Privacy Policy

Last updated: May 2026

This Privacy Policy explains how travelflyio.com (“the Website”, “we”, “us”, or “our”) collects, uses, discloses, and protects information when you access or interact with the Website. By using the Website, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Website.

1. Information We Collect

We collect only the limited information necessary to operate, maintain, and improve the Website. We do not intentionally collect sensitive personal data or special category data.

1.1 Automatically Collected Information

When you visit the Website, certain technical data is automatically recorded by our servers and third-party services. This includes:

IP address (truncated or anonymized where possible)

Browser type and version

Operating system and device type (e.g., mobile, desktop, tablet)

Pages and articles viewed

Time and date of visit

Time spent on each page

Referring website or search engine (if you arrived via a link)

Clickstream data (e.g., links you click, scrolling behavior, interactions with page elements)

This information is aggregated and used for statistical analysis, security monitoring (e.g., detecting malicious activity), performance optimization, and understanding general user behavior. It does not directly identify you as an individual, but it may be combined with other data in limited circumstances (e.g., to block repeated security threats).

1.2 Cookies and Similar Tracking Technologies

We use cookies, local storage, and similar technologies to enhance functionality and analyze traffic. Cookies are small text files stored on your device. We use:

Essential cookies: Required for basic website operation (e.g., load balancing, session management). These cannot be disabled without breaking core features.

Analytics cookies: Help us understand how visitors use the Website – which pages are popular, how users navigate, and whether errors occur. These are provided by first-party or trusted third-party analytics tools.

Preference cookies: Remember your choices, such as cookie consent settings or language preference (if any).

You can manage or delete cookies through your browser settings. Most browsers allow you to block third-party cookies, delete existing cookies, or receive a warning before a cookie is set. Please note that disabling essential or analytics cookies may reduce the Website’s functionality, and some features may not work as intended.

1.3 Third-Party Services That Collect Data

We use external service providers to help operate the Website. These providers may receive automatically collected data (as described above) under their own privacy policies. Current categories of third-party services include:

Analytics providers (e.g., Google Analytics, or similar privacy-focused alternatives) – they collect data such as page views, session duration, and approximate geographic location (city/region level only).

Advertising networks (e.g., Google AdSense) – they may use cookies or device identifiers to show relevant ads based on your visit to the Website and other websites. Ad networks may also collect interaction data (e.g., ad clicks, views).

Hosting and infrastructure providers – server logs are stored on their systems, which include IP addresses and request metadata.

We do not control the data collection or processing performed by these third parties once information is shared externally. We encourage you to review their privacy policies. For Google AdSense specifically, Google processes data according to the Google Privacy Policy, and you can opt out of personalised advertising via Google’s Ad Settings.

2. How We Use Information

We use the collected information only for legitimate purposes compatible with the operation of an informational content website:

Operating and maintaining the Website – ensuring pages load correctly, fixing technical errors, and managing server resources.

Improving performance and user experience – analyzing which parts of the Website are most used, identifying broken links, and optimizing layout.

Analyzing traffic trends – understanding how many people visit, where they come from, and what content is popular.

Security and abuse prevention – detecting brute-force attacks, scraping attempts, or other malicious behaviors; blocking IP addresses that violate our security policies.

Basic analytics and reporting – generating internal statistics that help us decide which topics to write about.

Compliance with legal obligations – responding to lawful requests from authorities (e.g., to investigate fraud or cyberattacks).

We do not sell your personal data to third parties. We do not share data for cross-context behavioral advertising except through standard ad networks (which provide their own opt-out mechanisms). We do not use your data for automated decision-making or profiling that produces legal effects.

3. Cookies – Detailed Control Options

You have choices regarding cookies:

Browser controls: Most browsers allow you to block all cookies, block only third-party cookies, or clear cookies upon exit. Consult your browser’s help section for instructions (e.g., Chrome, Firefox, Safari, Edge).

Opt-out tools for analytics: You can install the Google Analytics Opt-out Browser Add-on (if Google Analytics is used) to prevent data collection.

Ad personalisation opt-out: For Google AdSense, you can visit Google’s Ad Settings or use the Network Advertising Initiative’s opt-out page.

Because our Website does not have a dedicated cookie consent banner (unless required by local law), we rely on browser settings and this Privacy Policy to provide transparency. If you are located in a jurisdiction that requires opt-in consent for non-essential cookies, we will implement a consent mechanism before such cookies are set.

