Journera, Inc.

Services Privacy Policy

Last Updated: March 15, 2019

We are passionate about travel and making it more enjoyable. Our company is helping the companies you’ve selected work together to make each stage of your journey go more smoothly. At the same time, respecting your privacy and the choices you make is very important to Journera, Inc. (“Journera”, “we” and “us”). A key part of protecting your privacy is ensuring you have a clear and understandable description of our business, the information we receive and how we handle it. We provide this Privacy Policy ("Policy”) to explain how we collect, use and share information that we receive about you ("you", "your"), while helping various companies you have chosen to work with, such as travel providers like airlines and hotels and even retailers (“Providers”), work together better to serve you.

We encourage you to use the links below to find out more about Journera, the information we may collect about you, how we use it, and with whom we share it.

About us

What information about you do we use and who provides it to us?

What do we use your information for?

With whom do we share your information?

How do we protect your information?

Where will your information be held?

How can you exercise your rights and choices over your information?

How long do we retain your information?

Additional Information for individuals in the European Economic Area

Changes to this Policy

About us

Travel and travel planning often involve multiple services, such as airlines, hotels, cruise, transfers, rental cars, ride-share services, travel agents, tours, trip insurance, destination entertainment, restaurants, websites and marketplaces, mobile applications, and regular retailers selling travel guides, gear like skis or even clothing for that trip to the beach. Journera operates a technology platform that, allows the companies you have chosen to use, to share information to help them better serve you, make your trip go more smoothly and to offer additional products and services relevant to you and your travel plans. A simple example is a hotel you booked that learns through Journera that your flight home leaves at 8:00pm, might offer you late checkout. Journera offers this linking service directly to participating companies that offer travel or travel-related products and services, and they are responsible for the way in which they use the shared information.

If you have any questions about this Policy or how we use information about you, you can contact us at privacy@journera.com or at Journera, Inc., Attn. Privacy Officer, 350 N. Orleans St. #9000N, Chicago, IL 60654, USA. Our data protection officer is also available to help you understand the measures we take to ensure we process your personal information appropriately. You may contact our data protection officer at privacy@journera.com.

What information about you do we use and who provides it to us?

We use information in connection with your travel and other services such as: name; address; telephone number; email address; date and place of birth; gender; nationality; public or private transportation security agency information; reward or loyalty program information; Provider assigned customer ID numbers; truncated credit card number; association identification numbers (such as AAA); driver’s license, passport, visa or other government-issued identification information; travel itinerary and changes or cancellations thereto (such as dates and times of check-in/check-out and pick-up and drop-off); baggage information; information about travel companions, dependents and other individuals associated with you; goods and services purchased; rates/fares/fees; special requests or accommodations made; and information and observations about your service preferences (such as room, seat, or car type, facilities, holiday preferences, amenities requested, or any other aspects of the services used).

Our primary sources of information are the Providers that you interact with, however we may supplement it with information we receive from third parties (including customer information bureaus, fraud detection services, and data validation services). We do not ordinarily collect any information from you directly, unless you choose to engage with us via post, email, social media or other means.

What do we use your information for?

We use your information for the following purposes:

To match records on behalf of our Providers: We use your information to help us accurately match, or link, information about you that we receive from different Providers. For example, Journera uses your information to ensure a reservation you made with an airline relates to a separate hotel booking you made for the same trip.

To allow the Providers you have chosen to communicate about your trip: We use your information to help Providers with whom you’ve engaged, and at their direction, keep informed of your plans and any changes to them. One example would be sharing your flight booking and real-time arrival status with the hotel you have also booked so they can properly anticipate your arrival. Only an authorized Provider with secure access to Journera can receive the information. To receive the information, the Provider must have given Journera enough information about you for us to link it with the other parts of your travel. This means that only Providers that you have engaged with can access this information.

To create a record of your travel history and preferences: We may compile your historical travel information to be able to inform Providers you have chosen about your individual preferences and travel history.

To improve Journera products and services, including creating new ones: Journera may use the information that we collect to understand the use of and improve the products and services that we offer to our Providers.

To create anonymized statistics and reports: We may remove parts of your information to make it anonymous and/or aggregate it with other information to create studies, reports or presentations about business trends or the use of our services.

To operate our business, platform, infrastructure, products and services: Where necessary, Journera may use your information in connection with the operation of our business, including services provided on behalf of Providers, such as support, billing our customers, security, incident management, fault resolution and disaster recovery.

To comply with legal obligations: Journera may use any of the information to comply with applicable laws and regulations, including to comply with legally mandated reporting, disclosure or other legal process requests, finance and accounting, archiving and insurance purposes, to receive legal, accounting or other professional advice, and in the context of dispute resolution.

With whom do we share your information?

In connection with any of the purposes set out in this Privacy Policy, we may share your information as follows:

Providers you have a relationship with: All information that we process about you may be shared with the Providers that you have a relationship with, in accordance with the contracts we have in place with those Providers. Accordingly, those Providers who process your information in their own right are responsible for their own use of your information and their use will be governed by their own privacy policies. Providers have agreed to use the information we pass between your Providers for the limited purposes of: (a) communicating with you; (b) personalizing your shopping and booking process; (c) improving delivery of products and services to you during your travel; (d) facilitating delivery to you of post trip-related products and services like reviews and expense reporting; (e) improving the relevance and personalization of offers made to you; and (f) facilitating data exchange agreements between Providers. We are not responsible for the use or disclosure of your information by a Provider or any third party receiving your information from a source other than Journera. For information about the practices of your Providers or third parties, please review their privacy policies. If you wish to unsubscribe to marketing by a Provider or any third party or have questions about their use or disclosure of information about you, you will need to contact them directly.

