Privacy Policy Notice- Down Fare, Inc.

Last Updated: September 19, 2024

Introduction

At Down Fare, Inc., we prioritize your privacy and the security of your personal data. Your

trust in our services is invaluable, and we are dedicated to safeguarding any personal data

you provide. This Privacy Policy outlines how we collect, use, disclose, and protect your

personal data when you use our services.

By visiting our site, you acknowledge that you have read and understood this policy. If you

are a California resident, please see the relevant section below for specific disclosures.

Key Highlights

1. Data Collection

We are committed to protecting your privacy and managing your personal information

responsibly. To provide our online travel services effectively, we collect personal data that

you provide directly or that we gather through your use of our services. This information

includes, but is not limited to, the following categories:

A. Financial Information

• Credit Card Details and Payment Information: Necessary for the secure

processing of transactions.

B. Internet Activity

• IP Address

• Device Information: Details regarding the device you use to access our services.

• Web Log Data: Information related to your browsing patterns and interactions with

our website.

• Search Preferences: Data concerning your specific search queries.

• Bids: Information regarding any bids placed during your interactions on our

platform.

C. Geolocation Data

• General Device Location: Information regarding your general whereabouts.

• Specific Device Location: With your explicit consent, we may collect precise

location data to enhance service delivery.

D. Inferences

• Insights Derived from Interactions: We may infer information based on your

interactions with our services to better understand your preferences and

purchasing habits, allowing us to provide more personalized services.

E. Identifiers

We may collect various identifiers, including but not limited to:

• Name

• Address

• Phone Number

• Email Address

• Age

• Date of Birth

• Gender

• Username and Password: Information you voluntarily provide directly or through

third-party social media platforms (such as Facebook Connect), necessary for

fulfilling your requested services.

• IP Address

Sources of Personal Data

In addition to the information you provide directly, we may also receive personal data from

third parties, including:

• Third-Party Applications: Such as social media platforms (e.g., Facebook and

Google) used for single sign-on access.

• Affiliates and Business Partners: Information shared with us from our affiliated

companies or business associates.

• Third-Party Data Providers: External entities that may provide data in compliance

with applicable privacy laws.

• Individuals Purchasing Services on Your Behalf: If someone else is booking

services for you, we will collect their personal data solely for the purpose of

facilitating the travel arrangements.

Responsibilities for Third-Party Information

If you opt to purchase services for other travelers or travel companions, you are

responsible for ensuring that you have the necessary authority to provide their personal

data to us. Furthermore, you must inform these individuals about how we utilize their

information, as outlined in this policy. Personal data of other travelers will only be

collected to share with relevant travel suppliers for fulfilling the requested services or as

permitted by applicable law.

2. Protecting Your Personal Data

We are committed to protecting your personal data through technical, administrative, and

physical safeguards designed to prevent unauthorized access and ensure data accuracy.

For credit card transactions, we use Secure Socket Layer (SSL) encryption. If you believe

your interaction with us is no longer secure, please contact us immediately as detailed in

the "Contact Us" section.

3. Use of Your Personal Data

We use your personal data to:

- to deliver services, enhance user experience, and maintain communication with

you.

This encompasses providing a faster website experience, improving customer support,

notifying you of new services and special offers, and delivering more relevant content.

Our legal basis for processing your data, as required by applicable law, includes the

following:

(a) Performance of a Transaction: Necessary for executing a transaction you initiate.

(b) Compliance with Legal Obligations: Required for record-keeping and ensuring

adherence to legal requirements.

(c) Consent: When you have provided explicit consent for specific uses of your data, as

required by law.

(d) Legitimate Interests: Necessary for pursuing legitimate interests, such as marketing

communications to which you have not previously objected.

Generally, the provision of Personal Data is essential for making a reservation and

completing transactions with us. This information is also necessary for our compliance

purposes related to such transactions, except in limited circumstances where we indicate

that certain information is voluntary. Please note that failing to provide Personal Data may

hinder our ability to fulfill your requests and complete transactions.

You retain the right to control our use of your Personal Data for direct marketing purposes.

For more details, please click here. Additionally, you can manage the use of cookies on our

site by clicking here.

4. Disclosing Your Personal Data

We disclose personal data only as described in this policy or authorized by you. Disclosure

may include:

• Suppliers: Sharing with airlines, hotels, car rental agencies, vacations and other

third parties necessary for service fulfillment.

