If you are an EU resident, Tripgrid processes your Personal Information in accordance with the EU data protection legislation, including national or international legislation implementing the EU General Data Protection Regulation (“GDPR”). If you are a California resident, Tripgrid processes your Personal Information in accordance with the California Consumer Privacy Act (“CCPA”).
1. Client Data
Tripgrid provides travel management software services on behalf of our business customers (“Clients”) to facilitate the Client’s team travel projects (the “Services”). We may process Personal Information that is included in the information provided by Clients (“Client Data”) in order to provide our Services to Clients. Tripgrid will only process Personal Information on behalf of and under the instructions of our Clients, as set out in our Client agreements, or where otherwise required by applicable laws. In these cases, our Clients are the data controllers of their respective Client Data, and we are the data processor for such data. We process Client Data in order to streamline group travel coordination. Subject to our Client agreements, we may use aggregate data and anonymized information in order to improve our Services and for research, analytics and other purposes, provided such information does not identify a particular individual.
2. Information we collect
We may collect Personal Information directly from you or third parties, and automatically through the use of our Site. You do not have to provide us with your personal information to access much of our Site. However, if you choose not to disclose certain information, you may be unable to access certain options, offers, and services that require our interaction with you.
Information collected directly. We may collect personal information about you directly from you or from your company. For example, when you fill out a ‘Contact Us’ form, register for an account, signup for our mailing lists, register for events we host or sponsor, post comments on our Sites, or otherwise provide us information through the Sites.
Information from Third Parties. We may collect name, company, contact details and other details from third parties, such as destinations and travel providers, in order to provide the Services. Subject to applicable law and where Clients have instructed us to, we may also obtain such information from public sources and social networking platforms. As noted above, however, this information is Client Data, for which we are a processor.
3. How we use your information
We use your information, including your personal information, primarily to provide our Services to Clients and to communicate with you (including for marketing purposes). In particular, we may use your information as follows:
We also create and use anonymous and de-identified information to assess, improve and develop our business, products and services, and for similar research and analytics purposes. This information is not generally subject to the restrictions in this Policy, provided it does not identify and could not be used to identify a particular individual.
4. When we disclose your information
We do not sell your personal information to third parties. In general, we disclose the personal information we collect as follows:
We may share aggregate or de-identified information with third parties for research, marketing, analytics and other purposes, provided such information does not identify a particular individual.
5. Information we track automatically
Clear GIFs, pixel tags. Clear GIFs are tiny graphics with a unique identifier, similar in function to cookies but are embedded invisibly on web pages. We may use clear GIFs (also referred to as web beacons, web bugs or pixel tags), in connection with our Services to, among other things, track the activities users of our Services, help us manage content, and compile statistics about usage of our Services. We and our third party service providers also use clear GIFs in HTML emails to our customers, to help us track email response rates, identify when our emails are viewed, and track whether our emails are forwarded.
Log Files. Most browsers collect certain information, such as your IP address, device type, screen resolution, operating system version, and internet browser type and version. Such information is gathered automatically and stored in log files.
6. Interest-based advertising
Tripgrid works with different third party ad networks, analytics companies, measurement services and. We and these third party ad companies may use automatic web-tracking tools to collect activity information on our Services (as well as on third party sites and services), as well as IP address, device ID, cookie and advertising IDs, and other identifiers, general location information, and, with your consent, your device’s geolocation information.
7. Direct marketing
We may send you promotional emails from time to time, but we will obtain your consent where required by law to do so. If you wish, you may opt-out of such communications by following the opt-out instructions contained in the respective email. If you opt-out of receiving emails about recommendations or other information we think may interest you, we may still send you emails about your account or Services you have requested or received from us.
8. How your information is stored or transferred
Tripgrid is headquartered in the United States, and has operations, entities and service providers in the United States and other jurisdictions. As such, we and our service providers may transfer your Personal Information to, or access it in, jurisdictions (including the United States, Ireland and Costa Rica) that may not provide adequate levels of data protection as your home country. We will take steps to ensure that your personal data receives an adequate level of protection in the jurisdictions in which we process it, including through appropriate written data processing terms and/or data transfer agreements, by putting in place Standard Contractual Clauses as approved by the European Commission. You have a right to obtain details of the mechanism under which your personal information is transferred outside of the EEA; you may request such details by contacting us as set forth in the “Contact us” section below.
9. Your preferences and choices
Access, Amend and Correct. If you wish to access personal information that you have submitted to us, to request the correction of any inaccurate information you have submitted to us, or to request deletion of your information, please contact us at firstname.lastname@example.org. If you are a registered member of the Site, you may review and update most of your Personal Information by sending your request to email@example.com. We will review your request and make reasonable efforts to respond to it as soon as practicable. We may ask you for additional information so that we can confirm your identity.
Direct Marketing. You can let us know if you do not want us to send you information by clicking the unsubscribe link at the bottom of the email; you may also let us know about your communication preferences (email, phone, and postal mail), by shooting an email to firstname.lastname@example.org. Please identify all the email addresses, postal address information, and phone numbers that you would like to unsubscribe.
Complaints. We will take steps to try to resolve any complaint you raise regarding our treatment of your personal information. You also have the right to raise a complaint with the privacy regulator in your jurisdiction.
Users in the European Economic Area.
Individuals in the EEA have the below rights with respect to their personal information.
Please contact us as set out in the “Contact Us” section below to exercise one of these rights. If we receive any requests from an individual related to the Client Data, we will forward the request to the relevant Client.
The security of your Personal Information is very important to us. We employ security measures to protect your information both online and offline from access by unauthorized persons and against unlawful processing, accidental loss, destruction and damage. Unfortunately, the Internet cannot be made totally secure, and you acknowledge that we cannot guarantee the complete security of the information you provide us.
We will retain your Personal Information as long as necessary for purposes for which the personal data was collected by us, as explained in this Policy or as required to comply with legal obligations or resolve claims and disputes. In general, we will retain relevant Personal Information of clients and Site visitors for at least three years from the date of our last interaction with you and in compliance with our obligations under applicable laws. Our Clients instruct us on how long to retain Client Data, which we handle as a data processor. We may retain Personal Information for longer where required by our regulatory obligations, professional indemnity obligations, or where we believe necessary to establish, defend, or protect our legal rights and interests or those of others.
We do not knowingly collect or solicit Personal Information from anyone under the age of sixteen (16) or knowingly allow such persons to register. If we become aware that we have collected Personal Information from a child under the relevant age without parental consent, we will take steps to delete that information.
13. Changes to this policy
14. California privacy rights
California law permits users who are California residents to request and obtain from us once a year, free of charge, a list of the third parties to whom we have disclosed their personal information (if any) for their direct marketing purposes in the prior calendar year, as well as the types of personal information disclosed to those parties. If you are a California resident and would like to request this information, please submit your request in an email to email@example.com.
Last Updated: August 19, 2020