隐私政策

本隐私政策描述TrenT Fly如何收集、使用、存储和保护用户个人数据。

1. 收集的个人数据

We collect the following personal data in the context of providing our services:

1.1. Data provided directly by you

Identification data: full name, email address.
Contact data: mobile phone number (for WhatsApp integration).
Account data: access credentials (email and encrypted password).
Travel preferences: destinations of interest, preferred dates, flight class, favorite airlines.

1.2. Automatically collected data

Search history: flight searches performed on the Platform.
Browsing data: IP address, browser type, operating system, pages visited.
Approximate location data: country and region inferred from IP address or phone prefix.
WhatsApp interaction data: messages exchanged with the AI assistant for service purposes.

1.3. Payment data

Payment information is processed directly by our partners (Stripe and Mercado Pago). TrenT Fly does not store full credit card data on its servers.

2. 处理目的

We use your personal data for the following purposes:

Service delivery: flight searches, personalized itineraries, and price alerts.
Personalization: tailoring search results and recommendations based on your preferences.
Account management: creating and maintaining your account, processing subscriptions and payments.
Communication: service notifications, updates, and price alerts.
Service improvement: analyzing usage patterns to improve the Platform.
Security: fraud prevention and Platform integrity protection.
Legal compliance: meeting legal, regulatory, or judicial requirements.

3. 处理的法律依据

The processing of your personal data is based on the following legal grounds:

Contract performance: processing is necessary to provide the contracted services.
Consent: for sending marketing communications. You may withdraw consent at any time.
Legitimate interest: for service improvement and fraud prevention.
Legal obligation: when required by law or regulatory authority.

4. 数据共享

TrenT Fly不出售、出租或商业化您的个人数据。

Your data may be shared with the following partners:

Payment processors: Stripe, Inc. (USA) and Mercado Pago (Brazil), solely for financial transactions.
Messaging provider: Meta Platforms, Inc. (USA), via WhatsApp Business API.
AI provider: Google LLC (USA), via Google Gemini API, for natural language processing.
Infrastructure providers: Railway (USA) for hosting and Supabase, Inc. (USA) for database.
Legal obligation: when required by law, court order, or competent authority.

5. Cookie及类似技术

We use cookies and similar technologies for:

Essential cookies: necessary for Platform operation, session maintenance, and authentication.
Preference cookies: store your choices such as language, theme, and preferred currency.
Analytics cookies: help us understand how the Platform is used.

You can manage cookie settings in your browser. Disabling essential cookies may impair Platform functionality.

6. 您作为数据主体的权利

You have the following rights regarding your personal data:

Confirmation and access: confirm whether we process your data and obtain access to it.
Correction: request correction of incomplete or inaccurate data.
Deletion: request deletion of unnecessary data or data processed in non-compliance.
Portability: request data portability to another service provider.
Withdrawal of consent: withdraw consent at any time.
Objection: object to processing based on legitimate interest.

To exercise your rights, contact us at [email protected]. We will respond within 15 business days.

7. 数据保留

Your personal data will be retained for as long as necessary to fulfill the purposes described in this Policy:

Account data: retained while the account is active. After closure, for up to 5 years.
Search history: retained for up to 2 years.
Payment data: retained as required by fiscal obligations (up to 5 years).
WhatsApp conversations: retained for up to 1 year after last interaction.
Access logs: retained for 6 months.

8. 数据保护官（DPO）

TrenT Fly has appointed a Data Protection Officer. For data protection matters, please contact:

Email: [email protected]
Website: apptrent.com.br

9. 国际数据传输

The following providers process data outside Brazil, in compliance with applicable data protection laws:

Google LLC (USA) — Natural language processing via Gemini API.
Meta Platforms, Inc. (USA) — Messaging via WhatsApp Business API.
Stripe, Inc. (USA) — Payment processing.
Supabase, Inc. (USA) — PostgreSQL database.
Railway Corp. (USA) — Application hosting.

10. 人工智能的使用

TrenT Fly uses AI to enhance User experience. We inform you:

Purpose: AI interprets natural language searches, generates itinerary suggestions, and personalizes recommendations.
Provider: Processing is carried out by Google Gemini API. Messages are not stored by Google for model training.
AI-generated content: itineraries and recommendations are AI-generated and may contain inaccuracies. Users should verify before acting.
Automated decisions: AI does not make binding decisions. All purchase decisions are made exclusively by the User.

11. 数据安全

We implement appropriate technical and organizational measures to protect your personal data. For more details, see our Security Policy.

12. 欧盟用户的额外权利（GDPR）

If you reside in the European Economic Area, you have additional rights under the GDPR:

Right to erasure (Art. 17): request complete deletion of your personal data.
Portability (Art. 20): request your data in a structured, machine-readable format.
Restriction of processing (Art. 18): request restriction of processing in certain circumstances.
Complaint: lodge a complaint with the supervisory authority in your country of residence.

13. 本政策的变更

This Privacy Policy may be updated periodically. The updated version will be published on this page with the last update date.

Significant changes will be communicated by email or Platform notification.

14. 联系我们

如有关于本政策的疑问，请联系我们：

通用电子邮件： [email protected]
隐私电子邮件： [email protected]
网站： apptrent.com.br

如果您认为您的数据处理不符合适用法律，您有权向主管数据保护机构提出投诉。