الخصوصية، الكوكيز وحماية البيانات

Last Updated: January 10, 2026

This Privacy, Cookies & Data Protection Policy ("Policy") explains how Travorio.com ("Travorio," "we," "us," or "our") collects, uses, stores, shares, and protects personal data when you use our website, applications, APIs, and related services (collectively, the "Services").

This Policy is written to comply with:

• General Data Protection Regulation (GDPR / UK GDPR)
• California Consumer Privacy Act & California Privacy Rights Act (CCPA / CPRA)
• Payment partner requirements (including card and crypto payment providers)

By using Travorio, you agree to this Policy.

---

1. Information We Collect

1.1 Information You Provide

• Name, email address, phone number
• Billing address and country
• Account credentials
• Passenger and traveler details (as required by airlines, hotels, or suppliers)
• Customer support communications
• Crypto wallet addresses (for payment, refund, or NFT delivery)

1.2 Payment Information

Travorio does not store full card details or private wallet keys.

We may store:

• Payment method type
• Transaction IDs or blockchain hashes
• Payment status and timestamps
• Refund or chargeback references

All payments are handled by third-party payment processors.

1.3 Automatically Collected Data

• IP address
• Browser and device information
• Operating system
• Usage logs and timestamps
• Approximate location (city/country level)
• Cookies and similar technologies

1.4 Blockchain & Web3 Data

If you use crypto or NFT features:

• Public wallet addresses
• Blockchain transaction hashes
• NFT metadata linked to bookings

Blockchain data is public by nature and cannot be altered or deleted by Travorio.

---

2. Legal Bases for Processing (GDPR)

We process personal data based on one or more of the following lawful bases:

• Contractual necessity – to complete bookings and provide services
• Legal obligation – tax, accounting, fraud prevention, compliance
• Legitimate interests – platform security, service improvement
• Consent – marketing, cookies, optional features (where required)

---

3. How We Use Your Information

We use your data to:

• Process flight, hotel, event, and travel bookings
• Facilitate card, bank, and crypto payments
• Deliver confirmations, tickets, NFTs, or digital assets
• Provide customer support
• Detect and prevent fraud or abuse
• Improve platform performance and user experience
• Comply with legal and regulatory requirements

---

4. Cookies & Tracking Technologies

4.1 Types of Cookies We Use

You can manage cookies via your browser or consent banner. Some features may not function without cookies.

---

5. Data Sharing & Disclosure

We do not sell personal data.

We may share data only with trusted parties when necessary:

5.1 Travel & Booking Partners

• Airlines, hotels, event organizers
• GDS and booking aggregators
• Ticket fulfillment providers

5.2 Payment & Fraud Providers

• Card processors
• Crypto payment gateways
• Fraud prevention and chargeback services

5.3 Infrastructure Providers

• Cloud hosting
• Analytics and monitoring services
• Communication tools

5.4 Legal & Compliance

If required by law, regulation, court order, or to protect Travorio and its users.

---

6. International Data Transfers

Your information may be transferred to and processed outside your country of residence, including the United States.

We apply appropriate safeguards consistent with GDPR and applicable data protection laws.

---

7. Data Retention

We retain personal data only as long as necessary to:

• Provide services
• Meet legal, tax, and regulatory requirements
• Resolve disputes and enforce agreements

Blockchain records may remain permanently visible on public networks.

---

8. Security Measures

We use industry-standard safeguards, including:

• Encryption in transit and at rest
• Access controls and monitoring
• Secure infrastructure and fraud detection

No system is completely secure, and we cannot guarantee absolute security.

---

9. Your Privacy Rights

9.1 GDPR / UK GDPR Rights

You may have the right to:

• Access your data
• Correct inaccurate data
• Request deletion
• Restrict or object to processing
• Data portability
• Withdraw consent

9.2 CCPA / CPRA Rights (California)

You have the right to:

• Know what personal data we collect
• Request deletion or correction
• Opt out of sale or sharing (we do not sell data)
• Limit use of sensitive personal data

Requests can be made by contacting us.

---

10. Children's Privacy

Travorio does not knowingly collect personal data from children under 13. If such data is discovered, it will be deleted.

---

11. Third-Party Links

Our Services may link to third-party sites. We are not responsible for their privacy practices.

---

12. Data Processing Addendum (DPA)

For GDPR purposes:

• Controller: Travorio
• Processors / Sub-Processors: Payment providers, travel suppliers, hosting, analytics, fraud services

Processors:

• Act only on Travorio's instructions
• Maintain confidentiality
• Implement appropriate technical and organizational safeguards
• Assist with data subject rights
• Notify Travorio of any data breach without undue delay

Personal data is deleted or anonymized when no longer required, unless retention is legally required.

---

13. Payments, PayPal & Crypto Disclosure

• Card payments are processed by third-party payment providers.
• Travorio does not store full card details.
• Crypto payments are processed by third-party gateways.
• Travorio does not custody funds or store private keys.
• Blockchain transactions are irreversible and subject to network confirmation.

---

14. Policy Updates

We may update this Policy from time to time. Updates will be posted with a revised "Last Updated" date. Continued use of the Services constitutes acceptance.

---

15. Contact Us

For privacy, data protection, or compliance questions:

---