Privacy Policy

Last updated: 2024-01-31

1. Introduction

TripTune ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our travel planning platform.

This policy complies with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable privacy laws.

2. Information We Collect

2.1 Personal Information

  • Account Information: Name, email address, phone number, profile picture
  • Travel Preferences: Destination preferences, travel dates, accommodation preferences
  • Payment Information: Credit card details, billing address (processed securely through third-party providers)
  • Communication Data: Messages, support requests, feedback

2.2 Automatically Collected Information

  • Device Information: IP address, browser type, operating system
  • Usage Data: Pages visited, features used, time spent on platform
  • Location Data: Approximate location based on IP address (with your consent for precise location)
  • Cookies and Tracking: See our Cookie Policy for details

3. How We Use Your Information

We use your information for the following purposes:

Service Provision

  • • Create and manage your account
  • • Provide travel planning tools
  • • Process payments and subscriptions
  • • Send booking confirmations

Communication

  • • Send service updates
  • • Respond to support requests
  • • Send marketing communications (with consent)
  • • Notify about policy changes

Improvement

  • • Analyze usage patterns
  • • Improve our services
  • • Develop new features
  • • Personalize recommendations

Legal Compliance

  • • Comply with legal obligations
  • • Prevent fraud and abuse
  • • Enforce our terms of service
  • • Protect our rights and property

4. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Consent: Marketing communications, optional features
  • Contract Performance: Providing our services, processing payments
  • Legitimate Interest: Service improvement, fraud prevention, analytics
  • Legal Obligation: Compliance with laws, tax requirements

5. Information Sharing

We may share your information with:

Service Providers

Payment processors, cloud hosting, email services, analytics providers

Travel Partners

Hotels, airlines, activity providers (only when you make bookings)

Legal Requirements

When required by law, court orders, or to protect our rights

Business Transfers

In case of merger, acquisition, or sale of assets

Note: We never sell your personal information to third parties for marketing purposes.

6. Data Security

We implement industry-standard security measures:

  • Encryption of data in transit and at rest
  • Regular security audits and vulnerability assessments
  • Access controls and employee training
  • Secure payment processing through certified providers
  • Regular backups and disaster recovery procedures

7. Your Rights and Choices

You have the following rights regarding your personal information:

Access & Portability

Request a copy of your personal data in a portable format

Correction

Update or correct inaccurate personal information

Update Profile

Deletion

Request deletion of your personal data (right to be forgotten)

Withdraw Consent

Withdraw consent for marketing and optional processing

Manage Preferences

8. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Account Data: Until account deletion or 7 years after last activity
  • Transaction Records: 7 years for tax and legal compliance
  • Marketing Data: Until you unsubscribe or withdraw consent
  • Analytics Data: Aggregated data may be retained indefinitely

9. International Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions for certain countries
  • Certification schemes and codes of conduct

10. Children's Privacy

Our Service is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through prominent notice on our Service.

12. Contact Information

Data Protection Officer

Email: privacy@triptune.com

Data Protection: dpo@triptune.com

Address: TripTune Privacy Team

Response Time: Within 30 days

Terms of Service GDPR Rights Back to Home