• Affiliate Companies: Sharing with affiliates and subsidiaries, including local and

international brands, for integrated services, marketing communications, and

customer support.

We may share your information for the following purposes:

Integrated Services: To manage reservations, bookings, and payments across our

affiliated platforms.

Personalized Offers: To provide tailored offers and marketing communications

with your consent or as permitted by law.

Single Sign-On: To enable you to access multiple Booking Holdings Inc. brands

using a single set of login credentials, allowing you to view reservations and

bookings made through our group companies.

Customer Support: To enhance our customer service capabilities.

Fraud Prevention: To detect and investigate fraud, illegal activities, and data

breaches.

User Analysis: To understand user interactions and improve our products and

services.

Legal Compliance: To ensure adherence to applicable laws.

To learn more about your choices regarding the sharing of your information with our group

companies, please see the section on Your Data Subject Rights.

• Business Partners: Sharing with partners for specific services, subject to their

privacy policies.

• Agents and Vendors:

We engage third-party companies to assist with various operations, such as

sending emails, analyzing data, marketing our services, processing credit card

transactions, and providing customer support. These companies may access your

Personal Data strictly to perform their designated functions and are required to

adhere to confidentiality agreements to ensure the protection of your information.

• Future Business Transfers:

Personal data may be transferred during business transactions, such as mergers or

acquisitions. As Down Fare, Inc. evolves, we may buy or sell companies, and

Personal Data may be part of those transactions. If Down Fare, Inc. is acquired, the

new entity would be required to uphold the privacy commitments in this Privacy &

Cookies Policy or seek your consent for any significant changes in handling your

Personal Data.

• Compliance with Law: We reserve the right to disclose personal data to comply

with applicable laws or to protect our rights and those of others. We may also

disclose Personal Data to protect against fraudulent activities or to safeguard the

rights and safety of Down Fare, Inc., our customers, and others.

• Disclosure with Law compliance:

We disclose your Personal Data solely as outlined in this Privacy & Cookies Policy

or as otherwise authorized by you.

5. Your Choices Regarding Marketing and Other Communications

You have control over the use of your personal data for direct marketing. You can opt-out

by using the unsubscribe link in communications or by submitting the form here. Note that

service-related communications may still be sent even if you opt-out of marketing

messages.

You may provide a mobile phone number to receive alerts or updates, which you can

discontinue at any time through the app settings.

6. Our Policy on Cookies & Tracking Technologies

Cookies and similar tracking technologies, such as beacons, scripts, and tags, are small

pieces of code typically stored on your device. They allow our website to "personalize" your

experience by remembering information from your visits.

We use cookies to enhance your browsing experience by storing your preferences,

displaying personalized content based on your activity, analyzing trends, administering the

site, tracking user movements, serving targeted advertising, and gathering demographic

data about our user base. On mobile sites and apps, we may use Anonymous Device IDs

and Advertiser Identifiers similarly to how we use cookies on our website. While this

information helps us understand you as a user, it is used solely for the purposes

described. Given the nature of our services as a travel provider and the limited amount of

Personal Data we collect, these activities do not have significant legal implications for you.

For more detailed information on our use of cookies and how to opt out of advertising and

certain other cookies, please refer below.

First-Party Cookies

We utilize first-party cookies to enhance your web-browsing experience. For example, we

may use a cookie to remember your registered email address, reducing the need for you to

enter it each time you log in. We also use cookies to keep track of your search criteria while

using our services. First-party cookies are directly associated with your Personal Data, but

no third party can use this information for their purposes.

Third-Party Cookies

We may collaborate with third-party companies that place cookies on our site to provide

their services, including:

Ad Targeting

We partner with third-party advertising companies to display ads while you visit our site.

These companies can place and access their own cookies on your device to provide

targeted advertisements based on your browsing behavior. They may use information

obtained through these cookies (excluding your name, address, email, or phone number)

in conjunction with non-personally identifiable information from your interactions on other

websites. The use of these cookies is governed by the privacy policies of these third

parties.

Data Providers

We permit data providers to collect web log data, including your IP address and browser

information, when you visit our site. They may also place unique cookies on your browser

to deliver customized ads or content. These cookies do not contain personally identifiable

information and may reflect demographic data linked to information you voluntarily

submitted, such as your email address, in a hashed format.

