Traviflight®
Legal Document

Privacy Policy

Your privacy is important to us. This policy explains how Traviflight®, an affiliate of Bookmyairtravel LLC, collects, uses, and protects your personal information.

Effective Date: December 1, 2025

Secure Data

256-bit SSL encryption

Transparent

Clear data practices

Your Rights

Full data control

Compliant

GDPR & CCPA ready

Table of Contents

1. Introduction & Data Controller2. Information We Collect3. How We Use Your Information4. Legal Basis for Processing5. Information Sharing & Disclosure6. International Data Transfers7. Data Retention8. Data Security9. Your Privacy Rights10. California Privacy Rights (CCPA)11. Children's Privacy12. Policy Changes13. Contact Information

1Introduction & Data Controller

This Privacy Policy describes how Traviflight®, an affiliate of Bookmyairtravel LLC("Company," "we," "us," or "our"), collects, uses, discloses, and protects your personal information when you access or use our website, mobile applications, and travel booking services (collectively, the "Services").

Data Controller Information

Brand: Traviflight®

Affiliated With: Bookmyairtravel LLC

ARC Authorization Number: 21612953

Address: 20 S Charles St 403 1481, Baltimore, MD 21201, United States

Email: [email protected]

Phone: +1 (866) 240-9306

By using our Services, you acknowledge that you have read, understood, and agree to the collection and use of your information as described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

This Privacy Policy is incorporated into and subject to our Terms of Service. We are committed to protecting your privacy and ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy legislation.

2Information We Collect

We collect information you provide directly to us, information collected automatically when you use our Services, and information from third-party sources to provide and improve our travel booking services.

2.1 Information You Provide Directly

  • Account Information: Name, email address, phone number, password, and account preferences when you register for an account.
  • Booking Information: Traveler names, dates of birth, gender, passport/ID details, frequent flyer numbers, seat preferences, meal preferences, and special assistance requirements.
  • Payment Information: Credit/debit card numbers, billing address, and payment verification details (processed securely by PCI-DSS compliant payment processors).
  • Communication Data: Messages, emails, and other communications you send to us through our contact forms, customer support channels, or social media.

2.2 Information Collected Automatically

  • Device Information: Hardware model, operating system version, unique device identifiers, browser type and version, mobile network information.
  • Log Data: IP address, access dates and times, pages viewed, links clicked, referring/exit pages, and error logs.
  • Location Data: General geographic location based on IP address; precise location only with your explicit consent.
  • Cookies and Tracking Technologies: Cookies, web beacons, pixels, and similar technologies to enhance user experience and analyze usage patterns. See our Cookie Policy for details.

2.3 Information from Third Parties

  • Duffel API (Flight Data Provider): We use the Duffel API to power our flight search and booking services. When you search for or book flights, flight availability, pricing, and booking data is processed through this service.
  • Airlines and Travel Partners: Booking confirmation details, flight status updates, and loyalty program information.
  • Payment Processors: Transaction verification, fraud detection data, and payment status.

3How We Use Your Information

We use your personal information only for legitimate business purposes, including:

Service Delivery

  • • Process and manage flight bookings
  • • Issue electronic tickets and confirmations
  • • Facilitate payments and refunds
  • • Provide customer support and assistance
  • • Send booking confirmations and travel updates

Account Management

  • • Create and maintain your account
  • • Authenticate your identity
  • • Save preferences and booking history
  • • Manage communication preferences
  • • Provide personalized recommendations

Security & Compliance

  • • Detect and prevent fraud
  • • Comply with legal obligations
  • • Respond to legal requests
  • • Enforce our Terms of Service
  • • Protect rights and safety

Improvement & Analytics

  • • Analyze usage patterns and trends
  • • Improve our Services and features
  • • Develop new products and services
  • • Conduct research and analysis
  • • Test new features and functionality

5Information Sharing & Disclosure

We do not sell your personal information to third parties. We may share your information only in the following circumstances:

Airlines and Travel Suppliers

We share necessary booking information with airlines and travel service providers to complete your reservations, process check-ins, and fulfill your travel arrangements.

Payment Processors

Payment information is shared with PCI-DSS compliant payment processors to securely process transactions. We do not store complete payment card details on our servers.

Service Providers

We engage trusted third-party service providers who perform services on our behalf, including hosting, analytics, customer support, and email delivery. These providers are contractually obligated to protect your information.

Legal Requirements

We may disclose information when required by law, court order, or government request, or when necessary to protect our rights, safety, or property, or that of our users or the public.

6International Data Transfers

As a global travel booking service, your personal information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

Transfer Safeguards

When we transfer personal data outside the EEA or UK, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Transfers to countries with adequate data protection laws
  • Binding Corporate Rules where applicable
  • Your explicit consent for specific transfers when required

7Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations.

Data TypeRetention Period
Booking records & transaction data7 years (legal/tax requirements)
Account informationDuration of account + 3 years
Customer support communications3 years after resolution
Marketing preferencesUntil consent withdrawal
Website analytics data26 months (anonymized thereafter)

8Data Security

We implement comprehensive technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

Technical Safeguards

  • • 256-bit SSL/TLS encryption for data in transit
  • • AES-256 encryption for data at rest
  • • Multi-factor authentication (MFA)
  • • Regular security assessments and penetration testing
  • • Intrusion detection and prevention systems
  • • Real-time security monitoring

Organizational Safeguards

  • • Employee security training and awareness
  • • Access controls and least privilege principles
  • • Background checks for employees handling sensitive data
  • • Incident response procedures
  • • Vendor security assessments
  • • Regular policy reviews and updates

Security Incident Notification

In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of becoming aware of the breach.

9Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

Right to Access

Request a copy of the personal information we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal information.

Right to Erasure

Request deletion of your personal information in certain circumstances.

Right to Restriction

Request that we limit processing of your personal information.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for marketing.

How to Exercise Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days. We may need to verify your identity before processing your request.

10California Privacy Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information.

Your CCPA Rights Include:

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected.
  • Right to Delete: Request deletion of your personal information, subject to certain exceptions.
  • Right to Opt-Out: Opt out of the "sale" of personal information (we do not sell personal information).
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

Do Not Sell My Personal Information

We do not sell your personal information as defined under the CCPA. We may share information with service providers who assist in our operations, but this is not considered a "sale" under the CCPA.

11Children's Privacy

Our Services are not directed to children under the age of 16. We do not knowingly collect personal information from children under 16 without parental consent.

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us at [email protected]. We will take steps to delete such information promptly.

Note: When booking flights for minor travelers, we collect only the information necessary to complete the booking as required by airlines and aviation regulations.

12Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Effective Date" at the top of this policy
  • Notify you via email or prominent notice on our website
  • Provide you with the opportunity to review the changes before they take effect

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Us About Privacy

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Team.

Bookmyairtravel LLC

20 S Charles St 403 1481, Baltimore, MD 21201
+1 (866) 240-9306
ARC #21612953

Contact Options

[email protected][email protected]Online Contact Form
Contact Support

Affiliate Disclosure

Traviflight® is an affiliate of Bookmyairtravel LLC, a company registered in Maryland, United States. All flight booking services, customer support, and business operations are conducted under the corporate umbrella of Bookmyairtravel LLC, ARC #21612953. The Traviflight® brand is used for marketing and customer-facing communications, while Bookmyairtravel LLC serves as the legal entity responsible for all contractual obligations, regulatory compliance, and financial transactions.