GDPR Compliance Policy
At NH FlyNow, powered by Natural Hospitality, we are committed to protecting the personal data and privacy of our users in accordance with the General Data Protection Regulation (GDPR).
1. Scope of This Policy
This policy applies to all users located in the European Economic Area (EEA) and governs how we collect, process, and protect personal data in compliance with GDPR requirements.
2. Lawful Basis for Processing
We collect and process personal data only when we have a lawful basis to do so, including:
- Your consent
- Performance of a contract (e.g., booking flights or travel services)
- Compliance with legal obligations
- Legitimate business interests, provided your rights do not override those interests
3. Personal Data We Collect
We may collect the following types of personal data:
- Identity information (name, date of birth)
- Contact details (email address, phone number)
- Travel-related information (passport details, itinerary)
- Payment information
- Technical data (IP address, device information)
4. How We Use Your Data
Your data is used to:
- Process and manage travel bookings
- Communicate important updates بشأن your trips
- Provide customer support
- Improve our services and website functionality
- Comply with legal and regulatory requirements
5. Data Subject Rights
Under GDPR, you have the following rights:
- Right to access your personal data
- Right to rectify inaccurate or incomplete data
- Right to erasure (“right to be forgotten”)
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent at any time
6. Data Sharing and Transfers
We may share your data with airlines, hotels, payment providers, and other travel partners to fulfill your bookings.
If your data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as standard contractual clauses.
7. Data Security
We implement strong technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations.
9. Cookies and Tracking
We use cookies and similar technologies to enhance your browsing experience. You can manage your cookie preferences at any time through your browser settings.
10. Data Protection Officer (DPO)
If required, we appoint a Data Protection Officer responsible for overseeing data protection strategy and compliance.
11. Complaints
If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection authority within the EEA.
12. Updates to This Policy
We may update this GDPR Compliance Policy from time to time. Any changes will be posted on this page with an updated effective date.
13. Contact Us
For any GDPR-related queries or requests, please contact us:
Email: support@nhflynow.com
Phone: +1-XXX-XXX-XXXX
By using NH FlyNow services, you acknowledge and agree to this GDPR Compliance Policy.