Our Commitment to User Privacy and Data Protection:
Welcome to the “Privacy Notice” of Trikal, LLC, the provider of TripLynk (hereinafter “TripLynk”, "we", "us" or "our").
TripLynk respects your privacy and is committed to protecting your personally identifiable information ("PII"). This Privacy Notice will inform you as to how we look after your PII when you use our TripLynk mobile applications visit our TripLynk website (“Apps and Website”) regardless of where you visit it from and tell you about your privacy rights and how the law protects you. This Privacy Notice applies only to information collected through our Apps and Website and not to information collected offline.
It is important that you read this Privacy Notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing PII about you so that you are fully aware of how and why we are using your data. This Privacy Notice supplements any other notices and is not intended to override them.
If you have any requests concerning your PII or any questions with regard to our practices, please contact our Privacy Officer at privacyofficer@triplynk.com.
Controller:
This Privacy Notice is issued on behalf of TripLynk. TripLynk is responsible for controlling your PII. All PII you provide may be transferred or accessed by any TripLynk entity around the world as described in this Privacy Policy.
The Information We Collect:
This Privacy Notice applies to all information collected or submitted across all TripLynk Apps and Websites (individually and collectively "Apps and Website(s)").
Direct interactions - We collect information from visitors to and registered users of our Apps and Websites through the use of the Apps’ and Websites’ functionality, Contact Us webpages, Trip registrations, payments, and when you email an inquiry to us. On some pages you can make requests and request follow-up contact.
Automated technologies or interactions - As you interact with our Apps and Website, we may automatically collect Technical Data (described below) about your equipment, browsing or App interaction and patterns. We collect this PII by using cookies, server logs and other similar technologies.
PII means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). The most common types of PII collected at these pages are: name, address, and email address. IP addresses are considered PII. On some pages, you can submit information about other people. For example, if you request that we contact someone at your institution other than you, you will need to submit the recipient’s contact information. In this circumstance, the common types of PII collected are: name, address, email address and phone number.
We may collect, use, store, and transfer PII about you which we have grouped together as follows:
- Identity Data includes first name, last name, username or similar identifier
- Contact Data includes email address and telephone numbers.
- Technical Data includes internet protocol (IP) address, your login data, phone make and model, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this Apps and Website.
- Profile Data includes your username and password, feedback, Subscriber institution and Trips.
- Usage Data includes information about how you use our Apps and Website, products and services.
- Customer Assurance and Communications Data includes your preferences in receiving Customer Assurance from us and our third-parties and your communication preference.
We also collect Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your PII but is not considered PII pursuant to applicable privacy laws because this data does not directly or indirectly reveal your identity.
We do not collect any Special Categories of PII about you (that is, details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). We also do not collect any information about criminal convictions and offenses.
The Way We Use Your PII:
We will only use your PII in circumstances allowed by law. Most commonly, we will use your PII in the following circumstances:
- Where it is necessary for our legitimate interests (or those of a third-party) and your interests and fundamental rights do not override those interests.
- Where we need to comply with a legal or regulatory obligation.
Generally, we do not rely on consent as a legal basis for processing your PII. If we need to rely on consent, we will request your consent at the page and point at which we need to collect the relevant PII. If you give us consent, you have the right to withdraw consent at any time by contacting us.
Purposes for which we will use your PII:
In the table below, we have set out a description of all the ways we plan to use your PII, the legal bases we rely on to do so, and our legitimate interests in collecting the PII, if appropriate.