Analytics/Measurement

We utilize third-party analytics cookies to gain insights into how visitors interact with our

site, which helps us optimize our offerings. The data collected includes pages viewed,

referring and exit pages, platform types, timestamps, and interaction metrics like clicks

and scrolling behavior. These analytics cookies also help us assess user engagement with

our online advertising campaigns.

Remarketing Pixel Tags and Other Technologies

We may share website usage information with third-party advertising companies to

manage and target ads and conduct market research. This may involve placing cookies or

pixel tags (clear gifs) on our site or in our communications to help deliver relevant

advertisements during your browsing sessions.

Flash Cookies

Some of our partners may use Local Shared Objects (Flash cookies) and Local Storage

(HTML5) to collect and store content information and preferences. To manage Flash

cookies, please click here.

Controlling Cookies

You have control over the use of cookies as outlined in this Privacy & Cookies Policy. Our

site currently does not respond to Do Not Track signals. If you prefer not to use first-party

cookies, you can configure your browser settings to reject them. To opt out of third-party

cookies, please use the following options:

• To opt out of ad targeting cookies set by Google and DoubleClick on our site, click

here.

• To disable advertisements served by Criteo, click here.

• To generally opt out of personalized ads from third-party advertisers and ad

networks, visit the NAI website and the DAA website. If you are located in the

European Union, click here to opt out.

To control data collection for analytics purposes by Google Analytics, you can visit this

link.

For instructions on configuring your browser to reject cookies from non-NAI or DAA

companies, consult your browser's support documentation. You can also delete existing

cookies by searching for and removing files containing "cookie."

Please note that disabling cookies may limit your access to certain features on our site,

including your profile and personalized content.

Mobile Devices

We and/or our data providers may collect and store a unique identifier for your mobile

device to deliver customized ads or content while you use applications or browse the

internet. This may involve using demographic data from third parties, as well as data you

voluntarily provide (e.g., your email address) in a hashed format.

If you wish to opt out of interest-based advertising on your mobile device, please refer to

your device's operating system settings or follow the instructions below:

• Android Users (version 2.3 and above): To opt out of interest-based advertising,

follow Google Play Help.

• iOS Users (version 6 and above): To limit ad tracking, follow the instructions in the

Apple Support Center.

You can also use tools available at Your Ad Choices and Network Advertising to manage

cookies and similar technologies on your mobile device.

Our site uses cookies and similar technologies. To opt out of certain cookies, click here.

7. Data Subject Rights

You have the right to access, modify, or delete your personal data. You can manage these

rights through your profile or by using the form available here. To ensure your privacy and

security, we will need to verify your identity before processing any requests. In most cases,

we will respond to your request within 30 days of verification. If you have created a profile

on any of our services, you will need your email address and password to access your

profile information.

Your Rights Under Local Legislation

Depending on your jurisdiction, you may have specific rights regarding your Personal Data,

including:

Request Access: Ask for access to your Personal Data.

Request Rectification: Request corrections to your Personal Data if it is inaccurate

or incomplete.

Request Erasure: Request the deletion of your Personal Data.

Request Restriction of Processing: Request a restriction on the processing of your

Personal Data.

Request Data Portability: Request a copy of your Personal Data in a structured,

commonly used format.

Object to Processing: Object to the processing of your Personal Data, including

opting out of targeted advertising, profiling, and certain marketing activities.

Opt-Out of Sale: Opt out of the sale of your Personal Data, as defined by applicable

law.

Appeal Decisions: Appeal our decision if we decline a request.

You may also request information about the Personal Data we have "sold" or disclosed for

business purposes within the past 12 months. To exercise these rights, please use the

form available here. Additionally, you have the right to lodge a complaint with a supervisory

authority regarding our handling of your Personal Data.

Please note that to ensure the security of your information, we may require additional data

points to verify your identity before completing certain requests related to your Personal

Data.

Data Retention

We will retain your information for as long as your account is active or as necessary to

provide you with our services. Additionally, we will retain and use your information as

needed to comply with legal obligations, resolve disputes, and enforce our agreements.

8.Children

You must be 18 years or older to use this site. Our services are not intended for children,

and we do not knowingly collect personal information from individuals under the age of 16.

