WHAT IS GDPR?
The General Data Protection Regulation (GDPR), which will apply from 25 May 2018, creates consistent data protection rules across Europe. It applies to companies that are based in the European Union and global companies that process personal data about individuals in the EU.
In summary, the GDPR gives consumers the rights of access, rectification, automated decision making and profiling, as well as the rights to erasure, restrict processing, data portability and object.
We welcome the implementation of GDPR as it is an important step to enabling and empowering individual privacy rights.
AIRTROTTER.COM’S COMMITMENT TO USER DATA PROTECTION.
Data protection is central to Airtrotter.com as we expand our efforts to become the best and largest trip planning platform in the world.
With a global presence, we continually work to observe compliance worldwide and deploy the best practices in protecting data and championing user privacy.
As we drive the business daily, we strive to ensure that the data we receive is:
FREQUENTLY ASKED QUESTIONS (FAQS).
Q: What data do we save from our user?
A: When you create a free account, we ask you for some information. Mandatory information is your email address, username, first name, last name and password. Optionally, you can also specify your city and date of birth.
Other data related to trip planning is also stored in your account. This is the power of Airtrotter where other users can take over trips from our community members. While trip planning, we’ll save your specific travel dates, your destinations, your selected transport opportunities, hotel(s), excursion(s) and sight(s) to see.
Q: What do we do with your data?
A: We use the data for multiple purposes, analytically as marketing related. We will analyze our customer data to get a better picture of our end user. As stated before, we use our collected data only for specified, explicit and legitimate purposes.
Other purposes of using our data are marketing related, for example if you have agreed to receive our newsletter, we will send it to you regularly. We will never hand out our collected personal data to third parties. Trip data saved to your account might be used for marketing purposes and will be shown on our platform to inspire other users. Other users are able to copy your trip.
Q: Data to third parties?
A: As stated before, we do not give out personal data to third parties. This includes your email address, username, first name, last name, city and date of birth. As soon as you want to book your chosen segments, you will be redirected with a deeplink including your trip dates and our affiliate code. This way, you have to manually fill in any personal data asked by our partners. Keep in mind the policies of our partners when booking on their platform.
Q: Analysing tools
A: As most websites on the internet, we make use of analytic tools to view our incoming traffic. Current tools we use are Google Analytics, Facebook Pixel and Hotjar.
Google Analytics gives us insights in how users find and use our website.
With Facebook Pixel we are able to track site visitors redirected from Facebook. This data allows us to retarget those users with Facebook ads, as well as see what they’re doing on our site when they return. This allows us to gain more insights about our audience, send targeted messaging to users who already know our brand, and track the effectiveness of our paid social advertising efforts.
Hotjar is an analytic tool that reveals the online behavior of our users. Hotjar gives us the ‘big picture’ of how to improve our site's user experience and performances. With Hotjar we track your mouse movement in a heatmap, visitor recording (visitor clicks, taps, mouse movement) and conversion funnels.
Q: Where is the data stored?
A: We make use of Amazon Web Services (AWS). A cloud solution to store our data. AWS is a secure cloud services platform, offering compute power, database storage, content delivery and other functionalities. Our platform is being host on a AWS server as well as the collected (personal) data.
We make use of personal data for our mailing. This is why the collected data is being transferred to our MailChimp account (e-mail address, first name and last name) in order for us to contact you.
Q: Is the data encrypted?
A: Yes, all personal data is encrypted. Also, we make use of the HTTPS protocol, an extension of the HTTP protocol with the aim of a secure exchange of data.
Q: Who is entitled to our collected data?
A: Our platform is being developed by web development agency DP Creative in Rotterdam, the Netherlands. We have entered into a processor agreement with DP Creative in order for them to process data.
Q: Who is affected under GDPR?
A: The GDPR not only applies to organizations located within the EU but it will also apply to organizations located outside of the EU if they offer goods or services to, or monitor the behavior of, EU data subjects.
Q: What are the additional controls I have over my personal data?
A: We now offer greater transparency by explaining our data collection and data processing in our terms (briefly summarized in this document). We also offer a profile settings page where you can change your profile data. If you need more detailed information, feel free to contact us.
Q: I want to remove my account completely.
A: That’s no problem, write us an e-mail: email@example.com or contact our customer service at +31 (0)15 887 25 70. We’ll remove your account completely, we’ll save your trips (if they inspire our community) on an anonymous (new) account.
Q: More detailed information?
A: You are encouraged to review our updated terms on our website (Terms & Conditions, Cookies Policy, Privacy Statement and Disclaimer & IP).
Q: Where can I learn more about GDPR?
A: You may learn more about GDPR through the European Commissions page under Data Protection:
Q: I’ve got another question!
A: Please feel free to contact us at firstname.lastname@example.org or our customer service at +31 (0)15 887 25 70.