Privacy Policy

Please note that the Privacy Policy was last revised on November 20, 2023.

At Tripwizy, we care about your personal information, which is why we have prepared this Privacy Policy to explain how we collect, use, and share it. We respect your privacy and are committed to protecting it by adhering to this privacy policy ("Policy"). This Policy describes the types of information we may collect from you or that you may provide ("Personal Information") on the website Tripwizy.com ("Website"), the mobile application "Tripwizy" ("Mobile Application"), and all their related products and services (collectively, "Services"), as well as our practices for collecting, using, maintaining, protecting, and disclosing this Personal Information. It also describes the choices available to you regarding the use of your personal information and how you can access and update it.

This policy is a legally binding agreement between you ("User," "you," or "your") and Tripisgreat LLC (doing business as "Tripisgreat," "we," "our," or "us"). If you are entering into this Policy on behalf of a company or another legal entity, you represent that you have the authority to bind that entity to this Policy, in which case the terms "User," "you," or "your" refer to that entity. If you do not have such authority or do not agree with the terms of this policy, you must not accept this policy and may not access or use the Services. By accessing and using the Services, you acknowledge that you have read, understood, and agreed to be bound by the terms of this policy. This policy does not apply to the practices of companies we do not own or control or to individuals we do not employ or manage.

Automatic Information Collection

When you open the website or use the mobile application, our servers automatically record the information that your browser or device sends. This data may include information such as your device's IP address and location, the name and version of the browser and device, the type and version of the operating system, language preferences, the web page you visited before arriving at the Services, the pages of the Services you visit, the time spent on these pages, the information you search for on the Services, access times and dates, and other statistics.

The automatically collected information is only used to identify potential abuse cases and establish statistical information regarding the use and traffic of the Services.

Collection of Personal Information

You can access and use the Services without telling us who you are or revealing information that can identify you as a specific and identifiable individual. However, if you wish to use certain features offered by the Services, you may be asked to provide certain personal information (for example, your name and email address).

We receive and store all information you knowingly provide to us when you create an account, make a purchase, or fill out a form on the Services. When necessary, this information may include the following:

  • Account details (username, unique identifier, password, etc.)
  • Contact information about you (email address, phone number, etc.)
  • Basic personal information (such as name, user ID, gender, country of residence, age, traveler preferences, etc.)
  • Device geolocation data (latitude and longitude)

You can choose not to provide us with your personal information, but this may limit your ability to enjoy certain features of the Services.

Children's Privacy Protection

We do not knowingly collect personal information from children under 13 years of age. If you are under 13 years old, please do not submit personal information through the Services. If you have reason to believe that a child under 13 has provided us with personal information through the Services, please contact us to request the removal of that child's personal information from our Services.

We encourage parents and legal guardians to monitor their children's internet usage and assist in enforcing this policy by instructing their children never to provide personal information online without their permission. We also ask all parents and legal guardians who care for children to take necessary precautions to ensure that their children are informed that they should never disclose personal information online without their permission.

Use and Processing of Collected Information

We act as both a data controller and data processor under the GDPR when processing personal information unless we have entered into a data processing agreement with you, in which case you would be the data controller, and we would be the data processor.

Our role may also vary depending on the specific situation involving personal information. We act as a data controller when we request you to provide the necessary personal information to allow you to access and use the Services. In this case, we are a data controller because we determine the purposes and means of processing personal information and comply with the data controller obligations as set forth in the GDPR.

We act as a data processor when you submit personal information through the Services. We do not own, control, or make decisions regarding the submitted personal information, and such personal information is processed only in accordance with your instructions. In this case, the user providing personal information acts as a data controller under the GDPR.

In order to provide the Services to you or fulfill a legal obligation, we may need to collect and use certain personal information. If you do not provide the information we request, we may not be able to provide the requested products or services. The information we collect from you may be used for the following purposes:

  • Create and manage user accounts
  • Deliver Services
  • Improve Services
  • Send administrative information
  • Send marketing and promotional communications
  • Send updates about the Services
  • Respond to inquiries and provide assistance
  • Solicit user feedback
  • Enhance user experience
  • Provide targeted advertising
  • Execute and manage orders
  • Enforce terms and policies
  • Manage and operate the Services

The processing of your personal information depends on how you interact with the Services, your location in the world, and the application of any of the following conditions: (i) you have given consent for one or more specific purposes; however, this does not apply when the processing of personal information is subject to the California Consumer Privacy Act or European data protection law; (ii) the provision of information is necessary for the performance of this policy with you and/or any related pre-contractual obligations; (iii) processing is necessary for compliance with a legal obligation to which you are subject; (iv) processing is related to a task carried out in the public interest or in the exercise of official authority vested in us; (v) processing is necessary for the purposes of the legitimate interests pursued by us or by a third party. We may also combine or aggregate some of your personal information to better serve you and improve and update our Services.