Note that we may process your PII for more than one lawful basis depending on the specific purpose for which we are using your PII. Please contact us if you need details about the specific legal ground we are relying on to process your PII where more than one ground has been set out in the table below.
| Purpose/Activity | Types of Data | Lawful basis for processing including basis of legitimate interest |
|---|---|---|
|
If you are a Subscriber’s authorized User, to manage our relationship with you which will include: (a) Notifying you about changes to our Subscription Agreement or Privacy Notice (b) Asking you to leave a review or take a survey |
(a) Identity (b) Contact (c) Profile (d) Customer Assurance and Communications |
(a) Necessary to comply with a legal obligation (b) Necessary for our legitimate interests (to keep our records updated and to study how use our products/services) |
|
To administer and protect our business and this Apps and Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) |
(a) Identity (b) Contact (c) Technical |
(a) Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganization or group restructuring exercise) (b) Necessary to comply with a legal obligation |
|
To deliver relevant Apps and Website content and announcements to you and measure or understand the effectiveness of the Apps and Website |
(a) Identity (b) Contact (c) Profile (d) Usage (e) Customer Assurance and Communications (f) Technical |
Necessary for our legitimate interests (to study how customers use our products/services, to develop them, to grow our business and to inform our Customer Assurance strategy) |
|
To use data analytics to improve our Apps and Website, products/services, Customer Assurance, customer relationships and experiences |
(a) Technical (b) Usage |
Necessary for our legitimate interests (to define types of customers for our products and services, to keep our Apps and Website updated and relevant, to develop our business and to inform our Customer Assurance strategy) |
We do not sell, trade or otherwise transfer or share your PII to outside parties. However, trusted third-parties who assist us in operating our Apps and Website, conducting our business or servicing you may be given access to PII, so long as those parties agree to keep this information confidential and no less secure than we keep your information. For example, and illustration purposes only, we operate our platform on the services of A2 Hosting, and we also transfer your PII to Apple Maps, Google Firebase and Sinch (VOIP service provider.
We may disclose information, including PII, about you if we are obligated to do so for the following reasons:
(a) To the extent that we are required to do so by law;
(b) In connection with any legal proceedings or prospective legal proceedings;
(c) In order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);
(d) To enable Processors or Sub-Processors or other third-parties based outside the EEA. For a list of Processors or Sub-Processors of suppliers or third-parties, please contact our PrivacyOfficer@triplynk.com
(e) For other TripLynk affiliates that have a legitimate need for the PII; and
(f) For third-parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your PII in the same way as set out in this Privacy Notice.
For a list of third-parties, please contact our Privacy Officer at: privacyofficer@triplynk.com.
Outreach
We strive to provide you with choices regarding certain PII uses.
Promotional offers from us:
We may use your Identity, Contact, Technical, Usage and Profile Data to form a view on what we think you may want or need, or what may be of interest to you regarding our TripLynk Services. This is how we decide which features and services may be relevant for you and your Subscribing entity (we call this Customer Assurance).
You will receive Customer Assurance communications from us if you have requested information from us or you or your employer has purchased products or services from us and, in each case, you have not opted out of receiving that communication.
Opting out:
You can ask us to stop sending you Customer Assurance messages at any time by following the unsubscribe/opt-out links on any Customer Assurance message sent to you or by contacting us at any time.
Change of purpose:
We will only use your PII for the purposes for which we collected it unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us.
If we need to use your PII for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to use it.
Please note that we may process your PII without your knowledge or consent in compliance with the above rules, where this is required or permitted by law.
Retention of Information:
We will only retain your PII for as long as is necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for PII, we consider the amount, nature, and sensitivity of the PII, the potential risk of harm from unauthorized use or disclosure of your PII, the purposes for which we process your PII and whether we can achieve those purposes through other means, and the applicable legal requirements.
Details of retention periods for different aspects of your PII are available in our retention policy which you can request from us by contacting our Privacy Officer at: privacyofficer@triplynk.com.
Your Rights:
Under certain circumstances, you have the following rights under the data protection laws in relation to your PII, which are explained below:
(a) The right to access;
(b) The right to rectification;
(c) The right to complain to a supervisory authority;
(d) The right to be forgotten;
(e) The right to restrict;
(f) The right to object to processing;
(g) The right to transfer; and
(h) The right to withdraw consent.
Access/Confirmation:
You can request access to your PII (commonly known as a "Data Subject Access Request"). This enables you to receive a copy of the PII we hold about you and to check that we are lawfully processing it.
