of our users and service.

7. Data retention

We keep your information for as long as your account is active or as needed to provide the app. You can ask us to delete your data at any time (see "Your rights"); we will delete it unless we are required to retain it for legal reasons. Activity and usage logs are automatically deleted after about 120 days, and push tokens reported as invalid (by APNs on iOS or Firebase Cloud Messaging on Android) are removed automatically.

8. Security

Data is transmitted over encrypted HTTPS connections and stored in a database that is not publicly reachable. Access to administrative functions requires authentication with multi-factor authentication, and we apply rate limiting and other safeguards. No system is perfectly secure, but we work to protect your information using reasonable measures.

Cookies & sessions: the sailor portal and dashboard use a single essential, signed session cookie to keep you signed in. We do not use third-party advertising or cross-site tracking cookies.

9. Your rights and choices

You can request to access, correct, or delete your personal information, or ask questions about how it is handled, by emailing us at privacy@myvv.io. You can also download a copy of your data at any time from the sailor portal. Depending on where you live, you may have additional rights under laws such as the GDPR or CCPA; we honor applicable requests. Your data is processed in the United States.

10. Children's privacy

Here's the easy one: Virgin Voyages is a strictly 18+, adults-only cruise line — no kids, no strollers, no juice boxes by the pool. Since you can't even sail without being an adult, MyVV isn't for anyone under 18 either. We don't direct the app to children and don't knowingly collect their information. In the wildly unlikely event a pint-sized stowaway slips aboard and we find out, we'll delete their data faster than you can say "all aboard." 🚢

11. Changes to this policy

We may update this policy from time to time. When we do, we will revise the "Last updated" date above, and significant changes may be communicated in the app.

12. Contact us

Questions about this policy or your data? Email privacy@myvv.io.