We rely on user consent as a legal basis, as defined in the GDPR, to collect and process your personal information.

Please note that under certain laws, we may be permitted to process information until you object to such processing by deleting your account, without relying on consent or any other legal basis mentioned above. In all cases, we will be happy to clarify the specific legal basis that applies to the processing, especially if the provision of personal information is a legal or contractual requirement, or a requirement necessary to enter into a contract.

Payment Processing

In the case of paid Services, you may be required to provide your credit card details or other payment account information, which will be used solely for payment processing. We use third-party payment processors ("Payment Processors") to securely handle your payment information.

Payment Processors adhere to the latest security standards managed by the Payment Card Industry Security Standards Council, which is a joint effort of brands such as Visa, MasterCard, American Express, and Discover. Sensitive and private data exchanges occur through a secure SSL communication channel and are encrypted and protected by digital signatures. The Services also comply with stringent vulnerability standards to create the safest possible environment for users. We will only share payment data with payment processors to the extent necessary for processing your payments, refunding those payments, and addressing inquiries and issues related to those payments and refunds.

Please note that payment service providers may collect certain personal information from you to enable them to process your payments (such as your email address, address, credit card details, and bank account number) and manage all stages of the payment process through their systems, including data collection and processing. The use of your personal information by payment service providers is governed by their respective privacy policies, which may or may not have privacy protection measures as effective as this policy. We recommend reviewing their respective privacy policies.

Information Management

You can delete certain personal information we hold about you. The personal information you can delete may change depending on the evolution of the Services. When you delete personal information, we may, however, retain a copy of unrevised personal information in our records for the duration necessary to comply with our obligations to our affiliates and partners, and for the purposes described below. If you wish to permanently delete your account and personal information, you can follow the procedure described on the following page: https://tripwizy.com/delete-account.

Disclosure of Information

Depending on the requested Services or if necessary to complete a transaction or provide a Service you have requested, we may share your information with our affiliated companies, contracted companies, and service providers (collectively, "service providers") we engage to help us operate the Services made available to you and whose privacy policies are compatible with ours or who agree to comply with our policies regarding personal information. We will not share any personally identifiable information with third parties, and we will not share any information with non-affiliated third parties.

Service providers are not allowed to use or disclose your information unless it is necessary to provide services on our behalf or to comply with legal requirements. Service providers receive only the information they need to fulfill the functions assigned to them, and we do not allow them to use or disclose the information provided for their own marketing or other purposes.

We may also disclose any personal information we collect, use, or receive if required or permitted by law, for example, to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, your safety or the safety of others, investigate fraud, or respond to a government request.

Retention of Information

We will retain and use your personal information for the period necessary to comply with our legal obligations, as long as your user account remains active, to enforce our policy, resolve disputes, and unless a longer retention period is required or allowed by law.

We may use any aggregated data derived from your personal information or incorporating them after you have updated or deleted them. At the end of the retention period, personal information is deleted. Therefore, the right of access, the right to erasure, the right to rectification, and the right to data portability cannot be applied after the expiration of the retention period.

Transfer of Information

Depending on your location, data transfers may involve the transfer and storage of your information in a country other than your own. If such a transfer occurs, you can learn more by consulting the relevant sections of this policy or by contacting us using the information provided in the contact section.

Data Protection Rights under GDPR

If you reside in the European Economic Area ("EEA"), you have certain data protection rights, and we strive to take reasonable steps to allow you to correct, amend, delete, or limit the use of your personal information. If you wish to be informed of the personal information we hold about you and want it to be removed from our systems, please contact us. In certain circumstances, you have the following data protection rights:

  1. You have the right to withdraw your consent when you have previously given your consent to the processing of your personal information. To the extent that the legal basis for our processing of your personal information is consent, you have the right to withdraw that consent at any time. The withdrawal will not affect the lawfulness of processing before the withdrawal.
  2. You have the right to know whether we process your personal information, obtain information about certain aspects of the processing, and obtain a copy of your personal information being processed.
  3. You have the right to verify the accuracy of your information and request that it be updated or corrected. You also have the right to ask us to complete personal information you believe is incomplete.
  4. You have the right to object to the processing of your information if the processing is carried out on a legal basis other than consent. When personal information is processed for reasons of public interest, in the exercise of official authority vested in us, or for the legitimate interests we pursue, you can object to such processing by providing a reason related to your particular situation to justify the objection. However, please note that if your personal information is processed for direct marketing purposes, you can object to such processing at any time without having to provide justification. To determine if we are processing personal information for direct marketing purposes, you can refer to the relevant sections of this policy.
  5. You have the right, in certain circumstances, to restrict the processing of your personal information. These circumstances include: you contest the accuracy of your personal information and we need to verify it; the processing is unlawful, but you oppose the erasure of your personal information and instead request the restriction of their use; we no longer need your personal information for the purposes of processing, but you need them for the establishment, exercise, or defense of legal claims; you have objected to processing pending the verification of whether our legitimate grounds override yours. When processing is restricted, such personal information will be marked accordingly and, except for storage, will only be processed with your consent or for the establishment, exercise, or defense of legal claims, for the protection of the rights of another natural or legal person, or for reasons of substantial public interest.
  6. You have the right, in certain circumstances, to obtain from us the erasure of your personal information. These circumstances include: personal information is no longer necessary in relation to the purposes for which it was collected or otherwise processed; you withdraw your consent to processing based on consent; you object to processing under certain data protection laws; processing is for direct marketing purposes; and personal data has been unlawfully processed. However, there are exclusions to the right to erasure, including where processing is necessary: for exercising the right of freedom of expression and information; for compliance with a legal obligation; or for the establishment, exercise, or defense of legal claims.
  7. You have the right to receive the personal information you have provided to us in a structured, commonly used, and machine-readable format, and if technically feasible, to have it transmitted to another controller without hindrance from us, provided that such transmission does not adversely affect the rights and freedoms of others.
  8. You have the right to lodge a complaint with a data protection authority regarding our collection and use of your personal information. If you are not satisfied with the outcome of your complaint directly with us, you have the right to file a complaint with your local data protection authority. For more information, please contact your local data protection authority in the EEA. This provision applies provided that your personal information is processed by automated means and the processing is based on your consent, a contract to which you are a party, or pre-contractual obligations thereof.

Privacy Rights in California

Consumers residing in California have certain additional rights regarding their personal information under the California Consumer Privacy Act ("CCPA"). If you reside in California, this section applies to you.

As described in this policy in the section concerning information collection above, we have collected the categories of personal information listed below over the past twelve (12) months:

  • Personal identifiers (such as email address, phone number, etc.)
  • Characteristics of the individual (such as age, gender, etc.)

In addition to the rights explained in this policy, California residents who provide personal information as defined by law for personal, family, or household purposes have the right to request and obtain from us, once per calendar year, information about the categories and specific pieces of personal information we have collected and disclosed.

Furthermore, California residents have the right to request the deletion of their personal information or opt-out of the sale of their personal information, which may include the sale, disclosure, or transfer of personal information to another business or third party for monetary or other consideration. To do so, simply contact us. We will not discriminate against you for exercising your rights under the CCPA.

How to Exercise Your Rights

Any request to exercise your rights can be directed to the contact information provided in this document. Please note that we may ask you to verify your identity before responding to such requests. Your request should contain enough information for us to verify that you are indeed the person you claim to be or that you are the authorized representative of that person. If we receive your request from an authorized representative, we may ask you to provide evidence that you have granted them power of attorney or that the authorized representative has valid written authorization to submit requests on your behalf.

You must provide enough details for us to understand the request properly and respond to it. We cannot respond to your request or provide you with personal information if we have not previously verified your identity or authority to make such a request and if we have not confirmed that the personal information pertains to you.

Cookies

Our Services may use "cookies" to personalize your online experience. A cookie is a text file placed on your hard drive by a web page server. Cookies cannot be used to run programs or transmit viruses to your computer. Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie.

We may use cookies to collect, store, and track information for security, customization, and statistical purposes. Please note that you have the option to accept or decline cookies. Most web browsers automatically accept cookies by default, but you can modify your browser settings to decline cookies if you prefer.

Data Analytics

Our Services may use third-party analytics tools that use cookies, web beacons, or similar information collection technologies to gather standard information about Internet activity and usage. The information collected is used to compile statistical reports on user activity, such as how often users visit our Services, the pages they visit, and the duration of their visit, etc. We use the information obtained through these analytics tools to monitor performance and improve our Services. We do not use third-party analytics tools to track or collect personally identifiable information from our users, and we will not associate any information collected from statistical reports with an individual user.

"Do Not Track" Signals

Some browsers include a "Do Not Track" feature that signals to websites you visit that you do not want your online activity to be tracked. Tracking is not the same as using or collecting information related to a website. For this purpose, tracking refers to the collection of personally identifiable information from consumers who use or visit a website or online service as they move across different websites over time. The way browsers communicate the Do Not Track signal is not yet uniform. Therefore, the Services are not currently configured to interpret or respond to Do Not Track signals communicated by your browser. Nevertheless, as described in more detail in this policy, we limit the use and collection of your personal information. For a description of Do Not Track protocols for browsers and mobile devices or to learn more about the choices available to you, visit internetcookies.com.