How to Correct Your Information:
You can correct factual errors in your PII by sending us a request that credibly and specifically documents the error(s) to our Privacy Officer noted below. Taking into account the purpose of the processing, you have the right to have incomplete or inaccurate PII corrected. We may need to verify the accuracy of the new PII you provide to us.
Complain to a Supervisory Authority:
If you are not satisfied with how we manage your PII please contact us at privacyofficer@triplynk.com to provide us with an opportunity to address your concerns.
Right to be Forgotten:
You can ask us to delete or remove any PII we hold concerning you. This enables you to ask us to delete or remove PII where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your PII where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your PII to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
Request restriction of processing:
In some circumstances, you have the right to ask us to suspend the processing of your PII. Those circumstances are: (a) you contest the accuracy of the PII; (b) processing is unlawful but you oppose erasure; (c) we no longer need the PII for the purposes of our processing, but you require the PII for the establishment, exercise or defense of legal claims; or (d) you have objected to our processing of your PII, but we need to verify whether we have overriding legitimate grounds to use it. Where processing has been restricted on this basis, we may continue to store your PII.
Objection to processing:
You also have the right to object to our use of PII when we are relying on a legitimate interest (or those of a third-party) and there is something about your particular situation which makes you want to object to processing because you believe it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your PII for direct marking purposes and for scientific or historical research purposes or statistical purposes on grounds relating to your particular situation. We will respect your request unless we have compelling legitimate grounds to process your PII which override your rights and freedoms.
Data Transfer/Portability:
You have the right to request the transfer of your PII to you or to a third-party. We will provide to you, or a third-party you have chosen, your PII in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use.
Withdraw Consent:
You may withdraw consent at any time where we are relying on consent to process your PII. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
Security and storage of information:
We will keep your PII secure by taking appropriate technical and organizational measures against its unauthorized or unlawful processing and against its accidental loss, access, destruction, or damage. We will do our best to protect your PII but we cannot guarantee the security of your data which is transmitted to our Apps and Websites, applications or services or to other websites, applications, and services via an internet or similar connection.
Data Breaches:
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Third Party Links:
Occasionally, at our discretion, we may include or offer third party products or services on our Apps and Website. These third-party websites, plug-ins and applications have separate and independent privacy policies. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and we have no responsibility or liability for the content and activities of these linked websites. When you leave our Apps and Website, we encourage you to read the privacy notice of every website you visit. We still seek to protect the integrity of our Apps and Website and welcome any feedback that you may have about these Apps and Websites.
Our Commitment to Children’s Privacy:
The Apps and Website will be utilized by children under the age of 13 provided we have consent from the child’s parent or guardian. However, the Apps and Website do not knowingly collect any PII from children under the age of 13. If a parent or guardian believes that the Apps and Website has collected PII from a child under the age of 13 that person should contact our Privacy Officer at privacyofficer@triplynk.com and we shall remove the information from our records.
Opt-Out:
You may opt-out of receiving further information from TripLynk by contacting our Privacy Officer. In your e-mail, please give us your full name, mailing address and statement that you do not wish to receive further information from TripLynk.
Privacy Notice Changes/Amendments:
We may change our Privacy Notice from time to time. We will always update the Privacy Notice on our Apps and Website, so please try to read it when you visit the Apps and Website (the 'last updated' reference tells you when we last updated our Privacy Notice). You should check this page occasionally to ensure you are happy with any changes to this Privacy Notice.
This version was last updated on October 11, 2019
Cookies:
A cookie is a small amount of data stored in your browser or the hard drive of your computer and can only be read by the server that gave it to you. Please see our Cookie Policy https://www.triplynk.com/cookie-policy.php for more information.
How To Contact our Privacy Officer:
Should you have other questions or concerns about these privacy policies, please send us an email at privacyofficer@triplynk.com. Our Privacy Officer's contact details for the purposes of the GDPR and other provisions related to data protection, is
12 Olde Woods Lane. Montvale, NJ 07645
Email: privacyofficer@triplynk.com.
