Privacy Policy

1. Introduction

TripManga.com ("we," "us," or "our") is committed to protecting the privacy and personal data of our users. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you access or use our platform, mobile applications, and related services.

By using TripManga.com, you consent to the data practices described in this policy. If you do not agree with any part of this Privacy Policy, please discontinue use of our services immediately.

This policy applies to all users of TripManga.com, including travelers, suppliers (hotels, tour operators, and car rental providers), and visitors to our website.

2. Information We Collect

2.1 Information You Provide Directly

When you register, make a booking, or interact with our platform, we may collect:

• Account Information: Full name, email address, phone number, date of birth, nationality, and profile picture.
• Booking Information: Travel dates, destination preferences, guest details, special requests, and booking history.
• Payment Information: Credit/debit card details, mobile money account numbers, billing address, and transaction history. Payment data is processed through PCI DSS-compliant payment processors and is never stored on our servers in plain text.
• Identity Verification: Government-issued identification documents when required for security or regulatory compliance.
• Communications: Messages sent through our platform, customer support inquiries, reviews, and feedback.

2.2 Information Collected Automatically

When you use our platform, we automatically collect:

• Device Information: IP address, browser type and version, operating system, device identifiers, and screen resolution.
• Usage Data: Pages visited, search queries, click patterns, booking attempts, time spent on pages, and referring URLs.
• Location Data: Approximate geographic location based on IP address; precise location only with your explicit consent.
• Cookies & Tracking Technologies: We use cookies, web beacons, and similar technologies as described in our Cookie Policy.

2.3 Information from Third Parties

We may receive information from:

• Social Login Providers: If you sign in using Google, Facebook, or Apple, we receive your name, email, and profile picture as authorized by you.
• Suppliers: Service providers may share booking confirmation details, check-in/check-out information, and service delivery status.
• Payment Processors: Transaction status, fraud risk assessments, and payment verification data.

3. How We Use Your Information

We use the information we collect for the following purposes:

• Service Delivery: To process bookings, facilitate payments, send confirmations, and provide customer support.
• Account Management: To create and maintain your user account, authenticate your identity, and manage your preferences.
• Platform Improvement: To analyze usage patterns, conduct research, improve our features, and develop new services.
• Personalization: To customize your experience, provide relevant search results, and recommend travel services based on your interests.
• Communication: To send booking updates, service notifications, promotional offers (with your consent), and respond to inquiries.
• Security & Fraud Prevention: To detect, investigate, and prevent fraudulent transactions, unauthorized access, and other illegal activities.
• Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests.
• Dispute Resolution: To mediate and resolve disputes between users and suppliers.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or any jurisdiction with similar data protection laws, we process your personal data based on the following legal grounds:

• Contractual Necessity: Processing required to fulfill our agreement with you (e.g., processing bookings and payments).
• Consent: Where you have given explicit consent (e.g., marketing communications, non-essential cookies).
• Legitimate Interests: For purposes such as fraud prevention, platform security, analytics, and service improvement, provided these interests do not override your fundamental rights.
• Legal Obligation: Where processing is required by applicable law or regulation.

5. How We Share Your Information

We do not sell your personal data. We may share your information with:

• Suppliers: Hotels, tour operators, and car rental providers receive necessary booking details (name, contact information, booking dates, special requests) to fulfill your reservation.
• Payment Processors: Secure third-party payment providers process your transactions. These processors are PCI DSS-compliant and only use your data for payment processing.
• Service Providers: Trusted third parties who assist with email delivery, analytics, cloud hosting, customer support tools, and fraud detection. These providers are contractually bound to protect your data.
• Legal Authorities: When required by law, court order, or governmental request, or to protect the rights, safety, and property of TripManga.com, our users, or the public.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred as part of the business transaction, with continued protection under this policy.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:

• Account Data: Retained for the duration of your account and up to 3 years after account deletion for legal and audit purposes.
• Booking Records: Retained for 7 years for tax, accounting, and legal compliance.
• Payment Records: Retained as required by financial regulations (typically 5–7 years).
• Communication Logs: Retained for up to 2 years for customer service quality and dispute resolution.
• Analytics Data: Aggregated and anonymized data may be retained indefinitely for statistical analysis.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure: Request deletion of your personal data ("right to be forgotten"), subject to legal retention requirements.
• Right to Restrict Processing: Request that we limit how we use your data in certain circumstances.
• Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format.
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at support@tripmanga.com. We will respond within 30 days of receiving your request.

8. Data Security

We implement comprehensive security measures to protect your personal data, including:

• SSL/TLS encryption for all data transmitted between your browser and our servers.
• AES-256 encryption for sensitive data at rest.
• Regular security audits, vulnerability assessments, and penetration testing.
• Access controls ensuring only authorized personnel can access personal data.
• Employee training on data protection and security best practices.
• Incident response procedures for prompt handling of any data breach.

While we take every reasonable precaution, no method of electronic transmission or storage is 100% secure. We encourage users to protect their account credentials and report any suspicious activity immediately.

9. International Data Transfers

Your data may be processed in countries other than your country of residence, including Uganda where TripManga.com is headquartered. When transferring data internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission.
• Data Processing Agreements with all third-party processors.
• Compliance with applicable cross-border data transfer regulations.

10. Children's Privacy

TripManga.com is not intended for children under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected data from a child under 18 without parental consent, we will take immediate steps to delete such information. Parents or guardians who believe their child has provided personal data to us should contact support@tripmanga.com.

11. Third-Party Links

Our platform may contain links to third-party websites, services, or applications. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third-party service before providing your personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy.
• Notify you via email or a prominent notice on our platform.
• Where required by law, obtain your consent before applying changes.

Your continued use of TripManga.com after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us at:

• Email: support@tripmanga.com
• Help Center: support.tripmanga.com
• Website: www.tripmanga.com