Privacy Policy for Plan Fam Trips
Last Updated: August 14, 2024
1. Introduction
Plan Fam Trips ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.
2. Information We Collect
We collect the following types of information:
Personal Information:
- Name, email address, and general business information (company details, experience, region of service, address for travel suppliers; company, selling regions, experience, and types of travel experiences sold for travel agents)
- Location data for site performance optimization
- Device identifiers (not linked to specific users)
- Financial information (for profile verification purposes, stored securely)
Usage Data:
- Anonymous data collected through analytics tools about web traffic
- Device identifiers and location data for site performance (not linked to specific users)
3. How We Collect Information
- Registration Forms: When you create an account or update your profile
- Cookies: Used to keep users logged in and for site performance optimization
- Analytics Tools: To collect anonymous data on web traffic
4. Use of Your Information
We use your information to:
- Provide and maintain our services
- Improve and optimize the performance and user experience of Plan Fam Trips
- Personalize your experience on our platform
- Verify user profiles, where necessary
- Conduct analytics to understand user behavior and enhance our offerings
- Ensure the security and integrity of our platform
- Comply with legal obligations
- Notify you about changes to our services
- Allow you to participate in interactive features of our platform
- Provide customer support
- Monitor the usage of our services
- Detect, prevent and address technical issues
We do not engage in automated decision-making or profiling based on the personal information we collect.
5. Disclosure of Your Information
While we generally do not share user data with third parties, there may be certain circumstances where we need to disclose your information:
- Service Providers: We may share your information with third-party service providers that help us operate our business, such as hosting providers and payment processors.
- Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
- Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.
- With Your Consent: We may share your information with third parties when we have your consent to do so.
In all cases, we strive to ensure that your information is protected and only used for legitimate purposes.
6. Data Security
We implement security measures to protect your personal information, including:
- SSL/TLS encryption for all data transmission
- Strong password policies
- Use of reputable cloud service providers with strong security measures
- Encryption of data in transit and at rest
- Regular security audits and penetration testing
- Access controls and authentication measures
- Employee training on data protection
- Incident response plans
While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.
7. Your Data Protection Rights
Under GDPR and CCPA, you have the right to:
- Access your personal data
- Correct inaccurate personal data
- Request erasure of your personal data
- Object to processing of your personal data
- Request restriction of processing your personal data
- Request transfer of your personal data
- Withdraw consent
To exercise these rights, please follow this process:
- Contact us at [[email protected]] with your specific request.
- We will verify your identity to ensure the security of your information.
- We will respond to your request within 30 days.
- If we need more time, we'll inform you and may extend the response period by up to 60 additional days.
- We will provide the information free of charge, unless the request is unfounded, excessive, or repetitive.
For access requests, we will provide your information in a portable, readily usable format.
For deletion requests, we will remove your data from our active systems. Note that some information may be retained for legal or legitimate business purposes.
If we deny a request, we will explain the reasons and your right to complain to the relevant supervisory authority.
8. Data Retention
We retain different types of personal information for varying periods:
- Account information: Retained for the duration of the account's existence and for 1 year afterwards for legal and business purposes.
- Transaction data: Retained for 7 years for tax and accounting purposes.
- Communication records: Kept for 3 years.
- Log data and analytics: Anonymized or deleted after 2 years.
9. Cookies and Tracking Technologies
We use cookies to keep users logged in and for site performance optimization. Cookies are small data files stored on your device that help us improve our services and your experience.
Types of cookies we use:
- Essential cookies: Necessary for the website to function properly
- Performance cookies: Help us understand how visitors interact with our website
- Functionality cookies: Allow the website to remember choices you make and provide enhanced features
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our service.
10. Children's Privacy
Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal data from a child under 18 without verification of parental consent, we take steps to remove that information from our servers.
11. International Data Transfers
Plan Fam Trips is based in France and our data is stored in the United Kingdom (UK). By using our services, you consent to your personal information being transferred to and processed in the UK and/or France.
For international data transfers outside of the European Economic Area (EEA), we implement these safeguards:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Binding Corporate Rules (BCRs) for intra-group transfers
- Adequacy decisions for certain countries
- Explicit user consent in some cases
12. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
13. Contact Us
If you have any questions about this Privacy Policy, please contact us at [email protected].