In certain limited circumstances, we may need to collect personal data from children

under 16, such as during reservations or the purchase of travel-related services,

particularly in features designed for families. In these cases, we ensure that such data is

collected only with the consent of a parent or guardian. If you become aware that a child

under your care has provided us with information without your consent, please contact us

using the details in the How to Contact Us section below.

9. Links to Other websites and third party Sites

Our site may contain links to third-party websites not operated by us. This Privacy Policy

applies only to data collected through our site. Our site contains links to other websites

and services that are not owned or controlled by Down Fare, Inc., including those of travel

suppliers, advertisers, sponsors, and partners. This Privacy & Cookies Policy applies solely

to information collected by our site. We do not have control over these third-party

websites, and your use of them is subject to the privacy policies posted on those

respective sites.

We are not responsible or liable for the privacy practices or business operations of any

third-party websites linked to our site, nor for any social media features provided, such as

those from Facebook, Google, X, Instagram or YouTube. Your use of any linked third-party

websites is at your own risk, and we encourage you to review the privacy policies of these

sites when you leave our site or access them through a sign-in feature (e.g., Facebook

Connect or an OpenID provider). For more information on our privacy practices, please

refer to our Privacy Policy.

11. California Privacy Rights

California residents may have specific rights regarding their personal data. For details,

please refer to the relevant section below.

California Consumer Privacy Rights

Under the California Consumer Privacy Act (CCPA), California residents have specific

rights regarding their personal information. These rights include the ability to opt-out of the

"sale" of personal data. To exercise this right, please click here (insert the link for opting

out).

To protect your privacy and security, we will need to verify your identity before processing

any requests. For information on managing cookies and similar technologies on your

desktop or mobile device, please refer to our previous sections.

Categories of Personal Information Collected

California law requires us to disclose the categories of personal information we collect

about residents. Over the past 12 months, Down Fare, Inc. has collected the following

categories:

Identifiers:

o Name

o Address

o Phone number

o Email address

o Age

o Date of birth

o Gender

o Username and password

o IP address

Commercial Information:

o Credit card and payment information

Internet or Other Electronic Network Activity:

o IP address

o Device information

o Web log information

o Search preferences

Inferences Drawn from Other Personal Data:

o Purchasing habits and preferences

Geolocation Data:

o General device location

o Specific device location (with consent)

For more details on how we collect this information, please refer to the section “Our

Collection of Your Personal Data” in our Privacy Policy.

Sharing and Selling of Personal Information

We may share your personal information with third parties as outlined in the “Sharing Your

Personal Data” section of our Privacy Policy. Under California law, certain disclosure

activities may be classified as "sales" or "sharing," even if no monetary transaction occurs.

Over the past 12 months, we have "sold" or "shared" the following categories of personal

information:

• Identifiers

• Commercial information

• Internet activity

• Geolocation data

Additionally, we may disclose personal information for business purposes, including

working with service providers to enhance our services and deliver marketing

communications. The types of personal information disclosed for these purposes include:

• Identifiers

• Commercial information

• Internet activity

• Geolocation data

Your Rights Under California Law

California residents have the following rights:

• Right to Know: Request details about the personal information we have collected,

including categories, sources, and third parties involved.

• Right to Delete: Request the deletion of your personal information, subject to

certain exemptions.

• Right to Correct: Request correction of inaccurate personal information.

• Right to Opt-Out: Opt-out of the "sale" or "sharing" of your personal information.

To exercise your rights under California law, please contact us via the information provided

in the “How to Contact Us” section below, or click here (insert link for contacting). We will

need to verify your identity before acting on any request. You may make requests to know

twice within a 12-month period.

We will not discriminate against you for exercising any of your rights under California law.

However, there may be situations where we cannot fulfill your request, such as if we are

unable to verify your identity or as permitted under applicable law.

Metrics and Reporting

If you wish to receive metrics regarding the number of requests to know, delete, and optout

that we have received and processed, please reach out to us at

privacy@downfare.com.

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in laws or our data practices. Material

changes will be communicated via email or through a notice on our site prior to the

effective date.

12. Contact Us

For questions or concerns regarding our privacy practices, please contact us at

privacy@downfare.com.

Address: Down Fare, Inc.

16192 Coastal Highway

Lewes, Delaware 19956, Sussex County USA

You may contact us if you have any questions, or want to exercise you rights as detailed

above,