Privacy Policy

Last updated: March 2026

This Privacy Policy describes how TrenT Fly collects, uses, stores and protects the personal data of users in compliance with applicable data protection laws.

1. Personal Data Collected

We collect the following personal data in the context of providing our services:

1.1. Data provided directly by you

  • Identification data: full name, email address.
  • Contact data: mobile phone number (for WhatsApp integration).
  • Account data: access credentials (email and encrypted password).
  • Travel preferences: destinations of interest, preferred dates, flight class, favorite airlines.

1.2. Automatically collected data

  • Search history: flight searches performed on the Platform.
  • Browsing data: IP address, browser type, operating system, pages visited.
  • Approximate location data: country and region inferred from IP address or phone prefix.
  • WhatsApp interaction data: messages exchanged with the AI assistant for service purposes.

1.3. Payment data

  • Payment information is processed directly by our partners (Stripe and Mercado Pago). TrenT Fly does not store full credit card data on its servers.

2. Purpose of Processing

We use your personal data for the following purposes:

  • Service delivery: flight searches, personalized itineraries, and price alerts.
  • Personalization: tailoring search results and recommendations based on your preferences.
  • Account management: creating and maintaining your account, processing subscriptions and payments.
  • Communication: service notifications, updates, and price alerts.
  • Service improvement: analyzing usage patterns to improve the Platform.
  • Security: fraud prevention and Platform integrity protection.
  • Legal compliance: meeting legal, regulatory, or judicial requirements.

3. Legal Basis for Processing

The processing of your personal data is based on the following legal grounds:

  • Contract performance: processing is necessary to provide the contracted services.
  • Consent: for sending marketing communications. You may withdraw consent at any time.
  • Legitimate interest: for service improvement and fraud prevention.
  • Legal obligation: when required by law or regulatory authority.

4. Data Sharing

TrenT Fly does not sell, rent or trade your personal data.

Your data may be shared with the following partners:

  • Payment processors: Stripe, Inc. (USA) and Mercado Pago (Brazil), solely for financial transactions.
  • Messaging provider: Meta Platforms, Inc. (USA), via WhatsApp Business API.
  • AI provider: Google LLC (USA), via Google Gemini API, for natural language processing.
  • Infrastructure providers: Railway (USA) for hosting and Supabase, Inc. (USA) for database.
  • Legal obligation: when required by law, court order, or competent authority.

5. Cookies and Similar Technologies

We use cookies and similar technologies for:

  • Essential cookies: necessary for Platform operation, session maintenance, and authentication.
  • Preference cookies: store your choices such as language, theme, and preferred currency.
  • Analytics cookies: help us understand how the Platform is used.

You can manage cookie settings in your browser. Disabling essential cookies may impair Platform functionality.

6. Your Rights as Data Subject

You have the following rights regarding your personal data:

  • Confirmation and access: confirm whether we process your data and obtain access to it.
  • Correction: request correction of incomplete or inaccurate data.
  • Deletion: request deletion of unnecessary data or data processed in non-compliance.
  • Portability: request data portability to another service provider.
  • Withdrawal of consent: withdraw consent at any time.
  • Objection: object to processing based on legitimate interest.

To exercise your rights, contact us at [email protected]. We will respond within 15 business days.

7. Data Retention

Your personal data will be retained for as long as necessary to fulfill the purposes described in this Policy:

  • Account data: retained while the account is active. After closure, for up to 5 years.
  • Search history: retained for up to 2 years.
  • Payment data: retained as required by fiscal obligations (up to 5 years).
  • WhatsApp conversations: retained for up to 1 year after last interaction.
  • Access logs: retained for 6 months.

8. Data Protection Officer (DPO)

TrenT Fly has appointed a Data Protection Officer. For data protection matters, please contact:

9. International Data Transfers

The following providers process data outside Brazil, in compliance with applicable data protection laws:

  • Google LLC (USA) — Natural language processing via Gemini API.
  • Meta Platforms, Inc. (USA) — Messaging via WhatsApp Business API.
  • Stripe, Inc. (USA) — Payment processing.
  • Supabase, Inc. (USA) — PostgreSQL database.
  • Railway Corp. (USA) — Application hosting.

10. Use of Artificial Intelligence

TrenT Fly uses AI to enhance User experience. We inform you:

  • Purpose: AI interprets natural language searches, generates itinerary suggestions, and personalizes recommendations.
  • Provider: Processing is carried out by Google Gemini API. Messages are not stored by Google for model training.
  • AI-generated content: itineraries and recommendations are AI-generated and may contain inaccuracies. Users should verify before acting.
  • Automated decisions: AI does not make binding decisions. All purchase decisions are made exclusively by the User.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data. For more details, see our Security Policy.

12. Additional Rights for EU Users (GDPR)

If you reside in the European Economic Area, you have additional rights under the GDPR:

  • Right to erasure (Art. 17): request complete deletion of your personal data.
  • Portability (Art. 20): request your data in a structured, machine-readable format.
  • Restriction of processing (Art. 18): request restriction of processing in certain circumstances.
  • Complaint: lodge a complaint with the supervisory authority in your country of residence.

13. Changes to this Policy

This Privacy Policy may be updated periodically. The updated version will be published on this page with the last update date.

Significant changes will be communicated by email or Platform notification.

14. Contact

For questions about this Privacy Policy, please contact:

If you believe the processing of your data does not comply with applicable law, you have the right to lodge a complaint with the competent data protection authority.

TrenT Bear

Ready to travel for less?

Subscribe to TrenT and start saving on your trips.

Subscribe to TrenT