Trip.Express
Đăng nhập
Legal Framework

Privacy Policy

Effective Date: January 25, 2026

Trip Express is committed to protecting your privacy. This comprehensive policy details how we collect, process, and secure your personal data in compliance with GDPR, CCPA, and other global privacy laws.

Encrypted TransparentLast Updated: February 2026

1. Information We Collect

We collect various categories of data:
1.1 Identity Data: First name, last name, username, date of birth, passport number (for travel requirements).
1.2 Contact Data: Billing address, email address, telephone numbers.
1.3 Financial Data: Masked payment card details (processed securely by PCI-DSS compliant providers).
1.4 Technical Data: IP address, login data, browser type and version, time zone setting, operating system.
1.5 Usage Data: Information about how you use our website and services.

2. How We Collect Data

We use different methods to collect data:
- Direct Interactions: You providing data by filling forms or creating accounts.
- Automated Technologies: Cookies and server logs automatically collecting technical data.
- Third Parties: Analytics providers (Google), Ad networks (Facebook), and search information providers.

3. Purpose of Processing

We adhere to the principle of purpose limitation. We process your data to:
- Facilitate bookings and issue tickets.
- Provide customer support and resolve disputes.
- Send transactional emails (confirmations, updates).
- Detect and prevent fraud and abuse.
- Improve our algorithms and personalized recommendations.
- Comply with legal obligations (tax, accounting, AML).

4. Data Sharing

We may share your data with:
- Suppliers: Airlines, Hotels, and Activity Providers solely to fulfill your contract.
- Service Providers: IT, system administration, payment processors, and customer service teams.
- Business Transfers: Third parties to whom we may choose to sell, transfer, or merge parts of our business.
- Legal Regulators: When required by law or court order.

5. Data Security

We have implemented robust security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way. This includes SSL encryption, firewalls, and strict access controls. We limit access to your personal data to those employees, agents, and contractors who have a business need to know.

6. Your Legal Rights

Under data protection laws (GDPR/CCPA), you have the right to:
- Request Access: Receive a copy of your personal data.
- Request Correction: Correct incomplete or inaccurate data.
- Request Erasure: Ask us to delete your data where there is no good reason for us continuing to process it.
- Object to Processing: Challenge processing based on legitimate interest.
- Request Transfer: Transfer your data to you or a third party.
To exercise these rights, please contact our Data Protection Office at dpo@trip.express.

7. Cookies & Tracking

We use cookies to distinguish you from other users. Please refer to our separate Cookie Policy for detailed information on the types of cookies we use and how you can manage your preferences.