Privacy Policy
OTA-Grade, Ready for Launch
1Who We Are
Diaspora AI ("we", "our", "us") is a digital travel platform that allows users to search for flights, compare travel options, and complete bookings. We are committed to protecting your privacy and handling your personal information responsibly, transparently, and securely.
We act as:
- Data Controller for the information you provide directly on our platform.
- Data Processor when passing required travel information to airlines and travel partners to complete your booking.
2Information We Collect
A. Information You Provide to Us
- Full name
- Date of birth
- Gender (if required)
- Contact details
- Passport information
- Payment information
- Billing details
- Support enquiries
* Payment information is processed securely by third-party providers. We do not store card numbers.
B. Information Collected Automatically
Device info, IP address, approximate location, pages viewed, performance metrics, cookies & tracking technologies.
C. Information From Third Parties
We may receive data from:
- Airline reservation systems
- Travel suppliers
- Fraud-prevention and risk-analysis providers
- Identity verification services
3How We Use Your Information
To Complete Your Booking
Processing payments, managing reservations, sending tickets/receipts, and handling schedule updates.
To Communicate With You
Booking alerts, support communications, security alerts, and itinerary updates.
To Improve Our Platform
Personalising search, enhancing accuracy, preventing fraud, and training non-identifiable models.
Legal & Compliance
Meeting regulatory requirements, ID verification, AML checks, and financial reporting.
4Legal Basis for Processing (GDPR)
To complete your booking and deliver travel services.
Fraud prevention, service improvement, security, analytics.
Marketing emails, cookies, optional personalisation.
Accounting, compliance, and aviation regulations.
5How Long We Keep Your Data
| Data Type | Retention Period | Reason |
|---|---|---|
| Booking & ticketing | 6–7 years | Financial/Legal |
| Passport details | Until trip completion | Security & compliance |
| Customer support | 12–24 months | Quality assurance |
| Payment identifiers | 6–12 months | Refunds & fraud prevention |
| Analytics & cookies | 1–13 months | Platform improvement |
After these periods, data is securely deleted or anonymised.
6How We Share Your Data
A. Airlines & Travel Partners
To issue tickets, complete reservations, verify passenger identity, and meet aviation requirements.
B. Payment Providers
To process transactions, handle refunds, and detect fraudulent activity. (We never store full card numbers.)
C. Service Providers
Trusted partners supporting support, email/SMS, hosting, security, and analytics.
D. Legal & Regulatory Bodies
Only when required by law or government authorities.
What We Never Do
- We never sell your personal data.
- We never share your passport or sensitive information with advertisers.
- We never give AI models your identifiable personal data.
7International Data Transfers
Some partners may operate outside the UK/EU. We ensure protection via:
- UK GDPR adequacy decisions
- Standard Contractual Clauses (SCCs)
- Additional encryption safeguards
8Cookies & Tracking
Used for authentication, security, and analytics. Essential cookies cannot be disabled.
9Your Rights Under GDPR
To exercise these rights, email info@diasporaai.dev. We respond within 30 days.
10Security Measures
Children's Privacy
We do not knowingly offer services directly to individuals under 16 without verified parental or guardian consent.
Policy Updates
We may update this Privacy Policy periodically. If changes are significant, you will be notified directly via email or through the app.
Contact Us
If you have questions or concerns, or want to exercise your data rights.
Diaspora AI – Privacy Team
103 Desborough Road, PL4 9PR, United Kingdom