Save up to $20 OFF our fees◊- Now!
Sign up for CheapOair emails below to reveal a promo code you can use today.
- Email-only deals delivered right to you
- Discounted deals from hundreds of airlines
- Special promo codes & discounts
Fareportal is the controller of personal data collected regarding EEA Individuals through the Websites, Apps, contact centers, or the Services. This Notice describes our general privacy and security practices in connection with your personal data.
Fareportal’s representative in the European Union is Duke’s Court Travel, located at Mill House, 216-218 Chiswick High Rd., Chiswick, London W4 1PD, UK.
Fareportal stores EEA Individuals’ personal data within its U.S. data centers.
Fareportal is self-certified under the E.U.-U.S. and Swiss-U.S. Privacy Shield for appropriate transfer of your personal data, such as to our U.S. data centers, pursuant to Article 45(1); in these instances, you may have specific rights under the Privacy Shield. In other instances, however, we may alternatively rely on Standard Contractual Clauses to ensure adequate protection for your personal data.
Transfers of personal data to non-EEA based travel suppliers for the purpose of fulfilling your various bookings or purchases (such as flight, hotel, or car accommodations) may also be based on the following derogations in GDPR Article 49, as applicable: (i) for the performance of a contract between the data subject and the controller or the implementation of pre-contractual measures taken at the data subject's request (Article 49)(1)(b)); and/or (ii) for the conclusion or performance of a contract concluded in the interest of the data subject between the controller and another natural or legal person (Article 49)(1)(c)).
More information regarding our sales and marketing activities can be found in our ‘Sales GDPR Notice’ here.
We will retain your Personal Information for the periods outlined in our retention policy, unless a longer retention period is required by law (including the establishment, defense, or exercise of potential legal claims). Our data retention policy can be found here.
Fareportal has a legitimate interest in ensuring cyber security and detecting possible criminal acts or threats to public security (including to prevent unauthorized access to networks and stopping damage to computers and systems) and employs a variety of technical and organizational measures that require processing certain data to fulfill such purposes.
We follow all PCI-DSS requirements and implement additional generally accepted industry standards (e.g., ISO 27001). For example, your credit card information is encrypted using Secure Sockets Layer technology (SSL).
Our web servers will also log your requesting IP address, the page requested, request time, referrer information, what URL you came from, browser information, and the status of the request (for example, if a page does not exist, a 404 error code will be returned). Such information is used to assist in maintaining the Websites and Apps, ensuring that our Services are available, and preventing malicious or otherwise harmful attacks to our back-end systems.
Fareportal may be required to disclose personal data in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. We may also disclose personal data to other third parties when compelled to do so by government authorities or required by law or regulation including, but not limited to, in response to court orders and subpoenas.
Natural persons have a right to: (i) request access to, correction and/or erasure of their personal data; (ii) object to processing of their personal data; (iii) restrict processing of their personal data; and (iv) request a copy of their personal data, or have a copy thereof sent to another controller, in a structured, commonly used, and machine readable format under the right of data portability. These rights may be exercised by contacting email@example.com with the subject line, “GDPR Notice.”
Natural persons may object to personal data processed pursuant to Fareportal’s legitimate interest. In such case, Fareportal will no longer process their personal data unless Fareportal demonstrates appropriate overriding legitimate grounds for the processing or if needed for the establishment, exercise, or defense of legal claims. Natural persons also may object at any time to processing of their personal data for direct marketing purposes. In such case, their personal data shall no longer be used for that purpose. In cases of email marketing (or similar channels, such as push notifications), natural persons will be able to fulfill such rights directly via an ‘Unsubscribe’ link or similar mechanism (e.g., device settings for push notifications), but may always reach out to firstname.lastname@example.org with the subject line, “GDPR Notice.”
Please note that if you opt-out of receiving direct marketing from us, we may still send you important administrative messages via email from which you cannot opt out (e.g., booking confirmations).
In accordance with GDPR Article 77, natural persons also have the right to lodge a complaint about Fareportal’s processing of their personal data with a competent supervisory authority, in particular in the member state of their habitual residence or place of work, or where an alleged GDPR infringement took place, as applicable.
Further, as applicable, natural persons may exercise their third-party beneficiary rights under Fareportal’s Standard Contractual Clauses.
Contact details for the EU data protection authorities can be found at:
Fareportal’s services are not directed to individuals under the age of eighteen (18), and we request that they not provide personal data to Fareportal through any means.
If you have any questions regarding our privacy practices, please contact us via email at email@example.com with the subject line, “GDPR Notice,” or write to us at:
CheapOair.com c/o Fareportal Inc.
135 West 50th Street,
Suite 500 New York, NY 10020
Attn: Customer Service/Privacy
Because email communications are not always secure, please do not include credit card or other sensitive information in your emails to us.
Note: This E.U.-U.S. and Swiss-U.S. Privacy Shield section applies only to personal information processed pursuant to the Privacy Shield.
Important Notice for Individuals of the European Economic Area and Switzerland
Fareportal is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).
Fareportal has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint. This service is provided free of charge to you.
If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.
In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Fareportal’s accountability for personal data that it receives under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, Fareportal remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless Fareportal proves that it is not responsible for the event giving rise to the damage.
Opt-In and Opt-Out to Certain Onward Transfers Individuals have the opportunity to opt-out of sharing of their personal data with third parties other than our agents or before we use it for a purpose other than which it was originally collected or subsequently authorized. To limit the use and disclosure of your personal information, please submit a written request to firstname.lastname@example.org, with the subject line “Privacy Shield.”
We will not disclose your sensitive personal information to any third party without first obtaining your opt-in consent. You may provide your consent by sending us an email at email@example.com.
In each instance, please allow us a reasonable time to process your response.
Your Privacy Shield Rights Upon request to firstname.lastname@example.org with the subject line, “Privacy Shield,” we will provide you with confirmation as to whether we are processing your personal data pursuant to the Privacy Shield, and have such data communicated to you within a reasonable time. You have the right to access, correct, amend, or delete the personal data processed pursuant to the Privacy Shield where it is inaccurate or has been processed in violation of our privacy disclosures to you. We may require payment of a non-excessive fee to defray our expenses in this regard. Please allow us a reasonable time to respond to your inquiries and requests.
Retention of Personal Information We will retain the personal information processed pursuant to the Privacy Shield in a form that identifies you pursuant to our retention policy above. We may continue processing such personal information for longer periods, but only for the time and to the extent such processing reasonably serves the purposes of archiving in the public interest, journalism, literature and art, scientific or historical research and statistical analysis, and subject to the protection of our privacy disclosures. After such time periods have expired, we may either delete your personal information or retain it in a form such that it does not identify you personally.
How We Protect Your Information
Fareportal takes very seriously the security and privacy of the personal information that it collects pursuant to the Privacy Shield. Accordingly, we will implement reasonable and appropriate security measures to protect your personal information from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the risks involved in processing and the nature of such data, and comply with applicable laws and regulations.
For the privacy policies of our other websites, please click here:
www.cheapoair.co.uk/privacy/, www.cheapoair.ca/privacy/, www.onetravel.com/travel/privacy-policy/
Sign up for CheapOair emails below to reveal a promo code you can use today.