4. Data Sharing and Disclosure

We do not actively share personal data except in the following limited scenarios:

With service providers – only to the extent necessary for them to perform functions on our behalf (e.g., hosting, analytics). These providers are contractually bound to use data only for the agreed purpose and to maintain confidentiality.

For legal reasons – if required by law, subpoena, court order, or governmental regulation, or to protect the rights, property, or safety of the Website, users, or others.

With consent – if you explicitly agree to a specific disclosure (e.g., for a survey or promotion).

No data is sold to data brokers, marketing agencies, or similar entities.

5. Data Security

We implement reasonable technical and organisational measures to protect information from unauthorised access, alteration, disclosure, or destruction. These measures include:

Encryption – data transmitted between your browser and our servers uses TLS (HTTPS).

Access controls – only authorised personnel have access to server logs or analytics dashboards.

Regular updates – we keep software and plugins updated to patch known vulnerabilities.

Security monitoring – we monitor for unusual access patterns or attempted breaches.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. Any transmission is at your own risk.

6. Data Retention

We retain automatically collected and analytics data only as long as necessary to fulfil the purposes described in this Privacy Policy. Generally:

Server logs (including IP addresses) are retained for up to 30 days to investigate security incidents, then anonymised or deleted.

Aggregated analytics data (where IPs are anonymised) may be retained indefinitely for trend analysis.

Cookies expire according to their individual lifetimes (session cookies expire when you close your browser; persistent cookies may remain for up to their respective expiration periods.

If you contact us directly (via email), your email address and message will be retained only as needed to respond to your inquiry, and then deleted unless a longer retention period is required by law.

7. Children’s Privacy

The Website is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us immediately at [email protected]. Upon verification, we will delete the information promptly. This policy complies with the U.S. Children’s Online Privacy Protection Act (COPPA) as well as equivalent local laws where applicable.

For users under 18, we ask that you do not submit any personal data without parental consent.

8. Your Privacy Rights

Depending on your place of residence, you may have certain rights regarding your personal data. We are committed to respecting those rights to the extent required by law.

For users in the European Economic Area (EEA), UK, or Switzerland (GDPR/UK GDPR):

Right to access – request a copy of the personal data we hold about you.

Right to rectification – correct inaccurate or incomplete data.

Right to erasure (“right to be forgotten”) – request deletion of your data when it is no longer necessary for the purposes collected, or when you withdraw consent.

Right to restrict processing – limit how we use your data under certain conditions.

Right to data portability – receive your data in a structured, machine-readable format.

Right to object – object to processing based on legitimate interests (e.g., analytics).

Right to lodge a complaint – with your local supervisory authority.

For users in California (CCPA/CPRA):

Right to know – the categories and specific pieces of personal information collected, the sources, the business purposes, and the categories of third parties with whom we share data.

Right to delete – request deletion of personal information we have collected from you (subject to exceptions).

Right to opt-out of sale or sharing – we do not sell or share personal data for cross-context behavioral advertising; thus no opt-out is required. If our practices change, we will update this policy and provide a “Do Not Sell or Share My Personal Information” link.

Right to non-discrimination – we will not discriminate against you for exercising any of your rights.

To exercise your rights:

Please send an email to [email protected] with the subject line “Privacy Request”. We may take reasonable steps to verify your identity before processing your request.

9. International Data Transfers

The Website is hosted on servers located in multiple regions depending on infrastructure and service providers. If you access the Website from outside that region, your information may be transferred to, stored, and processed in a country whose data protection laws may differ from your jurisdiction. By using the Website, you acknowledge and consent to such transfers. When we transfer data from the EEA or UK to a country not deemed adequate by the European Commission, we rely on Standard Contractual Clauses or other approved mechanisms to ensure an equivalent level of protection.

10. Do Not Track Signals

Some browsers offer a “Do Not Track” (DNT) setting. The Website does not currently respond to DNT signals because no universally accepted standard exists for how websites should respond. Instead, we provide the cookie controls and opt-out mechanisms described above.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or the features of the Website. When we make material changes, we will revise the “Last updated” date at the top of this page. In some cases, we may also provide a notice on the Website’s homepage or by email (if you have contacted us previously). Your continued use of the Website after any update constitutes acceptance of the revised Privacy Policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: [email protected]