Advertisements

We may display online advertisements and share aggregated and non-identifying information about our customers that we or our advertisers collect during your use of the Services. We do not share personally identifiable information about individual customers with advertisers. In some cases, we may use this aggregated and non-identifying information to deliver personalized advertisements to a target audience.

We may also allow certain third-party companies to help us personalize advertising that we believe may interest users and to collect and use other data about user activities on the Services. These companies may deliver advertisements that may place cookies and track user behavior.

Social Media Features

Our Services may include social media features, such as Facebook and X (Twitter) buttons, "Share" buttons, etc. (collectively referred to as "Social Media Features"). These Social Media Features may collect your IP address, the page you are visiting on our Services, and may place a cookie to enable Social Media Features to function properly. Social Media Features are hosted either by their respective providers or directly on our Services. Your interactions with these Social Media Features are governed by the privacy policy of their respective providers.

Email Marketing

We may offer newsletters that you can voluntarily subscribe to at any time. We are committed to keeping your email address confidential and will not disclose it to any third party unless authorized in the section on the use and processing of information or for the purpose of using a third-party provider to send such emails. We will retain the information sent via email in accordance with applicable laws and regulations.

In accordance with the CAN-SPAM Act, all emails we send will clearly indicate the email sender and provide clear information on how to contact the sender. You can choose to unsubscribe from our newsletter or marketing emails by following the unsubscribe instructions included in these emails or by contacting us. However, you will continue to receive essential transactional emails.

Push Notifications

We offer push notifications that you can also voluntarily subscribe to at any time. To ensure that push notifications reach the right devices, we use a third-party push notification provider that relies on a unique device token specific to your device, issued by your device's operating system. While it is possible to access a list of device tokens, they will not reveal your identity, unique device ID, or contact information to our third-party push notification provider. We will retain the information sent via push notifications in accordance with applicable laws and regulations. If at any time you wish to stop receiving push notifications, you can adjust your device settings accordingly.

Affiliate Links

We may engage in affiliate marketing and have affiliate links present on the Services for the purpose of offering you related or additional products and services. If you click on an affiliate link, a cookie will be placed on your browser to track sales for commission purposes.

Links to Other Resources

The Services contain links to other resources that do not belong to us or that we do not control. Please note that we are not responsible for the privacy practices of these other resources or third parties. We encourage you to be aware when you leave the Services and to read the privacy statements of each resource that may collect personal information.

Information Security

We secure the information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical measures to protect against unauthorized access, use, alteration, or disclosure of personal information under our control and custody. However, no data transmission over the Internet or wireless network can be guaranteed.

Therefore, while we strive to protect your personal information, you acknowledge (i) that there are security and privacy limitations of the Internet that are beyond our control; (ii) that the security, integrity, and privacy of all information and data exchanged between you and the Services cannot be guaranteed; and (iii) that such information and data may be viewed or altered in transit by a third party, despite all efforts.

Data Breach Event

In the event that we become aware that the security of the Services has been compromised or that user personal information has been disclosed to unrelated third parties as a result of external activity, including but not limited to security attacks or fraud, we reserve the right to take reasonable appropriate measures, including but not limited to an investigation and reporting, as well as notification and cooperation with law enforcement authorities. In the event of a data breach, we will make reasonable efforts to inform affected individuals if we believe there is a reasonable risk of harm to the user due to the breach or if notification is otherwise required by law.

Changes and Amendments

We reserve the right to amend this Policy or its terms regarding the Services at any time at our discretion. When we do, we will revise the update date at the bottom of this page. We may also inform you in other ways at our discretion, such as through the contact information you have provided.

An updated version of this Policy will be effective immediately upon posting the revised Policy unless otherwise stated. Your continued use of the Services after the effective date of the revised Policy (or any other specified act at that time) constitutes your consent to these changes. However, we will not use your personal information in a substantially different manner than what was stated at the time of collecting your personal information without your consent.

Acceptance of this Policy

You acknowledge that you have read this Policy and agree to all its terms and conditions. By accessing and using the Services and by submitting your information, you agree to be bound by this Policy. If you do not agree to comply with the terms of this Policy, you are not authorized to access or use the Services.

Contact Us

If you have any questions, including regarding the information we may hold about you or if you wish to exercise your rights, you can contact us at the following address:

https://tripwizy.com/contact

We will endeavor to respond to you appropriately, resolve any complaints and disputes, and, in any case, within the timeframes prescribed by applicable data protection laws.

This document was last updated on November 20, 2023.