PRIVACY POLICY

Flyone Aviation Solutions Company Limited, is lawfully incorporated under the law of Vietnam, having its Business Registration code: 0316909497, issued by Department of Planning and Investment of Ho Chi Minh City, Vietnam June 17th, 2021 (hereinafter referred to as “Flyone”).

1. Flyone’ commitment of personal data protection

Given the importance of protecting personal data, Flyone is committed to adhere Vietnam regulations and the laws of the related countries concerning the privacy, and take all reasonable measures to ensure that personal data provided to us will remain highly confidential and safely protected. This Privacy Policy published on our website explains why and how we collect, record, organize, structure, store, adapt or alter, retrieve, consult, use, disclose, align or combine, restrict, erase or destroy your personal data when you travel with us, purchase or use our services, visit our website, use our mobile applications or interact with us. This Privacy Policy also instructs you how to exercise your rights relating to your personal data.

Flyone is sometimes acting in a joint control relationship with other companies providing air services in cooperation through providing travel arrangements hotels, travel insurance, transfer payment…. For the processing of your personal data in relation to these activities, Flyone and the other companies are jointly responsible. We have determined our respective responsibilities for compliance with the obligations under applicable privacy legislation for processing your personal data in relation to these activities by means of an arrangement between us. In summary, we have arranged that if you want to exercise your rights, such as your right to access, correct, erase, restrict, object or port personal data or to withdraw your consent, or if you have any questions or complaints about the processing of your personal data, you can either contact us or contact the other company partners. We will assist each other where necessary to ensure that you can exercise your rights and your questions and complaints will be handled.

More specifically, Flyone undertakes in particular to respect the following principles:

  • Your personal data are processed lawfully, fairly, and transparently
  • Your personal data are collected for specific, explicit and legitimate purposes and are not further processed in way incompatible with these purposes
  • Your personal data are stored in an appropriate and relevant manner and are limited to what is necessary for the purposes for which they are processed
  • Your personal data are accurate, kept up to date and all reasonable steps are taken to ensure that inaccurate data, having regard to the purposes for which they are processed, are erased or rectified without delay
  • Flyone implements appropriate technical and organizational measures to ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage.

Furthermore, Flyone contractually imposes the same level of personal data protection on its subcontractors (service providers, suppliers, etc.).

2. Purposes for which Flyone collect and process your data

Personal information or data provided to us is used to serve your interests and privileges when you enjoy purchasing or using our services, including visiting our websites, using our mobile site and mobile applications or contacting us. For this reason, the main purposes for which we collect and process your personal information are as follows:

- To perform our contractual obligations and enable an appropriate level of service to our customers

In order to handle and perform our contractual obligations and enable an appropriate level of service to our customers, Flyone will process the information including your name, surname, passport number and other identifying information to issue your ticket, for check-in assistance and compliance with security authority requirement at the airport. Your contact details are in order to inform you properly about changes of your flight status. In order to provide an appropriate level of care, Flyone offers you the possibility to indicate some information about your specified medical needs or special meals to be provided aboard.

Collection and processing of these personal data will be subject to your express consent and will be exclusively used by Flyone in order to provide you with an appropriate level of service.

- Accounting and financial requirement

We collect, store and use your data for internal business purposes, such as record keeping and to comply with our legal and fiscal obligations. These data will be kept for a period of 10 years, following a legal obligation imposed to Flyone.

- For customer care purposes

Your personal data are used by Flyone to provide you with a customer care service (i) to receive information, comments, suggestions, claims to improve the service quality of Flyone , (ii) to contact and communicate customers regarding their enquiries, (iii) for statistical analysis in order to develop and improve Flyone services and offerings on the basis of personal information and requests and (iv) to provide more quickly responsive support to customers and improve the content and designs of Flyone ‘ website, mobile site and apps, (v)realize surveys regarding the satisfaction of customers and for better understanding of customers’ needs and (vi) potential complaints or claims of passengers.

- For direct marketing purposes

We only send you direct marketing notifications as described in the first paragraph with your prior consent (opt-in). You can always object to the use of your personal data for such direct marketing purposes, by clicking the unsubscribe link in the email or contacting us.