Business Transfers: As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, information may be part of the transferred assets.

Related Companies: We may share information with our subsidiaries and affiliates for purposes consistent with this Privacy Policy.

Agents, Consultants and Other Third Parties: We sometimes hire other companies to provide services for us and to help with our operations, which may require that they access and use information. These third parties help support our technical operations, including improving, developing or hosting our website, software or the products and services we provide. These third parties may have access to our systems and your information only for purposes of performing tasks on our behalf, we contractually require them to protect your information consistent with this Privacy Policy, and we remain liable for their compliance with this Privacy Policy.

Legal Requirements: Journera may disclose information to (i) satisfy or comply with any applicable law, regulation, legal process, or national security or law enforcement requirements having the force of law; (ii) respond to lawful requests, including subpoenas, warrants or court orders; (iii) protect and defend the rights or property of Journera, our agents, Providers and others, including to enforce our agreements and policies; (iv) act in urgent circumstances to protect the personal safety of any person; (v) to protect against legal liability; or (vi) to prevent or stop activity we consider to be illegal or unethical.

How do we protect your information?

Journera takes your privacy seriously and employs technical and organizational security measures to protect your information from unauthorized access, loss and misuse. The contracts we have in place with Providers require us to use these security measures and they are included in our internal policies and procedures.

Please be aware, however, that no method of transmitting information over the Internet or storing information is perfectly secure. Accordingly, we cannot guarantee the absolute security of any information. Please also be mindful that although we consider the data security processes of Providers who may have access to information about you, we are not responsible for their security measures. As noted, for more information about the information collection and usage practices of Providers, please see their respective privacy policies.

Where will your information be held?

Your information may be stored and accessed outside of your state or country, where the privacy laws may not be as protective as those where you live. If you’re located outside the United States and your information is provided to us, we may transfer it to the United States. Providers may access your information from any location in which they operate. Where required, we seek to put data transfer mechanisms in place to ensure compliance with data transfer laws.

How can you exercise your rights and choices over your information?

It is important to Journera that you are able to exercise control over your information. Where we have noted that we act on behalf of the Provider, it is the Provider's responsibility to ensure that you are able to exercise your rights over your information. Journera works closely with Providers to help ensure that is the case.

In all other situations, depending on where you are resident and the particular circumstances that apply to our use of your information, you may have the following data protection rights:

For more information about how you can exercise these rights in your particular context, you may contact us directly at privacy@journera.com and we will assist you with the exercise of your rights. We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.

How long do we retain your information?

Where we act on behalf of the Providers, we retain your information in accordance with our contract with the relevant Provider. Otherwise, we may retain your information while you have a relationship with any of our Providers and, in order to facilitate providing services to even the infrequent traveler, for seven (7) years thereafter. In certain circumstances, we may be required to retain your information for longer, where law or record keeping requirements requires such retention.

Additional Information for individuals in the European Economic Area

Legal Grounds: Under European data protection law, there are various legal grounds (also collectively known as 'legal bases') on which organizations can rely when processing information. In some contexts, more than one ground may apply.

Where we have indicated that we act on behalf of the Providers, it is the Provider(s) that you have chosen that establish the legal grounds for processing your information and it is up to us, as their service provider (or 'processor' in European data protection terms), to follow their instructions (which we contractually agree to). Journera’s contracts with Providers require them to affirm that they have all necessary rights or permissions to share your information with us for the purposes described above. For information about the grounds that a Provider relies on, you should consult their privacy policy.

Where we process your information for the other purposes noted above (or act as a 'controller' in European data protection terms), we primarily rely on our legitimate interests in order to use your information. We have legitimate interests in providing the Journera Services as well as carrying on, managing and administering our business and processing your information effectively and properly in connection with those interests. Your information will not be processed on this basis if our or a third party's interests are overridden by your own interests, rights and freedoms.

International Data Transfers and Privacy Shield: If you are an individual of the EEA, the United Kingdom or Switzerland, Journera complies with the EU-U.S. and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of information transferred from the European Union and Switzerland to the United States, respectively. Journera has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/list. The Federal Trade Commission has jurisdiction over Journera’s compliance with Privacy Shield.

Complaints: Journera is committed to timely resolving complaints about your privacy and our collection or use of your information. If we are unable to resolve your concern, Journera has further committed to refer unresolved privacy complaints under the EU-U.S. and Swiss-U.S. Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint.

As a last resort and in limited situations, EU and Swiss individuals may seek redress from the Privacy Shield Panel, a binding arbitration mechanism or to the extent that Journera’s data processing is subject to European laws, you may raise a complaint with your national supervisory authority. Contact details for national supervisory authorities in the EEA are available here.

Changes to this Policy

Any information that we collect is subject to the version of this Privacy Policy in effect at the time that information is collected.