Privacy Policy
Your privacy is important to us. This policy explains how Travelling Fares, operated by Travelling Fares, collects, uses, and protects your personal information.
Secure Data
256-bit SSL encryption
Transparent
Clear data practices
Your Rights
Full data control
Compliant
GDPR & CCPA ready
Table of Contents
1Introduction & Data Controller
This Privacy Policy describes how Travelling Fares, operated by Travelling Fares("Company," "we," "us," or "our"), collects, uses, discloses, and protects your personal information when you access or use our website, mobile applications, and travel booking services (collectively, the "Services").
Data Controller Information
Brand: Travelling Fares
Operated By: Travelling Fares
Address: 2412 Stonewell Trail, Fort Wright, KY 41017, USA
Email: support@travellingfares.com
Phone: +1 (855) 755-6666
By using our Services, you acknowledge that you have read, understood, and agree to the collection and use of your information as described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.
This Privacy Policy is incorporated into and subject to our Terms of Service. We are committed to protecting your privacy and ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy legislation.
2Information We Collect
We collect information you provide directly to us, information collected automatically when you use our Services, and information from third-party sources to provide and improve our travel booking services.
2.1 Information You Provide Directly
- Account Information: Name, email address, phone number, password, and account preferences when you register for an account.
- Booking Information: Traveler names, dates of birth, gender, passport/ID details, frequent flyer numbers, seat preferences, meal preferences, and special assistance requirements.
- Payment Information: Credit/debit card numbers, billing address, and payment verification details (processed securely by PCI-DSS compliant payment processors).
- Communication Data: Messages, emails, and other communications you send to us through our contact forms, customer support channels, or social media.
2.2 Information Collected Automatically
- Device Information: Hardware model, operating system version, unique device identifiers, browser type and version, mobile network information.
- Log Data: IP address, access dates and times, pages viewed, links clicked, referring/exit pages, and error logs.
- Location Data: General geographic location based on IP address; precise location only with your explicit consent.
- Cookies and Tracking Technologies: Cookies, web beacons, pixels, and similar technologies to enhance user experience and analyze usage patterns. See our Cookie Policy for details.
2.3 Information from Third Parties
- Duffel API (Flight Data Provider): We use the Duffel API to power our flight search and booking services. When you search for or book flights, flight availability, pricing, and booking data is processed through this service.
- Airlines and Travel Partners: Booking confirmation details, flight status updates, and loyalty program information.
- Payment Processors: Transaction verification, fraud detection data, and payment status.
3How We Use Your Information
We use your personal information only for legitimate business purposes, including:
Service Delivery
- • Process and manage flight bookings
- • Issue electronic tickets and confirmations
- • Facilitate payments and refunds
- • Provide customer support and assistance
- • Send booking confirmations and travel updates
Account Management
- • Create and maintain your account
- • Authenticate your identity
- • Save preferences and booking history
- • Manage communication preferences
- • Provide personalized recommendations
Security & Compliance
- • Detect and prevent fraud
- • Comply with legal obligations
- • Respond to legal requests
- • Enforce our Terms of Service
- • Protect rights and safety
Improvement & Analytics
- • Analyze usage patterns and trends
- • Improve our Services and features
- • Develop new products and services
- • Conduct research and analysis
- • Test new features and functionality
4Legal Basis for Processing (GDPR)
For users in the European Economic Area (EEA) and United Kingdom, we process personal data under the following legal bases:
Contractual Necessity
Processing necessary to perform our contract with you, including booking flights and providing travel services.
Legal Obligation
Processing necessary to comply with legal requirements, such as tax obligations, anti-money laundering laws, and aviation security regulations.
Legitimate Interests
Processing necessary for our legitimate business interests, including fraud prevention, service improvement, and direct marketing (where permitted).
Consent
Where required by law, we obtain your explicit consent before processing, such as for marketing communications or non-essential cookies.
6International Data Transfers
As a global travel booking service, your personal information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.
Transfer Safeguards
When we transfer personal data outside the EEA or UK, we ensure appropriate safeguards are in place:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Transfers to countries with adequate data protection laws
- Binding Corporate Rules where applicable
- Your explicit consent for specific transfers when required
7Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations.
| Data Type | Retention Period |
|---|---|
| Booking records & transaction data | 7 years (legal/tax requirements) |
| Account information | Duration of account + 3 years |
| Customer support communications | 3 years after resolution |
| Marketing preferences | Until consent withdrawal |
| Website analytics data | 26 months (anonymized thereafter) |
8Data Security
We implement comprehensive technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.
Technical Safeguards
- • 256-bit SSL/TLS encryption for data in transit
- • AES-256 encryption for data at rest
- • Multi-factor authentication (MFA)
- • Regular security assessments and penetration testing
- • Intrusion detection and prevention systems
- • Real-time security monitoring
Organizational Safeguards
- • Employee security training and awareness
- • Access controls and least privilege principles
- • Background checks for employees handling sensitive data
- • Incident response procedures
- • Vendor security assessments
- • Regular policy reviews and updates
Security Incident Notification
In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of becoming aware of the breach.
9Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
Right to Access
Request a copy of the personal information we hold about you.
Right to Rectification
Request correction of inaccurate or incomplete personal information.
Right to Erasure
Request deletion of your personal information in certain circumstances.
Right to Restriction
Request that we limit processing of your personal information.
Right to Data Portability
Receive your data in a structured, machine-readable format.
Right to Object
Object to processing based on legitimate interests or for marketing.
How to Exercise Your Rights
To exercise any of these rights, please contact us at support@travellingfares.com. We will respond to your request within 30 days. We may need to verify your identity before processing your request.
10California Privacy Rights (CCPA)
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information.
Your CCPA Rights Include:
- Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected.
- Right to Delete: Request deletion of your personal information, subject to certain exceptions.
- Right to Opt-Out: Opt out of the "sale" of personal information (we do not sell personal information).
- Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
Do Not Sell My Personal Information
We do not sell your personal information as defined under the CCPA. We may share information with service providers who assist in our operations, but this is not considered a "sale" under the CCPA.
11Children's Privacy
Our Services are not directed to children under the age of 16. We do not knowingly collect personal information from children under 16 without parental consent.
If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us at support@travellingfares.com. We will take steps to delete such information promptly.
Note: When booking flights for minor travelers, we collect only the information necessary to complete the booking as required by airlines and aviation regulations.
12Policy Changes
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:
- Update the "Effective Date" at the top of this policy
- Notify you via email or prominent notice on our website
- Provide you with the opportunity to review the changes before they take effect
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
Contact Us About Privacy
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Team.
Travelling Fares
Company Disclosure
Travelling Fares is a company registered in the United States. All flight booking services, customer support, and business operations are conducted by Travelling Fares, which serves as the legal entity responsible for all contractual obligations, regulatory compliance, and financial transactions.