3. Items of personal information which may be collected and processed by Flyone

- General Information Collection

When using its services and in particular the services accessible on its website, its mobile apps, Flyone may collect and process the following categories of personal information:

  • Name, passport number and other identifying information: name, gender, date of birth, passport or other personally identifiable number (date of issuance, place of issuance), nationality, language;
  • Your contact details and personal account or registration details: contact information, such as, telephone number, mailing address, email address, fax number; home address, mobile number, private email address, hobbies, preferences and information related to Member’s special needs;
  • Your payment information: payment information of credit or debit card such as name of cardholder, card number, expiry date, verification code;
  • Information about your reservations, bookings and purchases: information relating to reservation and booking information such as your flights, prices and the date of your reservation or booking;
  • Information we collect when you use our websites, apps and other digital media: personal information that is generated automatically when Customers using Flyone Website such as IP information, cookies, website log;
  • Our communication with you: communication, communication preferences (unsubscription from newsletters, choice to receive your booking related communication…), registration of your questions, survey, research, complaints or phone calls;
  • Information in relation to social media: Depending on your social network settings we may receive information from your social network provider. For example, when you sign in for our services using a social network account, we may receive your social network profile including your contact details, interests and contacts.

- Personal Information of children: 

We may collect information of the child after obtaining consent or authorization from his or her parent or guardian in accordance with data protection applicable law and who may request to view, edit their child’s personal information or to alter or withdraw consent at our sales offices on the website.

- Sensitive data

Flyone may also collect certain information relating revealing racial or ethnic origin, political opinions, religious or philosophical beliefs which can be considered as ”sensitive personal data” pursuant to the law of Vietnam and under other applicable jurisdiction. Subject to your express consent, Flyone may collect, use and share your special categories of data with third parties with assistance during your travel (medical needs and persons with reduced mobility).

4. Period for personal data retention

Flyone will retain your personal information collected on our internal system in the period of services provision or as long as fulfilling the purposes which it was collected or in so far as such is necessary for compliance with statutory obligations and for solving any disputes or until the information are required to be deleted by you.

5. Methods of personal data collection

Flyone may collect the personal information or data of this Privacy Policy through our website and sales offices, namely when you book a flight, register for membership, use one of our apps and communicate with us via social media, when you subscribe to our newsletter or when you register for one of our events or participate in a promotional contest. Furthermore, your personal data may be obtained from our group companies, partners or other service providers when you request for our services (travel agents, third party platform providers, hotels, car rental companies…) or from public authorities or governmental organizations.

6. Legal basis of the processing of your personal data

Flyone processes your personal data (i) on the basis of your explicit consent, (ii) to perform the contract or in order to take steps at the request of the data subject prior to entering into a contract, (iii) to comply with legal obligations we are subject to or (iv) to perform FlyOne ‘s legitimate interests.

Your consent may always be withdrawn at any time in accordance with article 9 below. In such case, be aware that the withdrawal of consent shall not affect the lawfulness of processing based on your consent before the withdrawal. Furthermore, if you refuse to provide Flyone with some of personal data or if you provide Flyone with incomplete or inaccurate information required for the performance of the contract or for compliance with a legal obligation, be aware that we may not be able to provide or deliver you all or parts of the services, which you may have requested from us in full quality. When we process your personal data for our legitimate interests or the interests of a third party, Flyone ensures that a balance of these interests against your legitimate interests has been done. Where necessary we have taken appropriate measures to limit implications and prevent unwarranted harm to you.

7. Potential recipient of your personal data

Flyone may disclose the personal Information to third parties, such as authorized Flyone‘s employees, business partners (our travel agents, car rental companies, hotels, credit card companies…) service providers or travel-related businesses pursuant to the performance of the services (bookings and travel arrangements, support services and customers’ care, loyalty programs, statistical analysis,…) our legal obligations (security and safety on board, PNR information,…) or our legitimate interests (direct marketing purposes of Flyone or our partners,…) and for the purpose of providing the best services to you.

Flyone may be required to provide personal information to authorized public authorities (customs, immigration, police, etc.), such as for the completion of mandatory immigration formalities or for the purpose of preventing and fighting terrorism and other serious offences. Flyone may be required to transmit passengers booking, check-in and boarding data to the competent authorities according to Vietnam Regulation.
The disclosure of third-party processor will be conducted by a contract, where it requires and ensures the protection of your personal data in accordance with this policy, and the applicable law.

