At Wayplot ("we", "us", or "our"), we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website wayplot.com. This policy complies with the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the UAE Personal Data Protection Law (PDPL).

Information We Collect

Information You Provide

We may collect information you voluntarily provide when you:

• Contact us via email
• Subscribe to our newsletter (if available)
• Provide feedback or suggestions

Information Collected Automatically

When you visit our website, we may automatically collect:

• Device Information: Browser type, operating system, device type
• Usage Information: Pages visited, time spent, features used
• Location Information: Approximate location (city/country) based on IP address

This information is only collected if you consent to analytics cookies. See our Cookie Policy for details.

Information Stored Locally

Our trip planner stores the following information in your browser's local storage:

• Your trip itinerary and planned activities
• Favorite activities
• Preferences (currency, travel mode, hotel location)
• Cookie consent preferences

This data is stored only on your device and is not transmitted to our servers unless you explicitly choose to share it.

How We Use Your Information

We use the information we collect to:

• Provide and maintain our website
• Improve our services and user experience
• Understand how visitors use our website
• Respond to your inquiries and requests
• Send you updates (only if you opt in)
• Comply with legal obligations

Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on:

• Consent: For analytics and marketing cookies
• Legitimate Interests: For improving our services and website security
• Legal Obligations: When required by law

Data Sharing and Disclosure

We do not sell your personal information. We may share your information with:

• Service Providers: Third parties that help us operate our website (e.g., hosting, analytics)
• Legal Requirements: When required by law or to protect our rights

Third-Party Services

We use the following third-party services:

• Google Analytics: For website analytics (with your consent)
• Google Fonts: For typography
• Frankfurter API: For currency exchange rates

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

• Analytics data: Retained for 14 months
• Contact information: Retained until you request deletion
• Local storage data: Stored on your device until you clear it

Your Rights

All Users

You have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data
• Withdraw consent at any time

EU/EEA Residents (GDPR)

Additional rights include:

• Data portability
• Restriction of processing
• Object to processing
• Lodge a complaint with a supervisory authority

California Residents (CCPA)

Additional rights include:

• Know what personal information is collected
• Know if personal information is sold or disclosed
• Say no to the sale of personal information (we do not sell data)
• Non-discrimination for exercising your rights

UAE Residents (PDPL)

You have rights to access, correct, and delete your personal data, as well as to object to processing and withdraw consent.

Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• HTTPS encryption for all data transmission
• Regular security assessments
• Limited access to personal data

However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including:

• Standard Contractual Clauses (for EU data)
• Adequacy decisions
• Other legally approved mechanisms

Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

• Email: privacy@wayplot.com
• General Inquiries: hello@wayplot.com

Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer at dpo@wayplot.com.