8. Your rights to the personal data collected

a) Subject to the applicable law you, as the possessor of personal data, have the following rights:

- The right of access
You have the right to ask Flyone, at any moment, for confirmation that certain of your personal data are processed by Flyone and to obtain certain information such as the categories of personal data concerned, the purposes of the processing and the recipients or categories of recipient of those data.

- The right of rectification
You have the right to obtain from Flyone the rectification of inaccurate or incomplete personal data concerning you.

- The right to be forgotten
You have the right to obtain the erasure (deletion of your personal data) of your personal data stored by Flyone in the situations where your personal data are no longer necessary in relation to the initial purposes for which they were processed as well as situations where they were processed unlawfully.

- The right to restriction of processing
You have the right to obtain from Flyone a limitation of the processing of your personal data without deleting the personal data.

- The right to object
You have the right to object at any time to the processing of its data for prospecting and direct marketing purposes.

- The right to withdraw consent
When the processing of your personal data is subject to your prior consent, you have the right to withdraw your consent at any time. Withdrawal of consent shall not affect the lawfulness of processing based on your consent before the withdrawal.

You shall be aware that the withdrawal of consent shall not affect the lawfulness of processing based on your consent before the withdrawal. In case of the withdrawal, it may mean we will not be able to provide or deliver you all or parts of the services, which you may have requested from us in full quality

- The right to lodge a complaint
You have the right to lodge a complaint to the competent authority in the event of violation by Flyone of the applicable legislation regarding the protection of personal data according to Government Regulation.

b) You can exercise your rights listed above by sending a postal mail or an email to the following address:

Flyone Aviation Solutions Company Limited – Flyone.
Email: info@flyone.com.vn
Correspondence Address: 2nd floor, Gia Thy Building, 158 Dao Duy Anh Street, Ward 9, Phu Nhuan District, Ho Chi Minh City, Vietnam.

In this context, please include in your request the elements necessary to your identification (name, first name, e-mail) as well as any other information necessary for the confirmation of your identity.

9. Technical Measures for protecting personal Information

To secure the safety of personal Information from a loss, theft, leak, falsification, or damage, Flyone employees the following technical, managerial, physical devises as:

9.1) The important personal information is stored and managed in password protected mode within the limited access.

9.2) Given the risk of hacking, varying likelihood and severity for the rights and freedoms of natural persons, Flyone is committed:

  • To prevent customers’ Personal Information from leakage or damage by hacking or computer virus.
  • To control the access suspension system, unauthorized accesses from outside.
  • To implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including the pseudonymization and encryption of personal data.
  • To ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services;
  • To restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;
  • To ensure a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing;
  • To operate an exclusive organization for protecting personal Information.

10. Communication with customer and notification to the local authority in case of a breach of your personal data

a) We will communicate immediately, when your personal data are breached, to you and to the local authority as every time. This communication about your personal data breach will describe in clear and plain language the nature of the personal data breach and contain at least the following information and measures:

- Communicate the name and contact details of the data protection officer or other contact point where more information can be obtained;
- Describe the likely consequences of the personal data breach;
- Describe the measures taken or proposed to be taken by the controller to address the personal data breach, including, where appropriate, measures to mitigate its possible adverse effects.

b) The communication to you referred to in a) of this Article shall not be required if any of the following conditions are met:

- Flyone has implemented appropriate technical and organizational protection measures, and those measures were applied to the personal data affected by the personal data breach, in particular those that render the personal data unintelligible to any person who is not authorized to access it, such as encryption.

- Flyone has taken subsequent measures which ensure that the high risk to your rights and freedoms referred to in paragraph 1 is no longer likely to materialize;

It would involve disproportionate effort for Flyone. In such a case, there shall instead be a public communication or similar measure whereby you are informed in an equally effective manner.

11. The effectiveness of this Privacy Policy

Flyone makes sure that the protection for Personal Information is implemented and complies with the required policy.

We reserve the right to amend this Privacy Policy from time to time if necessary. The updated version will be posted on our website and date stamped so that you can aware of when the Privacy Policy was last updated.

Subscribe to our newsletter

Sign up and get the latest deals on flights, hotels, tour packages and more!

By signing up, you agree to the Flyone privacy policy.